A recent survey conducted by the Japan Institute for Promotion of Digital Economy and Community has highlighted the ongoing challenges faced by Japanese companies in dealing with ransomware attacks. The survey, which included responses from 1,107 firms, found that 507 had been targeted by ransomware, a type of malicious software that blocks access to data until a ransom is paid. Despite 222 companies opting to pay the ransom, a significant 60% of them were unable to recover their data, raising concerns about the effectiveness of paying off cybercriminals.

The survey results indicate that paying a ransom does not guarantee the restoration of systems and data. Out of the companies that paid, only 83 were successful in recovering their data, while 139 were not. Interestingly, 141 companies managed to restore their systems without succumbing to ransom demands, suggesting that alternative recovery strategies can be effective. This data underscores the advice from cybersecurity experts who warn against paying ransoms, as it not only fails to ensure data recovery but also funds criminal activities.

Financial losses from these attacks varied widely among the affected companies. Approximately half of the firms reported losses ranging from 1 million yen to less than 50 million yen, encompassing both ransom payments and system recovery costs. A smaller percentage, 4.3%, experienced severe financial impacts, with losses exceeding 1 billion yen. These figures highlight the significant economic burden ransomware attacks can impose on businesses.

The time required for system restoration also varied, with 176 companies reporting that recovery took between one week and a month. However, some firms faced prolonged disruptions, with data remaining inaccessible even after three months. This variability in recovery time further complicates the decision-making process for companies considering whether to pay a ransom.

Given these findings, companies are encouraged to invest in preventive measures and develop robust recovery plans to mitigate the impact of ransomware attacks. This includes regular data backups, employee training on cybersecurity best practices, and the implementation of advanced security technologies. By focusing on these proactive strategies, businesses can better protect themselves against the growing threat of ransomware and reduce their reliance on paying ransoms to recover critical data.

Source: https://www.straitstimes.com/asia/east-asia/over-200-japanese-firms-paid-ransomware-attackers-60-fail-to-recover-data