Cyber-attacks: Why do some pack a bigger punch?

February 23, 2024
1 min read


TLDR:

  • Recovery from cyber-attacks can be lengthy and complex
  • Factors affecting recovery time include the extent of damage and organization size

In a recent article by Christine Ro on BBC News, the impact of cyber-attacks on organizations, such as the British Library, is explored. The article delves into the aftermath of a ransomware attack on the British Library in October 2023, shedding light on the challenges faced during recovery. The attack, carried out by the Russian hacker group Rhysida, led to a prolonged period of downtime and data leakage.

One key takeaway from the article is the varying recovery times for organizations affected by cyber-attacks. While some businesses and charities are able to restore operations within 24 hours, others, like the British Library and the Scottish Environment Protection Agency, face a prolonged recovery process due to the complexity of rebuilding systems and addressing encrypted backups.

The size of the organization can also play a role in determining the recovery time, as larger organizations may have a higher staff-to-system ratio and more complex infrastructure to restore. Additionally, the sophistication of the attack and the organization’s initial response can impact the length of the recovery process.

Advice from cyber security experts, such as Kimberly Goody from Mandiant, emphasizes the importance of testing cyber-security measures in organizations’ own environments and investing in cyber-security staff and tools. Cyber-risk insurance can also help mitigate financial losses from disrupted operations post-attack.

Overall, the article underscores the importance of preparedness in the face of inevitable cyber-attacks, as the evolving nature of cyber-crime presents ongoing challenges for organizations of all sizes.


Latest from Blog

EU push for unified incident report rules

TLDR: The Federation of European Risk Management Associations (FERMA) is urging the EU to harmonize cyber incident reporting requirements ahead of new legislation. Upcoming legislation such as the NIS2 Directive, DORA, and