Home » Topics » Cybersecurity » Ransomware is spreading through cloud apps

Ransomware is spreading through cloud apps

Avatar photoby Nick Ismail

Cloud-based apps are fundamental in the workings of the enterprise, but they are under threat from ransomware.

The latest report from Netskope, a cloud access security broker, has revealed how the presence of malware is spreading through cloud apps.

The report suggests that on average there were 26 pieces of malware found in cloud apps across a given organisation.

Of these 26, 43.7% of malware found in enterprises’ cloud apps have delivered ransomware, and 56% of malware-infected files in cloud apps are either being shared with internal or external users, or shared publicly.

Ransomware accounts for nearly half of all malware found in organisations, the report showed.

>See also: How to minimise the impact of ransomware

These common ransomware delivery vehicles, include Javascript exploits and droppers, Microsoft Office macros and PDF exploits.

Increased connectivity, with access to software like the cloud, means that extensive cyber threats have greater access to online systems.

The report, similarly, suggests that within cloud environments, infected and encrypted files can quickly spread to other users through cloud app sync and share functionality in what is known as the fan-out effect.

On average, the survey found that enterprises use 824 cloud apps (up from 777 last quarter).

>See also: 6 steps to protect your company from crypto-ransomware attacks

Alarmingly, 94% of these apps are not considered “enterprise-ready”, perhaps explaining where the problem lies.

Not being “enterprise-ready” is defined according to the Netskope cloud confidence index scoring system, meaning they lack key functionalities such as security, audit and certification, service-level agreement, legal, privacy, financial viability, and vulnerability remediation.

The responsibility, therefore, should fall on the IT department to ensure the apps being used at their organisations adhere to the functional and secure standards required.

The information shared within these apps should be monitored as well.

Sanjay Beri, founder and CEO of Netskope concludes: “with the rise of ransomware, the cloud threat landscape is now increasingly complicated; IT teams need deeper intelligence, protection, and remediation that can help them stop malware and ransomware in their tracks and prevent them from spreading.”

Avatar photo

Nick Ismail

Nick Ismail is a former editor for Information Age (from 2018 to 2022) before moving on to become Global Head of Brand Journalism at HCLTech. He has a particular interest in smart technologies, AI and...

Related Topics

Enterprise
Malware
Ransomware

Related Stories

Cybersecurity

How AI will shift the security landscape in 2024

The impact of AI within cybersecurity is expected to grow significantly this year, says Alex Holland, senior malware analyst at HP

AI & Machine Learning

NCSC releases guidelines for secure AI development

New guidance from the National Cyber Security Centre (NCSC) aims to help businesses securely innovate with AI and minimise risks

Cybersecurity

3 cybersecurity compliance challenges and how to address them

Earning those trust seals can strengthen relationships with board members and prospective customers, but it sure isn’t easy.

Cybersecurity

70% of UK firms reported cyber insurance changes in past year

According to research from Databarracks, seven in 10 UK businesses have seen changes to their cyber insurance in the past 12 months, as requirements rise