Digital Brain
digital brain
digital brain

Ransomware: The Risks Are All Too Real

June 2017 (McMillan Internal Article) < 1 minute read

The Risk – Cyber attacks are considered one of the most serious risks your organisation faces and ransomware is a currently favoured variation (as evidenced by the recent ‘‘WannaCry’’ cyber attack). It involves accessing your system,encrypting all or an important portion of your data and then offering to give you the encryption key for the payment of a modest amount, usually in the form of a cryptocurrency such as bitcoin.

In addition to the risk of not receiving the key once the payment is made,your organisation faces the risk of others similarly exploring your system’s vulnerabilities. Your officers and board should be concerned that a ransom attack may be like the canary in the coal mine; an early warning of dangers that might lie ahead. If a later more serious cyber attack takes place, what kind of exposure might the officers and the board face if they just paid the ransom and did nothing more?

So far the authorities have not required that intrusions and ransoms be reported or held that payments of ransom constitute money laundering. If that changes, ransom attacks will take on a whole different level of risk.

Insights (5 Posts)

Featured Insight

Mind the (ebike) Gap: How to Proceed with Product Recalls When There is a Regulatory Gap

While consumer interest in electric bicycles is increasing, regulatory interest in electric bicycles, or ebikes, is waning.

Read More
Sep 22, 2022
Featured Insight

Stop Snooping: Alberta Privacy Commissioner Finds Employee Snooping Results in Real Risk of Harm

An overview of a recent Alberta Privacy Commissioner breach notification decision relevant to employee snooping.

Read More
Sep 21, 2022
Featured Insight

Lessons learned from Alberta’s Office of the Information and Privacy Commissioner (OIPC) 11-Year Report

An overview of Alberta's Office of the Information and Privacy Commissioner 11-Year Report.

Read More
Sep 21, 2022
Featured Insight

The Case of the Missing Computers: Lessons Learned from Health Canada

A look at the takeaways from the recent audit of Health Canada's IT systems.

Read More
Sep 21, 2022
Featured Insight

Data Security – The Increasing Danger of Vishing Attacks

This bulletin provides guidance regarding voice phishing, or "vishing" attacks. As they rise in popularity, companies must take action to protect their assets.

Read More
Sep 16, 2022