Business Continuity Management / Disaster Recovery , Critical Infrastructure Security , Cybercrime
Minimizing Damage From Ransomware Attacks Requires Planning
Guidance From Attorney Guillermo Christensen: 'If You Want Peace, Prepare for War'As ransomware-wielding attackers continue to target businesses large and small, incident response experts say that the organizations that respond best and escape most unscathed are the ones that already have in place well-honed and rehearsed plans.
See Also: OnDemand | 2024 Phishing Insights: What 11.9 Million User Behaviors Reveal About Your Risk
"Almost all organizations that respond well to a ransomware event, it's because they prepared for it in advance," says attorney Guillermo Christensen, who's managing partner of the Washington, D.C. office of law firm Ice Miller. "If you want to prepare for a ransomware event, you take certain steps so when it happens - and it's really more 'when' than 'if' - you'll be in much better shape."
Christensen regularly advises clients on ransomware concerns, occasionally taking part in negotiations with ransomware-wielding attackers. While no plan is perfect, he says the planning process itself remains essential preparation.
"In the military context, there's a very famous saying: 'If you want peace, prepare for war.' So the same thing goes here: If you want to avoid ransomware, prepare for it, and that's things like having a plan," he says. "The plan is not going to work. I guarantee you, I've never seen a plan work the way it's supposed to. But that's OK. You've thought through the issues, and then, the practice. Practice is very important for that plan."
In an interview with Information Security Media Group, Christensen also discusses:
- Common mistakes to avoid when preparing ransomware defenses;
- Essential steps for responding to any ransomware incident;
- How the ransomware landscape seems likely to evolve.
Christensen formerly served as a diplomat with the U.S. Department of State as well as an intelligence officer at the Central Intelligence Agency, and he draws on those experiences to shape and inform the advice he provides to clients on enterprise risks involving cybersecurity, national security and complex international business matters.