Breach, Cloud Security, Threat Management, Data Security

Quarter of respondents would pay ransom to protect stolen data, survey says

Nearly a quarter (24.6 percent) of company executives and IT leaders would be willing to pay hackers a ransom to prevent them from leaking critically sensitive stolen data, a global survey of  more than 200 execs and IT managers found.

Moreover, 14percent said they would acquiesce to ransom demands exceeding $1 million.

A jointproject of the Cloud SecurityAlliance and cloud security software provider Skyhigh Networks, the survey andits corresponding report provide a window into IT business leaders' views oncloud applications and their security implications. Respondents said theyreceive an average of 10.6 requests for cloud-based business applications permonth, resulting in 71.2 percent of their companies creating a formal processto vet all these apps. 

According to the survey, the second, third and fourthmost common reason for rejecting app requests are all security-related, namely:

  • The provider is not trusted (53.6 percent)
  • Lack of encryption (45.8 percent)
  • Lack of data loss prevention (43.9 percent)

According tothe survey, it takes an IT security team 17.7 days to evaluate a cloud-basedapp's security. However, despite security concerns, the report asserted thatconfidence in the cloud is actually on the rise. In fact, 64.9 of respondents opinedthat the cloud is as secure as or even more secure than on-premises software.

The reportstated that the most commonly cited barrier to moving record-keeping IT systemsto the cloud is an inability to enforce corporate policies (67.8 percent ofsurvey-takers). Meanwhile, the biggest barrier to stopping data loss in thecloud is the lack of skilled security professionals (30.7 percent ofrespondents), suggesting that security analyst jobs are quickly becoming highlyin demand. “Across the board, there's a skills shortage,” thereport read. “Companies are finding it challenging to recruit and hire peopleto fill information security positions.”

Bradley Barth

As director of multimedia content strategy at CyberRisk Alliance, Bradley Barth develops content for online conferences, webcasts, podcasts video/multimedia projects — often serving as moderator or host. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.