Contact Us

Contact Us

Please get in touch using the form below

1000 characters left
View our privacy policy

Overview

Comprehensive support for ransomware defence

While completely preventing ransomware attacks is nearly impossible, strategic steps can help to neutralise them and mitigate their potential damage and disruption.

Kroll provides ransomware preparedness assessments to identify and track down any vulnerabilities that ransomware actors could exploit.

Kroll’s ransomware assessments enable your organisation to reduce the potential harm of ransomware attacks by examining 14 crucial security areas and attack vectors. This allows you to build smarter defences, close exploitable gaps, better safeguard sensitive data and more quickly respond and recover from an attack.

Our methodology focuses on the cyber kill chain, including remote access configuration, phishing prevention, email and web protections, access controls, endpoint monitoring and end user awareness. This gives you a tailored set of recommendations to enable your organisation to deflect, detect or respond to ransomware.

Service features

Expert ransomware preparedness services

Our ransomware preparedness services include:

Ransomware risk assessments
Discover your organisation’s vulnerabilities and the specific steps required to take effective action with our structured ransomware assessments.
Proven methodology
Our experts start by focusing on controls, processes and technology solutions to reduce the likelihood of ransomware-based attacks. We then conduct remote interviews with technical teams to assess the secondary defensive measures to defend against email-based attacks.
24/7 support and assistance
In the event of a ransomware attack, our experienced global team of cyber incident response experts are available to provide remote and on-site support around-the-clock.
Actionable recommendations
Our ransomware risk assessment process concludes with a customised set of recommendations to help your organisation deflect, detect or respond to a ransomware attack. This provides specific insight to support strategic next steps and planning for the future.
35%
of Kroll cases in 2021 Breach Outlook were ransomware
10%
of all breaches include ransomware
37%
of organisations fell victim to ransomware in 2021

Critical security areas

The 14 critical security areas

Kroll’s ransomware preparedness assessment helps your organisation avoid ransomware attacks by examining 14 crucial security areas and attack vectors. These include:

Get a quote

Contact Us

FAQ

Ransomware Preparedness Assessment FAQs

What is ransomware?

Ransomware is a form of malware designed to cause widespread disruption by infecting multiple systems on a network, locking down machines and demanding a ransom for their return or decryption.

What is ransomware preparedness?

Ransomware preparedness is the strategy an organisation takes to protect itself against ransomware attacks. An effective approach combines fundamental security practices with customised strategies developed through a ransomware preparedness risk assessment.

How can an assessment help to neutralise and mitigate ransomware attacks?

A strategic ransomware assessment helps your organisation to avoid ransomware attacks by evaluating a range of crucial security areas and attack vectors. This allows you to build smarter defences, close exploitable gaps, better safeguard sensitive data and more quickly respond to and recover from an attack. A high-quality preparedness assessment should also give you a tailored set of recommendations to enable your organisation to deflect, detect or respond to a ransomware attack in the future.

What’s involved in a ransomware risk assessment?

An effective ransomware preparedness assessment will first focus on controls, processes and technology solutions to reduce the likelihood of attacks. This includes steps such as analysing firewall and network device configurations for security weaknesses, reviewing user activity logging and audit configurations and reviewing access and privileged access controls. It should also involve assessing the secondary measures an organisation has in place to defend against email-based attacks.

How long does a ransomware risk assessment take?

Each organisation has its own unique risk profile, so the duration of your ransomware risk assessment will vary accordingly. A good risk assessment provider will provide an estimate of potential duration with you as part of the scoping stage. This will ensure that the assessment provides the best results while minimising organisational disruption.

What initial steps can companies take to protect themselves against ransomware?

While completely preventing ransomware attacks is nearly impossible, security and risk management professionals can take proactive steps to neutralise them or mitigate the damage they can cause. Basic cyber hygiene remains fundamental. A key aspect of this is accurately and regularly documenting the entire configuration of networks.

Organisations should build on this with six key security steps which can deliver immediate layers of protection from ransomware:

  • Implement least privilege policies for data/system access
  • Delete unused email addresses
  • Enforce robust password policies
  • Implement multifactor authentication
  • Create, update, segregate and protect viable backups
  • Whitelist safe applications
  • Accurately map network configurations

About Us

Why choose Kroll?

  • Flexible, on-demand services
  • Recognised by CREST and the PCI Council
  • Global team of cyber risk experts
  • >3,200 security incidents responded to every year

Get in touch

Complete the form for a prompt response from our team.

Two Redscan team members analysing cyber security intelligence

1000 characters left
View our privacy policy

Resources

Discover our latest content and resources

From the blog
From the blog Case studies Latest news
18th March 2024
Prioritise the security of perimeter products, says NCSC
Securing perimeter products must be a priority for organisations as threat actors are increasingly targeting insecure self-hosted products at the corporate network perimeter, according to the UK's National Cyber Security Centre (NCSC).
4th March 2024
Insider threats an increasing concern for UK companies
More than half of UK business decision-makers surveyed for a new study stated that they were concerned about the likelihood of their employees being approached by cybercriminals, leading to a rise in insider threats.    
26th February 2024
78% of organisations hit by repeat ransomware attacks after paying
A new report shows that almost four in five organisations that paid a ransom demand were hit by a second ransomware attack, often by the same threat actor. Almost two-thirds (63%) of those organizations were asked to pay more the second time.
19th February 2024
UK companies lost £31bn due to security breaches in 2023
More than 1.5 million UK businesses were compromised by threat actors in 2023, with a total cost of more than £31.5bn, according to new research.