Gardai and government ministers have urged companies to prepare for potential ransomware attacks, citing an increase in the frequency of assaults on small and medium-sized firms.
The government and Gardai launched a joint awareness campaign on Tuesday for October’s European Cyber Security Month.
This year’s campaign focuses on the twin themes of phishing and ransomware, urging vigilance and outlining their potential impacts on the everyday lives of Irish citizens and businesses.
The campaign is being jointly promoted by the National Cyber Security Centre (NCSC), and the Garda National Cyber Crime Bureau (GNCCB).
Along with ransomware, the campaign will be warning vulnerable people such as the elderly to be aware of phishing scams, where a message or a link asks for someone’s personal details.
Minister of State Ossian Smyth said that at the time of the HSE cyber attack, there was “a lot of concentration from criminals on the very large, what they call ‘big game hunting, big targets”.
“So they would attack a multinational organisation, and try and get 10-20 million dollars out of them. Now that’s changed, and we’re seeing a lot of attacks on much smaller organisations, on SMEs.”
Assistant Garda Commissioner Paul Cleary said that there had been an increase in the number of ransomware attacks in Ireland.
“In the Garda National Cyber Crime Bureau, we receive regular reports of ransomware infections that have locked down company networks and left victims unable to work or access their data.
“We’ve seen a lot of these cyber attacks can have a crippling effects on businesses of all sizes can lead to company being pressurised into making substantial payments to regain control of their data without any guarantee that we will get any back or that the data won’t be posted online anyway.”
He said that less than 10% of companies that pay a ransom to cyber criminals will get all of their data back.
“There is always a concern that cyber criminals will have kept a copy and come back again for more money.”
He advised that companies and entities of all sizes have a plan in place for a potential cyber attack.
Minister for Justice Helen McEntee said: “We’re asking people to be prepared, to be aware of those risks.
“Be suspicious of anything that you get that you’re not aware of, back-up separately, make sure you’ve updated security, don’t mix your work and your personal equipment if possible, be it phones or laptops, report any suspicious criminal activity, and just think before you click.”