---

Ransomware: Can We Finally Start Learning From Past Mistakes?

Coming fast and furious behind news stories are the sales pitches, blog posts, and press releases from security vendors and consulting firms on how their latest and greatest solution will prevent your organization from falling victim to attacks. But, if we examine the most prevalent attacks, there is really nothing new or sophisticated about them. Ransomware attacks and BEC scams are mostly the result of phishing attacks. So, despite the evidence that we are not learning from our mistakes and following the basic requirements to protect our data and systems, we are constantly distracted by new security solutions. Ransomware is not an indication of how attackers have become more sophisticated but a reflection of how we have failed as an industry to effectively implement basic security controls.