WannaCry Ransomware Cyber-Attacks Are Good Business for Security Firms

Advertisement
By Reuters | Updated: 22 May 2017 10:05 IST
Highlights
  • Sophos stock jumped more than 7 percent on Monday
  • Experts say legacy industries need to up their cyber-security game
  • Shares of US-based FireEye and Qualys both rose more than 5 percent

For Kris Hagerman, chief executive of UK-based cyber-security firm Sophos Group Plc, the past week could have been bad. The WannaCry "ransomware" attack hobbled some of its hospital customers in Britain's National Health Service, forcing them to turn away ambulances and cancel surgeries.

The company quickly removed a boast on its website that "The NHS is totally protected with Sophos." In many industries, that sort of stumble would likely hit a company's reputation hard.

Advertisement

Yet on Monday, three days after the global malware attack was first detected, Sophos stock jumped more than 7 percent to set a record high and climbed further on Wednesday after the company raised its financial forecasts.

 

As for most other cyber-security firms, highly publicized cyber-attacks are good for business, even though experts say such attacks underscore the industry's failings.

French Researchers Find Last-Ditch Cure to Unlock Files

"We are making good progress and are doing a good job," Hagerman said in an interview this week. "People ask 'How come you haven't solved the cyber crime problem?' and it's a little like saying 'You human beings have been around for hundreds of thousands of years, how come you haven't solved the crime problem?'"

Advertisement

Hagerman pointed out that his company only claimed to protect 60 percent of NHS affiliates and that other factors contributed to the disaster at the hospitals.

Advertisement

"They have their own budgets. They have their own approach to IT generally and IT security," Hagerman said of individual hospitals, which pick their own operating systems, patching cycles and network setups. Microsoft had issued a patch in March for the flaw WannaCry exploited in Windows operating systems.

Yet Hagerman acknowledged that Sophos did not update its basic antivirus software to block WannaCry until hours after it hit customers.

Advertisement

High stakes
Security experts say hospitals, where the stakes are especially high, represent a case study in how legacy industries need to up their cyber-security game.

"We've tolerated a pretty poor level of effectiveness, because so far the consequences of failure have been acceptable," said Josh Corman, a cyber-security industry veteran now working on related issues at the Atlantic Council and a member of a healthcare security task force established by the US Congress.

"We are going to see failure measured in loss of life and a hit to GDP, and people will be very surprised."

Some long-lived medical devices have more than a thousand vulnerabilities, Corman said, and perhaps 85 percent of US medical institutions have no staff qualified for basic cyber-security tasks such as patching software, monitoring threat advisories and separating networks from one another.

Increasingly serious cyber-security problems are partly an inevitable consequence of the growing complexity of digital technology.

But there are other causes too, including a lack of accountability that stems from the wide range of technology handlers: computer software vendors, antivirus suppliers, in-house professionals, consultants and various regulators.

Ultimately, Corman said, hospitals need to hire solid cyber-security people instead of another nurse or two.

Good for business
"What's needed is punishment of the negligent," said Ross Anderson, a University of Cambridge pioneer in studying the economics of information security, referring to the hospitals that did not stop WannaCry.

"This is not about technology. This is about people fouling up in ways people would get a pink slip for" in less-insulated environments, he said, meaning they would lose their jobs.

For now, though, there are few signs of any revamp in large institutions' approach to cyber-security - and little incentive for contractors in the cyber-security industry to change.

Sophos was not the only company whose stock rose on Monday, as the global scale of WannaCry became apparent. Shares of US-based FireEye and Qualys both rose more than 5 percent.

But Sophos stood out, aided by higher expectations for a product the company introduced last year to fend off ransomware - so called because the authors of the malware demand a 'ransom' to restore a user's infected computer - which worked at the hospitals that had installed it.

"It's good news for our business," one Sophos employee, who asked not to be named, told Reuters this week. "We were so inundated with people calling us."

© Thomson Reuters 2017

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement

Related Stories

Popular Mobile Brands
  1. Fire-Boltt's First Smartphone Could Launch as Boltt Evo 4G
  2. iQOO Z11i Launched With 6,500mAh Battery, Snapdragon 4 Gen 2: See Price
  3. Lenovo Legion Y700 AI Tablet Launch Timeline, Design Teased
  4. iPhone 18 Pro Max Might Arrive With Apple's Biggest Battery Yet
  5. CMF's Himanshu Tandon Departs Firm After a 10-Month Stint
  6. Best All-in-One Laser Printers for Offices in India
  7. OTT Releases This Week: Elle, Super Subbu, Enola Holmes 3, and More
  8. Apple May Equip iPhone 18 Pro With Different Modems, Based on Regions
  9. Moto G77 Power Will Launch in India on This Date
  10. Flipkart GOAT Sale: Top Early Deals on Smartphones, Tablets and More
  1. Bitcoin Climbs Above $61,600 as Weak US Jobs Data Boosts Crypto Investor Sentiment
  2. iPhone 18 Pro Max Might Arrive With Apple's Biggest Smartphone Battery to Date, Latest Leak Suggests
  3. Vivo X500 Camera Specifications Leaked; 64-Megapixel Periscope Telephoto Camera Tipped
  4. Lenovo Legion Y700 AI Tablet Confirmed to Launch in August; Company Teases Gaming Tablet's Design
  5. iPhone 18 Pro to Feature Apple's C2 Modem Globally, Qualcomm Chip in the US: Report
  6. Xbox Will Reportedly Allow Users to Digitise Physical Games, Ship Project Helix Without Disc Drive
  7. Fire-Boltt's First Smartphone May Be Called Boltt Evo 4G, Tipster Claims; Key Specifications Leak
  8. iQOO Z11i Launched With 6,500mAh Battery, Snapdragon 4 Gen 2 Chip: Price, Specifications
  9. Huawei Band 11 Series Launched in India With 1.62-Inch Display, Over 100 Workout Modes: Price, Features
  10. Samsung Galaxy A18 Models Said to Drop Exynos Chip in Favour of MediaTek, Snapdragon
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.