It’s that time again when hundreds of exhibitors showcase the most relevant IT security solutions and discuss the issues that keep businesses awake at night at this week’s Infosecurity Europe show in London. Ransomware, IoT, Business Email Compromise, these are just some of the hot topics being discussed at the annual event.
It’s been over three weeks since WannaCry caused widespread chaos as it wormed its way through servers and PCs across the planet. The threat itself has at this stage largely been contained, but now the dust has settled on one of the highest profile malware campaigns in recent memory, we thought it would be useful to examine whether there’s been any impact on channel sales.
The 4000% year over year increase in Week 20 security sales is a strong indicator that organisations have indeed been prompted by the ransomware outbreak to invest in cybersecurity tools.
A global incident
Cyber attack campaigns don’t come much bigger than WannaCry. The exact scale of the incident is still not fully known, but after less than two days the ransomware had infected over 200,000 users and organisations across 150 countries, according to Europol. In fact, the total number of infections could now be in the millions, according to reports. It featured two NSA exploits, dubbed DoublePulsar and EternalBlue, which had been published online by a group known as the Shadow Brokers. It’s widely believed that another group then took these and repackaged them so that, once on a target network, the malware searched worm-like for other machines to infect, both inside that network and externally.
The speed and scale with which WannaCry spread raises some interesting questions about the state of security in many organisations. For one thing, it exploited a known Windows vulnerability, patched weeks earlier by Microsoft after the NSA informed the company. That tells us many organisations and consumers fail to follow best practice security by keeping their systems up-to-date at all times.
It also highlighted the catastrophic real-world impact that malicious code can have. Scores of NHS organisations were affected and had to shut down key IT systems, causing the cancellation of operations, chemotherapy sessions and other patient appointments. For companies, a similar outcome will have led to lost productivity and service outages, impacting the bottom line and brand reputation.
It’s perhaps not surprising, therefore, that CONTEXT data tells us the WannaCry outbreak generated a significant rise in cybersecurity channel sales. We tracked license sales for two categories: Security Suites and Mail Security. The combined figures reveal that sales increased by 4,090 times from week 20 in 2016 to week 20 in 2017. More telling still is the fact that 1.2 million units were sold in the weeks post-WannaCry, compared to a normal run-rate of 20-50,000 units per week.
Cybersecurity specialists need to tread a fine line when engaging with prospective customers, between educating the market and straying into the territory of over-hyping threats to sell products. Yet the uptick in sales following WannaCry shows us that such incidents can certainly focus the minds of IT buyers, and move certain purchases up the priority list.