Cyberattacks have become increasingly devastating, leaving companies grappling for weeks, if not longer, to resolve the damage caused. The latest incident to capture attention involves CDK Global, a software provider that car dealerships rely on to manage various aspects of their operations. This ongoing cyberattack has brought dealerships to a standstill, with no clear end in sight.

This follows a series of high-profile attacks that have significantly impacted other industries. In May, a cyberattack on Ascension, a nonprofit network of hospitals across the United States, diverted ambulances from several hospitals for almost a month. Similarly, a ransomware attack on Change Healthcare in February disrupted billing processes at pharmacies nationwide, posing a threat to the survival of some healthcare providers.

Experts point out that hackers have become more sophisticated, capable of remaining undetected within an organization's systems for extended periods. Instead of targeting individual companies, these hackers engage in supply chain-style attacks, crippling entire industries to demand larger ransom amounts. Particularly vulnerable are industries like healthcare, which often rely on outdated systems.

Dror Liwer, co-founder of cybersecurity company Coro, noted that these hackers are driven by bigger financial gains compared to previous years. They infiltrate an organization's infrastructure and patiently wait for the opportune moment to launch devastating attacks. The longer they remain undetected, the more damage they can inflict upon their targets.

Given the sensitivity of the matter, companies often hesitate to disclose specific details about cyberattacks immediately. Fear of reputation damage and potential litigation motivates them to keep information under wraps. Moreover, organizations are cautious about revealing too much before an investigation concludes, as it could encourage copycat attacks.

According to Eric Noonan, CEO of cybersecurity provider CyberSheath, ransomware attacks commonly enter through channels such as phishing emails. Once inside a system, hackers can go unnoticed as they move laterally, infiltrating various parts of the network. The actual deployment of ransomware is typically swift and widespread, catching victims off guard when access to critical files is lost or ransom notes appear.

The increasing reliance on interconnected systems and third-party platforms, despite benefiting daily business operations, has created complex environments more susceptible to wide-ranging cyberattacks. This situation presents hackers with specific targets, allowing them to concentrate their efforts on vulnerable infrastructures or certain cloud platforms.

Hackers are now specifically targeting organizations that form part of industry supply chains. By attacking software providers such as CDK, they effectively cripple entire industries like car dealerships. Similarly, large hospital chains like Ascension and Change become incapacitated, compromising their ability to provide adequate care across multiple locations. With the leverage gained, hackers demand larger ransom payments.

However, despite their increased leverage, paying a ransom does not guarantee a swift recovery. Experts have yet to come across a story of a company successfully paying a ransom and fully restoring their systems promptly.

Noonan highlights that the problem does not lie in hackers becoming more technologically advanced, but rather in many organizations' failure to implement modern, up-to-date systems. Incident response exercises are often neglected, resulting in prolonged recovery periods from massive cyberattacks.

The healthcare and public health sector has been hit the hardest by ransomware attacks, as stated in an FBI report. Critical manufacturing and government facilities are also prime targets. As systems become more interconnected, businesses face increasing challenges in maintaining cybersecurity, particularly when relying on third-party systems.

Cliff Steinhauer, director of information security and engagement at the National Cybersecurity Alliance, emphasizes the ongoing battle between hackers and organizations, likening it to a "cat and mouse" game. As organizations strive to patch vulnerabilities, hackers continue to find ways to exploit them. The stakes for organizations are high, as they must be consistently right in their defenses, while hackers only need to succeed once.

The impact on hospitals has been severe, with patient lives potentially endangered due to ransomware attacks. Aging technology and outdated systems make the healthcare industry more susceptible to cyber threats. Steven McKeon, founder and CEO of software companies MacguyverTech and MacNerd, claims that this technology, while facilitating patient interactions, also creates vulnerabilities for hackers to exploit.

In light of these escalating cyber threats, companies are advised to employ third-party cybersecurity experts to supplement internal security teams, particularly as many organizations have limited in-house resources. Additionally, implementing comprehensive security systems across the entire business can help detect and prevent cyber threats.

Efforts to combat cyberattacks must focus on upgrading critical infrastructure and strengthening cybersecurity measures to ensure businesses are resilient in the face of evolving cyber threats.