尽管在备灾方面存在缺口,但故障平均持续24天,耗资2.7M美元,远远超过了董事会的预期。 Ransomware outages last 24 days on average, costing $2.7M, far exceeding board expectations despite preparedness gaps.

一份基于4 650项网络索赔的《Willis》新报告显示,董事会信心与现实之间的差距日益扩大,赎金软件中断的中位数为24天,远远超出董事会预期的天数,平均耗资270万美元。 A new Willis report based on 4,650 cyber claims reveals a widening gap between board confidence and reality, with ransomware outages lasting a median of 24 days—far longer than the days boards expect—costing an average of $2.7 million. 将近一半的违约情况来自供应商,暴露了合同和监督方面的弱点。 Nearly half of breaches stem from vendors, exposing weaknesses in contracts and oversight. 尽管大多数董事会都制定了应对计划,但在过去一年中只有68%的董事会测试了这些计划,监管者现在要求提供有效性证明。 Despite most boards having response plans, only 68% tested them in the past year, and regulators now demand proof of effectiveness. 公开交易的公司虽然数量较少,但占损失的36%,其中一项索赔达3.31亿美元。 Publicly traded firms, though fewer in number, account for 36% of losses, with one claim reaching $331 million. 不断上升的威胁包括深层的假象和基因恶意软件,而新的欧盟、美国和香港条例则加强了问责制。 Rising threats include deepfakes and generative malware, while new EU, U.S., and Hong Kong regulations increase accountability. 专家们敦促进行赎金软件模拟、供应商分析和AI治理,使备灾与实际风险保持一致。 Experts urge ransomware simulations, vendor analytics, and AI governance to align preparedness with actual risk.