MAHWAH, N.J., June 28, 2016 (GLOBE NEWSWIRE) -- How many businesses will pay a ransom if attacked? It might depend
on if they have already been a victim of ransomware. Some 84 percent of U.S. and U.K. information technology executives at firms
that had not faced ransom attacks said they would never pay a ransom. But among firms that had been attacked, 43 percent paid,
according to Radware’s 2016 Executive Application & Network Security Survey.
An infographic accompanying this release is available at http://www.globenewswire.com/NewsRoom/AttachmentNg/b40572a1-4956-4e90-aece-8b98bdb6cd70
Radware® (NASDAQ:RDWR), a leading provider of cybersecurity and application delivery
solutions ensuring optimal service level for applications in virtual, cloud, and software-defined data centers, polled more than
200 IT executives across the U.S. and U.K. The study found that U.S. companies were far more willing to admit that they would pay a
ransom. Among U.S. firms who had not been attacked, 23 percent indicated they were prepared to pay a ransom, in contrast to the 9
percent in the U.K.
Companies that paid ransoms reported an average of $7,500 in the U.S. and £22,000 in the U.K.
“This is a harbinger of the challenging decisions IT executives will face in the security arena,” said Carl Herberger, Radware’s
Vice President of Security Solutions. “It’s easy to say you won’t pay a ransom until your system is actually locked down and
inaccessible. Organizations that take proactive security measures, however, reduce the chance that they’ll have to make that
choice.”
In addition to the responses to ransom attacks, Radware’s 2016 Executive Application & Network Security Survey found which security threats most
weigh on the minds of the C-suite and senior executives.
Former hackers are seen as reliable watchdogs: Senior executives see former bad guys as the best way to test
their systems. Some 59 percent of respondents said they either had hired ex-hackers to help with security or were willing to do so,
with one respondent saying, “Nothing beats a poacher turned gamekeeper.”
Firms see telecommuting as security risk: Work-from-home arrangements are seen as an increasing risk. The
survey found a big jump in changes to telecommuting policies, with 41 percent of respondents saying they have tightened
work-from-home security policies in the last two years.
Wearables require more than a dress code: While about one in three companies implemented security policies
around wearables in the last two years, 41 percent said they still have no rules in place, leaving a growing number of end points
potentially vulnerable. Perhaps this is because wearables aren’t seen as a major target—only 18 percent pointed to wearables when
asked what hackers would most likely go after in the next three to five years.
New connected devices will be the next security frontier: While wearables were less of a concern, many
executives surveyed think the Internet of Things (IoT) could become a bona fide security problem. Some 29 percent said IoT devices
were extremely likely to be top avenues for attacks, similar to the percentage of nods received for network infrastructure, which
received 31 percent.
Cleaning up after a cyberattack can be expensive: More than a third of respondents in the U.S. said an attack
had cost them more than $1 million, and 5 percent said they spent more than $10 million. Costs in the U.K. were generally lower,
with 63 percent saying an attack had cost less than £351,245 or about $500,000, though 6 percent claimed costs above £7
million.
Security risk is business risk: Whether motivated by ransomware or another factor, attacks impose significant
reputational and operational costs on victims. When executives named the top two risks they face from cyberattacks, brand
reputation loss led the pack, with 34 percent of respondents choosing that as a big fear. Operational loss (31 percent), revenue
loss (30 percent), productivity loss (24 percent), and share price value (18 percent) were also included in the top concerns.
Methodology:
On behalf of Radware, Merrill Research surveyed 205 IT executives (104 in the U.S. and 101 in the U.K.) in April and May 2016.
To participate in the 2016 Executive Application & Network Security respondents were required to be at a company with at least $50
million (or equivalent) in revenue and hold a title of senior vice president level or higher. By design, the survey’s respondents
were equally split between C-level executives and senior vice presidents. About half of the companies in the survey have 1,000 to
9,999 employees, averaging about 3,800.
THIS PRESS RELEASE AND THE SURVEY ARE PROVIDED FOR INFORMATIONAL PURPOSES ONLY. THESE MATERIALS ARE NOT INTENDED
TO BE AN INDICATOR OF RADWARE'S BUSINESS PERFORMANCE OR OPERATING RESULTS FOR ANY PRIOR, CURRENT OR FUTURE PERIOD.
About Radware
Radware® (NASDAQ:RDWR), is a global leader of application delivery and cyber security solutions for virtual, cloud and software defined data centers. Its award-winning
solutions portfolio delivers service level assurance for business-critical applications, while maximizing IT efficiency. Radware’s
solutions empower more than 10,000 enterprise and carrier customers worldwide to adapt to market challenges quickly, maintain
business continuity and achieve maximum productivity while keeping costs down. For more information, please visit www.radware.com
Radware encourages you to join our community and follow us on: Facebook, Google+, LinkedIn, Radware Blog, SlideShare, Twitter, YouTube, the Radware Connect app for iPhone® and our security center DDoSWarriors.com that provides a comprehensive analysis on DDoS attack tools, trends and
threats.
©2016 Radware Ltd. All rights reserved. Radware and all other Radware product and service names are registered trademarks or
trademarks of Radware in the U.S. and other countries. All other trademarks and names are property of their respective owners. The
Radware products and solutions mentioned in this press release are protected by trademarks, patents and pending patent
applications. For more details please see: https://www.radware.com/LegalNotice/
Safe Harbor Statement
This press release may contain statements concerning Radware’s future prospects that are “forward-looking
statements” under the Private Securities Litigation Reform Act of 1995. Statements preceded by, followed by, or that otherwise
include the words "believes", "expects", "anticipates", "intends", "estimates", "plans", and similar expressions or future or
conditional verbs such as "will", "should", "would", "may" and "could" are generally forward-looking in nature and not historical
facts. For example, when we say “This is a harbinger of the challenging decisions IT executives will face in the security arena”,
this is a forward looking statement. Because such statements deal with future events, they are subject to various risks and
uncertainties and actual results, expressed or implied by such forward-looking statements, could differ materially from Radware's
current forecasts and estimates. Factors that could cause or contribute to such differences include, but are not limited to: the
impact of global economic conditions and volatility of the market for our products; changes in the competitive landscape; inability
to realize our investment objectives; timely availability and customer acceptance of our new and existing products; risks and
uncertainties relating to acquisitions; the impact of economic and political uncertainties and weaknesses in various regions of the
world, including the commencement or escalation of hostilities or acts of terrorism; Competition in the market for Application
Delivery and Network Security solutions and our industry in general is intense; and other factors and risks on which we may have
little or no control. This list is intended to identify only certain of the principal factors that could cause actual results to
differ. For a more detailed description of the risks and uncertainties affecting Radware, reference is made to Radware’s Annual
Report on Form 20-F which is on file with the Securities and Exchange Commission (SEC) and the other risk factors discussed from
time to time by Radware in reports filed with, or furnished to, the SEC. Forward-looking statements speak only as of the date on
which they are made and, except as required by applicable law, Radware undertakes no commitment to revise or update any
forward-looking statement in order to reflect events or circumstances after the date any such statement is made. Radware’s public
filings are available from the SEC’s website at www.sec.gov or may be obtained on Radware’s website at www.radware.com.
Media Contacts: Deborah Szajngarten Radware 201-785-3206 deborah.szajngarten@radware.com
