Close this search box.

Datto’s Global State of the Channel Ransomware Report

Table of Contents

[fusion_builder_container type=”flex” hundred_percent=”no” equal_height_columns=”no” menu_anchor=”” hide_on_mobile=”small-visibility,medium-visibility,large-visibility” class=”” id=”” background_color=”” background_image=”” background_position=”center center” background_repeat=”no-repeat” fade=”no” background_parallax=”none” parallax_speed=”0.3″ video_mp4=”” video_webm=”” video_ogv=”” video_url=”” video_aspect_ratio=”16:9″ video_loop=”yes” video_mute=”yes” overlay_color=”” video_preview_image=”” border_color=”” border_style=”solid” padding_top=”” padding_bottom=”” padding_left=”” padding_right=””][fusion_builder_row][fusion_builder_column type=”1_1″ layout=”1_1″ background_position=”left top” background_color=”” border_color=”” border_style=”solid” border_position=”all” spacing=”yes” background_image=”” background_repeat=”no-repeat” padding_top=”” padding_right=”” padding_bottom=”” padding_left=”” margin_top=”0px” margin_bottom=”0px” class=”” id=”” animation_type=”” animation_speed=”0.3″ animation_direction=”left” hide_on_mobile=”small-visibility,medium-visibility,large-visibility” center_content=”no” last=”true” min_height=”” hover_type=”none” link=”” border_sizes_top=”” border_sizes_bottom=”” border_sizes_left=”” border_sizes_right=”” first=”true”][fusion_text columns=”” column_min_width=”” column_spacing=”” rule_style=”default” rule_size=”” rule_color=”” content_alignment_medium=”” content_alignment_small=”” content_alignment=”” hide_on_mobile=”small-visibility,medium-visibility,large-visibility” sticky_display=”normal,sticky” class=”” id=”” margin_top=”” margin_right=”” margin_bottom=”” margin_left=”” font_size=”” fusion_font_family_text_font=”” fusion_font_variant_text_font=”” line_height=”” letter_spacing=”” text_transform=”none” text_color=”” animation_type=”” animation_direction=”left” animation_speed=”0.3″ animation_offset=””]

The Key findings from Datto’s Annual Global State of the Channel Ransomware Report

Each year, Neuways’ Business Continuity and Disaster Recovery partner, Datto surveys over 1,000 Managed Service Providers (MSPs). The results form the Annual Global State of the Channel Ransomware Report, giving insights into the challenges MSPs have faced over the year.

Here are some of the key findings from Datto’s 2020 Report and what it means for SMBs…

Ransomware remains the largest cyber threat for businesses

Nearly 70% of MSPs have reported that ransomware remains the number one malware threat for their clients.

This comes as no surprise, as 2020 has seen a surge in cyber-attacks. Cyber criminals have taken advantage of many employees moving to remote working. The increase has targeted some businesses with multiple phishing email campaigns per day, hiding ransomware within them, through malicious links or attachments.

However, this ransomware report indicates that MSPs and SMBs were prioritising battling ransomware in the last 12 months. This could be seen in the overall number of ransomware attacks declining slightly from 2019. An increase of 50% in SMB security budgets, combined with the use of security measures like two-factor authentication (TFA) point to a wider increase in security awareness.

Businesses of all sizes must prepare their front line of defence: their employees. Today, companies must provide regular and mandatory cyber-security training to ensure all employees can spot and avoid potential attacks.

Phishing attacks remained the most successful attack vector used by cyber criminals, followed by employee errors that could be avoided with better security training. These consist of a lack of cyber-security education, weak passwords and poor user IT practices.

COVID-19’s impact on cyber-security

COVID-19 has had an impact on cyber-security, but the disruption seems to have not been as detrimental as you might think.

While MSPs seemed split on the security impact of the global pandemic, 59% said remote work due to COVID-19 had resulted in increased ransomware attacks. With the move to remote working, 52% of MSPs reported that shifting client workloads to the cloud had also increased security vulnerabilities.

COVID-19 has also seen certain industries affected by pandemic-themed cyber-attacks. This ransomware report stated MSPs found that healthcare, finance/insurance, professional services and legal industries were the industries most often targeted by cyber criminals. This was most likely as they were industries directly affected by COVID. For example, if a hospital was overwhelmed by a rise in positive COVID-19 cases, then their IT security may have been more vulnerable than before the pandemic.

Cost of Ransoms vs Downtime

Concerningly, the cost of downtime rapidly accelerated during 2020.

MSPs found that the average cost of downtime for businesses has risen by an astonishing 94% year-on-year, from £105,867 in 2019 to £205,878 this year.

Business downtime can occur due to ransomware attacks and natural disasters, such as a fire or flood, with businesses forced to shut and lose out on valuable trading time.

Ransoms are often demanded of cyber-attack victims to extract money from them, in return for the retrieval of their business data or control of their systems. 2020 saw little change in the average cost of ransom requests, with each incident costing an average of £4,200 per incident, compared to £4,425 last year.

It is clear to see, though, that the cost of downtime far outweighs the ransoms cyber criminals set for their victims. While this does not advocate paying ransoms, it places larger importance on businesses having the proper procedures in place to deal with downtime more efficiently – business continuity is more of a priority for business now than it has ever been.

Additionally, 62% of MSPs said their clients’ productivity was impacted due to attacks, with 39% saying clients experienced business-threatening downtime. This leads us to the most important point to be taken from the report…

Businesses must prepare for an uncertain future

One thing that 2020 has proven, and is highlighted in the ransomware report, is that SMBs need a strong Business Continuity and Disaster Recovery (BCDR) strategy. Once again, survey data shows that there is no simple way of preventing ransomware attacks, even with proper security solutions in place.

This led to business continuity being ranked the number one solution to combat attacks this year. 91% of MSPs said clients with BCDR products in place were less likely to experience significant downtime from ransomware.

As ransomware is designed to spread across networks and cloud-based applications, endpoint and backup solutions designed for fast restores are critical. 76% of MSPs rated the most common ransomware recovery method as restoring a machine from backup. Lesser used methods included, restore from files (36%), re-image from default (33%) and virtualising a system from a backup image (31%). Then latterly, running software to clean-up threat (27%), with the least used method being a paid ransom (15%).

It isn’t just one solution required, though. No, SMBs need multiple solutions to combat cyber-attacks. Reducing the risk of infections requires a multi-layered approach rather than a single product. By partnering with the right MSP, a bespoke IT security solution can be created that aligns with your overall business technology strategy, while ensuring your business stays cyber safe and operational – both of which will be key during the next 12 months.

If you want to find out more about how Neuways can help your business with an internet security plan for the future, please contact us on 01283 75333 or email on


Want to keep up with our blog?

Get our most valuable tips right inside your inbox, once per month!

Latest IT News & Insights
Microsoft Dynamics 365 Business Central Main Product Mockup Showcase ERP
Why Business Central enhances and streamlines solutions
See how Microsoft Dynamics 365 Business Central enhances business solutions and streamlines the processes...
Read More
Neuways artificial intelligence
Artificial Intelligence: The Good, The Bad & The Ugly
AI is the Marmite of the IT world. Love it or hate it, the reality is it filters into our everyday lives...
Read More
Choose Neuways for your IT Support, Cyber Security and Business Central needs.
Cyber Security Acronyms Part 1: Neuways
We are helping clients to understand cyber security. We're making it easy for you, as we are jargon busting...
Read More
Password Manager and Security with neuways
Password Managers just became an even more important tool for Employees
The Government has brought in a ban on employees and manufacturers using default passwords.
Read More
Dark Web monitoring
What is the Dark Web?
Dark Web Monitoring identifies whether any of your company data (including login credentials and confidential...
Read More
Password Manager and Security with neuways
Password Security
Business Password Manager Tool Protect your remote workforce with Password Manager Tool, the business...
Read More
WatchGuard WiFi Security
WatchGuard User Services Platform – Simple, Secure and Intelligent WiFi
Why do Neuways partner with WatchGuard? Find out below to see how we improve the cyber security of your...
Read More
Endpoint Security
Endpoint Security
Protect your business with the best in Endpoint Security – How Neuways can help you Protect Your...
Read More

Frequently Asked Questions

Managed IT support is a comprehensive solution where an expert IT provider, like Neuways, handles your technology infrastructure. This includes proactive monitoring, maintenance, cyber security, and support.

Contact us

Support: 01283 753300

Business Development: 01283 753333

Purchasing: 01283 753322

Admin and Accounts: 01283 753311


Yes we do. Your business needs Cyber Security due to the increasing number of cyber threats that are affecting businesses in all industries. If your business has data and technology systems implemented, you will need Managed Cyber Security.

Yes we can. We have our own dedicated Microsoft Dynamics 365 Business Central teams who work to ensure that we can implement the right systems and solutions into your website that are absolute right for you. 

Got a question?

Reach out
& Connect

Please enable JavaScript in your browser to complete this form.