CISA warned 1,750 organizations of ransomware vulnerabilities last year. Only half took action.

Fewer than half of the organizations warned by the Cybersecurity and Infrastructure Security Agency (CISA) about potential ransomware attacks took action last year, the agency said. CISA sent 1,754 ransomware vulnerability warnings in 2023, and 852 organizations mitigated their vulnerabilities after notification. The sectors most alerted were government facilities, healthcare and public health organizations, energy, financial services, transportation, critical manufacturing and IT sectors. Issues such as uptime requirements often prevent prompt action to mitigate threats.