Helping clients meet their business challenges begins with an in-depth understanding of the industries in which they work. That’s why KPMG LLP established its industry-driven structure. In fact, KPMG LLP was the first of the Big Four firms to organize itself along the same industry lines as clients.

How We Work

We bring together passionate problem-solvers, innovative technologies, and full-service capabilities to create opportunity with every insight.

Learn more

Careers & Culture

What is culture? Culture is how we do things around here. It is the combination of a predominant mindset, actions (both big and small) that we all commit to every day, and the underlying processes, programs and systems supporting how work gets done.

Learn more

Ransomware attack risks

Ransomware attacks and the potential threat to your company

Technology risk management

Organizations of all sizes and across industries continue to be challenged with managing the risk and impacts of ransomware attacks. Developing a methodical approach to strategize, plan, identify, research, resolve, recover, report, and prevent ransomware attacks is critical to effectively mitigate the inherent risks and impacts posed by ransomware. One of the greatest challenges ransomware attacks present is the breadth of possible attackers and attack vectors. 

Incidents like the Colonial Pipeline ransomware attack are serious warnings for organizations. They highlight the urgency that, no matter what industry you’re in, you must operate with the mindset that you are a target and take action to ensure that your people are aware and processes are equipped.

Beth McKenney

Principal, Technology Risk Management group, KPMG LLP

If you don’t prepare your company may potentially face significant risks and impact, such as:


Restoring data from an older recovery point can result in a significant amount of lost business transactions or other critical data.


Data encrypted during the attack may not be able to be recovered, resulting in a significant loss of data.


Paying the ransom can lead to being targeted more in the future,

To mitigate against these risks, companies need a 3 pronged approach.

To mitigate against these risks, companies need a 3 pronged approach.

Dive into our thinking:

Ransomware attack risks

Technology Risk Management professionals discuss ransomware risks and how organizations can plan against, prevent, and respond to ransomware attacks that may be a threat to their business.

Download PDF

Did you know?

KPMG has highly trained Technology Risk Management and Cyber professionals that support first, second, and third line technology risk functions with vast experience in working with organizations to improve their ransomware resiliency plans, helping assessing and recommending preventive and detective controls to combat ransomware risks, and assisting in conducting table top exercises to help ensure preparedness for an attack.

Explore more

Thank you!

Thank you for contacting KPMG. We will respond to you as soon as possible.

Contact KPMG

Use this form to submit general inquiries to KPMG. We will respond to you as soon as possible.

By submitting, you agree that KPMG LLP may process any personal information you provide pursuant to KPMG LLP's Privacy Statement.

An error occurred. Please contact customer support.

Job seekers

Visit our careers section or search our jobs database.

Submit RFP

Use the RFP submission form to detail the services KPMG can help assist you with.

Office locations

International hotline

You can confidentially report concerns to the KPMG International hotline

Press contacts

Do you need to speak with our Press Office? Here's how to get in touch.