Ransomware is a form of malware typically installed in a system through a malicious email attachment or visiting a malicious website. Once the ransomware infection has access to a computer system, it will then proceed to encrypt all data it can see on that system, and on any accessible network drives. This means that one user can open an innocuous looking email attachment, and inadvertently allow Ransomware to encrypt the entire Server/PC data for your business within minutes.
The only option for getting your data unencrypted at this point will be to pay a hefty ransom to the cyber criminals who carried out the attack.
The threat of Ransomware has increased significantly in recent months, with reports of numerous businesses in Ireland being targeted. There are
however a few important steps which can be taken to help prevent Ransomware attacks on your business.
- Backups, Backups and more Backups
By far and away the most important step is to ensure you and your business have up to date and working backups of your data. This data should be stored offsite and not on the same network as your machines, or the backup itself could also be compromised. An effective online backup is the best defence your business can have against Ransomware. In the event of an attack, data from (at worst) the previous day can be restored and your business can carry on as normal.
- Anti-Virus Software and Windows updates
Many (not all) Ransomware infections can be detected by up to date Anti-virus software preventing and attack taking place. Ensuring all the latest updates for Windows are installed is also vital to shore up any potential security holes in your operating system the Ransomware may try to exploit. Similarly, running an up to date version of Windows is essential: If you are still running Windows XP for instance, you are asking for trouble!
- Educating staff around email and internet usage
Ransomware can only access a computer network if it is “allowed” to, i.e. someone opens an attachment from a suspicious source which results in all company data on the Server becoming encrypted. There are a few simple rules to follow for all users:
- Do not open e-mail attachments from senders you do not know
- Do not click on links in e-mails from senders you do not know
- Check for misspelled domains (e.g. .rncom instead of microsoft.com)and bad spelling in e-mails
- Do not open any .zip attachments unless you are 100% expecting such an email
- Do not click on internet pop-up ads
By following the steps above you can go a long way towards protecting your business from Ransomware. If you want any further information on Ransomware or I.T. security in general please call A to Z on 056 7712918 or email firstname.lastname@example.org and we will be happy to help.