Ransomware is a type of malware that infects and restricts access to a computer system or files until a ransom is paid to unlock it. What is challenging is that most new strains of ransomware are very difficult to prevent because they prey on a person giving permission to activate the malware. Here's what your business needs to know about it.
Ransomware poses a real cybersecurity risk to organisations as it renders traditional security methodologies useless by prompting the user of the systems to initiate the malware. Unsuspecting employees can inadvertently give malware 'permission' to encrypt all files they have access to in your network, leaving them useless until a ransom is paid to the cybercriminal.
Ransomware typically infects organisations through malicious email attachments (such as zip files, word docs, pdf's or emails) that are designed to look legitimate and include a link to a site that infects the computer. These emails often appear to be sent from reputable companies such as banks or large retailers, in order to trick the user into opening the attachment.
Image 1: Ransomware example
The best way to stay protected against ransomware is to train your employees in cybersecurity awareness, to ensure they know how to identify and respond to cybersecurity threats. In addition to cybersecurity awareness training, we recommend:
Turn off and disconnect the infected PC or laptop from the network, and notify management and your IT provider to action immediately. If caught early, the damage caused by ransomware attacks can be reduced. A Disaster Recovery Plan can minimise the effect a ransomware attack has on your business operations, and strengthen your ability to service your customers during and after the event.
Unfortunately, more often than not, the only realistic way to retrieve files targeted in a ransomware attack is to restore from the last successful backup. This is why it is critically important to ensure your IT services provider or internal team are clinically monitoring backups.
We can help you ensure your technology, policy and staff education programs align with best practice. Our Business Technology Managers (BTMs) are specialists in improving your internal cybersecurity.