What you need to know to combat ransomware
Knowing how to combat ransomware has become essential to keeping your data safe. Nobody is too small, too big or too anything to be attacked. Everybody, however, can be well-prepared to protect themselves from the damage a ransomware attack can do. With that in mind, here’s a guide on what you need to know to combat ransomware.
A robust anti-malware program is a must
Relying on the default security programs bundled with the main operating systems could turn out to be a painful example of false economy. Dedicated cybersecurity companies have solid consumer-grade options for free and there are some excellent business-grade options available at very little cost. These will generally include an integrated firewall which makes them even better value.
For both consumers and businesses, cloud-based options are generally the most sensible option. There are two main reasons for this. Firstly, it means that all updates are managed by the vendor. Secondly, it pushes the storage and processing load onto the back-end servers and hence reduces the burden on the local device.
You must keep your operating system and locally-installed apps updated
If a developer brings out a patch to fix a security issue, you can take it as read that the security issue in question is known to malware developers. This means that there is a distinct possibility that they will at least try to target that vulnerability because they know that organizations do not apply updates as quickly as they should.
You will only get updates if you are running operating systems and apps which are still actively supported by their developers. You should try to avoid running discontinued software at all. If you absolutely must do so, try to keep it off-line as much as possible and be careful about what data you store on the device.
You need to manage your email
Email attachments have long been notorious as a tool to spread malware. Server-level filtering has done a lot to curb this. It is generally very effective at catching blatant spam but not so good at catching more astute malicious actors. Sadly, the cybercriminals behind many ransomware attacks tend to fall into the latter category, especially when it comes to encryption ransomware.
What can, however, work very well is teaching users about inbox management techniques so they can quickly identify which emails are genuinely important and prioritize them. It might also help to move in-house communications over to an internal instant-messaging system, when possible, to alleviate the issue of emails pinging around between multiple people.
These steps can relieve the pressure of an overflowing inbox and hence encourages them to take more time over the emails they do read. You want users always to think before they even open an email let alone decide whether to click on an attachment. You then want to double-check their judgment by having all email attachments scanned by a robust anti-malware program, no exceptions, no matter who.
It’s vital to ensure safe surfing
The other main way ransomware gets onto computers is through malicious websites. In theory, it should be fairly easy to educate users to avoid visiting such websites. In practice, a lot of these visits are unintentional. People are tricked into visiting them often through social media posts or through malicious adverts.
Harsh as this may sound, the easiest and most effective way to reduce your exposure to being infected with ransomware through the internet is to limit the extent to which people can use the internet. Sadly this includes the major social media platforms.
This may not be a welcome move but the fact that most people have smartphones and even tablets means that it’s probably going to be less of an issue than it might have been even a few years ago. You could even offer a social WiFi network and charging facilities to make the change easier for staff to accept.
You will, however, still have to take steps to ensure that work-related internet surfing is done safely. What this will mean in practice will depend on your sector. For example, some companies may be able to whitelist specific websites and hence block all others.
Many companies, however, will have employees who need to undertake wide-ranging research online and/or to use social media for work. In these situations, you will need to combine your anti-malware program (and firewall) with effective user education, backed up by clear processes that are rigorously and fairly enforced.
Make sure you protect your data in the event of a ransomware attack
Ensure that all data is stored encrypted so ransomware attacks cannot be used to enable data theft. Additionally, make sure that your data backup is ransomware-proof. This means it needs to be off-site so that it is completely separate from your main system.
Please click here now to start your free 30-day trial of Xcitium AEP.