A few weeks ago, we received a call from a Toledo-area firm that had been infected by malware. A critical file server was taken down and it took them 3 days to recover.
Unfortunately, the frequency of cyberattacks has increased exponentially. In recent months, DMC has seen several companies get infected by Ransomware malware such as CryptoLocker. This can be disastrous to an organization.
While there is no way to completely stop cyberattacks, we can all take action to minimize attacks and, if attacked, facilitate recovery.
What is Ransomware?
Ransomware is a type of malware that prevents users from accessing workstations and servers. This type of malware forces its victims to pay a ransom in order to grant access to their systems or to get their data back.
How could our business get infected with Ransomware?
Ransomware can be downloaded by unknowing users visiting malicious or compromised websites. Other ransomware is delivered as an attachment to spammed email.
What policies can our business implement to avoid being infected by Ransomware?
The number 1 preventive measure is user education. Please see the link Best Practices for Avoiding Malware.
DMC also recommends implementing a software restriction group policy plan.
Are there technologies available to defend against Ransomware?
Yes. Anti-Virus programs are NOT sufficient. But there are Advanced Threat Protection (ATP) and Content Filtering services.
What steps should we take if we get infected by Ransomware?
One option is to pay the ransom. However, this does not guarantee system access or prevention of a future attack.
The preferred option is to reload servers and workstations from backup. This requires a backup and recovery system that is reliable and has been tested. Ideally, the restoration is quick.
If you would like to learn more about how companies are taking action against these attacks, we’ll be glad to set up a time to discuss. Contact us at 419-535-2900.