An increasing number of organisations worldwide are susceptible to opportunistic attacks on computer systems.
A growing number of high profile ransomware attacks have taken place over the last few months, leading to PCs being locked and data on the machines held to ransom. Ransomware is a type of malicious software that threatens to publish the victim's data or constantly blocks access to it unless a ransom is paid. However, this is not guaranteed and you should never pay!
The NHS was among the organisations infected by the recent WannaCry ransomware attack, which affected more than 230,000 computers in over 150 countries, highlighting the prevalence of ransomware attacks. Aside from the potential loss of data, and damage to an organisation’s reputation, it can result in a huge amount of downtime and financial costs from loss of business while the infection is dealt with. The cost of a ransomware attack is therefore considerably more than just the ransom fee.
Here are some recommendations to help you mitigate ransomware risk:
1. Keep Your Network Secure
- Use an effective backup system that is tested, allowing multiple backups to be saved. Ideally, you should have three copies of any important files (a primary and two backups), for example, a local backup (i.e. portable hard drive or network storage) and a copy stored in the cloud.
- Keep systems patched, including all hardware and software, mobile devices, operating systems, content management systems, and cloud locations to ensure vulnerable areas are secure.
- Restrict internet access to avoid access to common ransomware entry points.
- Use robust antivirus and anti-spam solutions that will regularly scan your network and will remind users of the danger of clicking on links and attachments.
- Limit administrative permissions within the organisation.
2. Educate Your Employees
- Have a computer use policy and reporting plan in place, so that staff know where they should report any suspicious activity and notify your designated IT team.
- Train staff and urge them not to open suspicious emails and not to click on links to open attachments.
- Remind your employees to lock their computer when not in use.
VeryPC Security Suite is a collection of digital protection tools that safeguard your organisation and provides protection against viruses, malware, ransomware, unsafe websites, malicious file downloads, phishing and other forms of attack.
If you would like to further discuss, contact a VeryPC digital security specialist today on 0114 321 8609.