Cryptoware and it’s variants are not stopping – The malware is spreading like wildfire, targeting businesses, home users and even mobile devices.
What is Cryptoware (AKA- RansomWare):
In it’s simplest form, Ransomware is a form of malware in which all the files of the infected computer (as well as Mapped Drives) are held hostage by a simple encrypting algorithm that is impossible to decrypt. Leaving the victim with one option – Paying the ransom to get the decryption key and get back their data.
How does the infection happen:
Users may encounter Ransomware through a variety of means.
- Email (The most common) – Users may receive an Email with the subject (Invoice, Resume or from a delivery company such as Fedex or UPS). Attached to the email is a word document, Zip file or JS asking to allow macros to be able to view the document or by running the JS attached.
- Malicious Website – Visiting a malicious website or a website that’s been hacked can lead to Ransomware infection.
How does the infection spread:
The malware infects the local computer as well as any attached Server Mapped Drives (Network Drives).
How to protect your computer / Business from Ransomware:
- Educate yourself and your team on how to differentiate good from bad.
- Backup your files and your business data through multiple mediums (Local, Offsite and Hybrid).
- Enforce end users to save business related data in a centralized location.
- Enforce password policies.
- Constantly update your Operating Systems with the latest patches.
- Constantly update your Anti-Virus solution.
- Utilize a web security solution.
The first two points above are the most crucial ones and can save your business from downtime or data loss. so make sure you discuss them with your IT team or your IT provider.