"Ransomware is more about manipulating vulnerabilities in human psychology than the adversary's technological sophistication" - James Scott, Sr. Fellow, Institute for Critical Infrastructure Technology
Ransomware is a malware that has become a significant threat to businesses and individuals over the past few years. Ransomwares encrypt files on the infected system/network (crypto ransomware), although a few variants erase files or block access to the system using other methods like locker ransomware.
The ransomware demands a ransom in order to unlock the files, frequently in the range of $500 – $5,000 in bitcoins, though other currencies and gift cards are occasionally reported. Ransomware variants almost always opportunistically target victims, infecting devices from computers to smartphones. The loss is not just financial (paying of ransom), but there is loss of productivity, loss of information, loss in reputation etc.
Ransomwares are evolving. Some ransomware variants are able to perform DDOS attacks and also come with anti-detection components. Remember that there is absolutely no assurance that your data will be returned once ransom is paid or you won't be asked for more ransom even though you have already paid what was requested earlier.
Read here for examples of Ransomware and you will be surprised to know to what extend this can impact your organization.
Well, how to ensure you don’t have to pay any ransom in the future?
Secure end users and end points
Antivirus
Antispam
Keep all systems patched
Disable macro scripts
Have robust backups
Have a robust incident response plan
Network segmentation
Apply principle of least privilege
Have a robust response plan to a compromise or an attack
Disconnect infected system
Determine what data is affected
Determine if the threat is real or false positive
Restore files from maintained back up
Report the attack
Protect your organization, get your organization to stay aware. Awareness is key.
Get a complete risk assessment done. Reach out to us now.
At Gorisco, our motto is 'Embedding Resilience' and we are committed to make the organizations and their workforce resilient. Reach out to us if you have any queries, clarifications or need any support on your initiatives.
To read our other blogs, click here. More importantly, let us know if you liked them or not through your comments.