Ransomware is a type of malware that lets attackers find and encrypt your most important data. They then offer to provide the decryption key only if you pay a ransom, within a short time. This is the number one IT security challenge that you face today, with resource-limited small and mid-size businesses the most likely targets.
Cybercriminals exploit a variety of threat vectors, including email, network traffic, user behavior, and application traffic to insert ransomware. Without a comprehensive security strategy that secures all these vectors, you are almost certain to become a victim.
- 47% of business have been affected by ransomware.
- The FBI reports that $209 million was paid to ransomware criminals in the first quarter of 2016.
- 59% of ransomware infections are delivered via email attachments and embedded URLs.
Best Practices to Prevent Ransomware
- Maintain Backups
- Develop Security Policy and Practices
- Educate and Train Employees to Identify and Avoid Risks
- Maintain Best Practices for security and Operating System Updates
- Keep Software up to Date
- Filter Executables in Emails
- Configure Windows to Show File Extensions
- Treat Macros with Caution
- Disable Processes Launching from AppData and LocalAppData
- Toggle User Privileges
- Disable Remote Desktop Protocol