How to Protect from Ransomware: Summarizing the Best Practices

Understanding Ransomware

Ransomware is a type of malware that lets attackers find and encrypt your most important data. They then offer to provide the decryption key only if you pay a ransom, within a short time.  This is the number one IT security challenge that you face today, with resource-limited small and mid-size businesses the most likely targets.

Cybercriminals exploit a variety of threat vectors, including email, network traffic, user behavior, and application traffic to insert ransomware. Without a comprehensive security strategy that secures all these vectors, you are almost certain to become a victim.

  • 47% of business have been affected by ransomware.
  • The FBI reports that $209 million was paid to ransomware criminals in the first quarter of 2016.
  • 59% of ransomware infections are delivered via email attachments and embedded URLs.

Best Practices to Prevent Ransomware

  • Maintain Backups
  • Develop Security Policy and Practices
  • Educate and Train Employees to Identify and Avoid Risks
  • Maintain Best Practices for security and Operating System Updates
  • Keep Software up to Date
  • Filter Executables in Emails
  • Configure Windows to Show File Extensions
  • Treat Macros with Caution
  • Disable Processes Launching from AppData and LocalAppData
  • Toggle User Privileges
  • Disable Remote Desktop Protocol