What is Ransomware?
Ransomware is a form of malware that targets your critical data and systems for the purpose of extortion. Ransomware is frequently delivered through spear phishing emails. After the user has been locked out of the data or system, the cyber actor demands a ransom payment. After receiving payment, the cyber actor will purportedly provide an avenue to the victim to regain access to the system or data. Recent iterations target enterprise end users, making awareness and training a critical preventive measure.
How to I protect my systems?
HOW DO I PROTECT MY NETWORKS?
A commitment to cyber hygiene and best practices is critical to protecting your networks. Here are some questions you may want to ask of your organization to help prevent ransomware attacks:
- Backups: Do we backup all critical information? Are the backups stored offline? Have we tested our ability to revert to backups during an incident?
- March 31st is World Backup Day – http://www.worldbackupday.com/en/ – more about this later!
- Risk Analysis: Have we conducted a cyber-security risk analysis of the organization?
- Staff Training: Have we trained staff on cyber-security best practices?
- Vulnerability Patching: Have we implemented appropriate patching of known system vulnerabilities?
- Application White-listing: Do we allow only approved programs to run on our networks?
- Incident Response: Do we have an incident response plan and have we exercised it?
- Business Continuity: Are we able to sustain business operations without access to certain systems? For how long? Have we tested this?
- Penetration Testing: Have we attempted to hack into our own systems to test the security of our systems and our ability to defend against attacks?
I’m still worried, what do I do?
Contact NGT, we are glad to provide some advise as to how to proceed.
Use this link to email, chat, or call: http://www.ngthelp.com
Read this helpful document to learn more about ransomware: Ransomware_Executive_One-Pager_and_Technical_Document-FINAL – Copy