Ransomware has rapidly become one of the most prevalent and potentially damaging cybersecurity threats, even to small/medium businesses. What can entrepreneurs do to fight back?
Ransomware is a lucrative crime. Hackers break into a firm’s computer system, encrypting the data, which they will only release for a fee. In the recent evolution of ransomware applications, cybercriminals will also steal information during an attack. They will then threaten to publish this information on leak sites on the dark web or sell it, increasing the pressure for victims to pay the ransom.
Everyone has a role to play in fighting ransomware
While businesses should do everything, they can on the technology front to prevent ransomware and malware, people are, unfortunately, a big part of the problem. While a large enterprise may have the means to survive an attack, your company may be forced out of business due to ransomware’s impacts. Large or small, every organisation should do everything it can to protect its data and prevent ransomware.
There are all kinds of scams that hackers use to sneak ransomware onto devices and networks. And these scams are constantly evolving. That’s why everyone in the organization must understand what they can do to prevent ransomware. Here are some key areas to consider:
Train employees to spot scams
Businesses need to educate their people with regular cybersecurity awareness and training programs. Training should include recognizing potential threats, the latest news and guidance on new and existing threats, and how to respond to an actual or potential threat. It’s important to maintain awareness throughout the company with regular bulletins, updates, and tips.
Reinforce (and enforce) company policies
The company should already have set policies regarding confidentiality of user credentials, even for IT and security personnel. These policies should include strong password and authentication requirements. Make sure your employees understand these policies-and the reasons they exist-and adhere to them so they can do their part in ransomware prevention.
Use software as a service for applications
Using applications that are company-sanctioned can go a long way toward preventing ransomware. That’s especially true when it comes to using file-sharing applications instead of email attachments. This strategy mitigates or potentially eliminates malicious attachment phishing attacks, so it’s worth a look.
Talk about macros
Users unfamiliar with macros in Microsoft 365 and Adobe PDF documents may automatically click on an enable macros button in a malicious attachment. That would be a colossal mistake, opening the door for ransomware. There has been a rise in document-based malware where malicious documents work much like executable programs, including the ability to run processes and install other code on your systems. It’s also worth considering using non-native document rendering for PDF and Microsoft 365 files in the cloud to stop this practice, as these desktop applications may have unpatched vulnerabilities that are ripe for exploitation.
Make incident reporting easy
No one wants to be the person that clicks on a malicious attachment or link. It would be easy to beat yourself up if you’re the one. And it would be easiest to avoid the embarrassment that comes with reporting it. That’s why employees must understand that they-and everyone they work with-are the victims in these cases. Companies need to make sure everyone feels comfortable reporting any security incident. So put simple, clear reporting procedures in place.
Physical security matters too
Make sure that everyone understands the company’s security policies with regards to facilities and devices, too. A lost or stolen laptop that lacks a login password is an open invitation to accessing the network. And stolen credentials in the hands of a hacker can only lead to disaster. Everyone needs to understand that devices, badges, and credentials must always be kept secure.
Plan for recovery
There isn’t any way to be 100 percent certain that you are safe from a ransomware attack. Ultimately, the best defense is to ensure the company can recover if it happens and that starts with backup and disaster recovery planning and solutions.
“
