Ransomware is a form of malicious software known as malware that aims to extort money by encrypting (locking you out) computer files and demanding a ransom for the decryption password.
Ransomware exploits known security vulnerabilities; ensure all your systems and applications are always updated - this reduces the risk of malware infection.
Ransomware normally arrives via phishing (scam emails and texts); ensure your staff knows how to spot a scam email or text.
https://youtu.be/PAryvhdQGwERemember that GMP and all law enforcement do not encourage, endorse, nor condone the payment of ransom demands. If you ignore this guidance and pay the ransom:
Back in January, the Scottish Environment Protection Agency (SEPA) confirmed it was the victim of an ongoing ransomware attack. SEPA had about 1.2GB of data stolen from its digital systems on Christmas Eve, and Sepa decided not to play ball with the cyber criminals.
Ransomware is a scourge that is costing organisations billions of pounds, and every time a victim pays, it fuels further attacks. Sadly for Sepa, this is far from over.
It's important you take steps to protect from the loss of access to their data by ransomware and the risk of data theft.
Ciaran Martin, who ran the National Cyber Security Centre until last August, has called for a law change and warns that the situation is ‘close to getting out of control’ Insurers are inadvertently funding organised crime by paying out claims from companies who have paid ransoms to regain access to data and systems after a hacking attack.
He told The Guardian in January, "At the moment, companies have incentives to pay ransoms to ensure this all goes away. You have to look seriously about changing the law on insurance and banning these payments, or at the very least, having a major consultation with the industry."
Click to Open Code Editor