Ransomware is a sophisticated piece of malware that blocks the victim’s access to their files. There are many different types of ransomware with new ones coming out at an ever-increasing pace. They target both home users and businesses, small and large.
Even if you have an antivirus on your computer, ransomware typically goes undetected and does not get picked up by antivirus software. The longer a malware infection can persist on a compromised computer, the more data it can extract and the more havoc it can cause.
How Ransomware Occurs
The most common methods used by cybercriminals to spread ransomware are
- Spam email campaigns that contain malicious links or attachments
- Security exploints in vulnerable software like Adobe Acrobat, Adobe Reader, Oracle Java, Adobe Flash, Mozilla Firefox and Google Chrome.
- Website redirect to malicious websites
- Legitimate websites that have malicious code injected on their web pages
- and more
How You Can Protect Your Business From Ransomware
Educate Your Staff
- Make sure every user receives IT security awareness training, such as Online or CyberSafety Games Training from Kaspersky Security Intelligence Services
Protect From Infection
Deploy the world’s best-of-breed security solution – Kaspersky Endpoint Security for Business:
- Get the latest version and keep up to date.
- Enable critical (better still – all) solution modules.
- Tune up security module settings (e.g., enable heuristics).
- Enable Kaspersky Security Network.
- Patch software vulnerabilities in your infrastructure regularly with automated patch management from Kaspersky Endpoint Security for Business – Advanced.
How Kaspersky Endpoint Security For Business Stops Ransomware
Whenever any file categorized by the business as “important” is about to be accessed, Kaspersky System Watcher immediately creates a local, protected backup copy. If Kaspersky System Watcher spots a subsequent action it considers malicious, such as an attempt to encrypt the file, it will automatically roll back any unsolicited changes. All you’d see is an update process. There is no point asking for a ransom to decrypt files when any damage done by the hostage takers has been rolled back and the files are not encrypted. So you win, and they lose. And if everyone takes the same precautions, ransomware will soon become unprofitable and simply die away.