Estimated reading time: 3 minutes
Table of Contents
What is ransomware?
Ransomware is a scary, so want you to learn about it! Ransomware is a form of malware that targets critical data and systems for the purpose of extortion. Currently, there are two primary types of ransomware:
- Lockscreen: shows a full-screen message that prevents users from accessing their PC or files
- Encryption: changes files so they can’t be opened
How does it work?
Ransomware directs a user to click a link to pay a ransom to the criminal in order to regain access to their system or files.
According to the Federal Bureau of Investigation, more than 4,000 ransomware attacks have occurred daily since January 1, 2016.https://www.fbi.gov/how-we-can-help-you/safety-resources/scams-and-safety/common-scams-and-crimes/ransomware
How does ransomware get on to a computer?
Users download ransomware from a malicious website. Also, hacked websites are also a source of ransomware. Malware and links to these sites are delivered by email, infected flash drives, or bundled with other software.
How do I protect against ransomware?
- First, implement awareness and training programs to educate staff about the threat and delivery methods.
- Make sure to schedule frequent, automatic back-up of your entire system to a secure storage system.
- Next, verify the integrity of backups and test the restoration process.
- Be sure to enable automatic security updates from operating systems, applications and devices.
- Importantly, set web browser security level to detect unauthorized downloads.
- Finally, enable web browser pop-up-blocker.
Malware infected my PC! What should I do?
- First, Isolate and turn off all infected computers then remove from the network immediately.
- Next, secure backup data or systems by taking them offline.
- Contact local law enforcement, a local field office of the Federal Bureau of Investigation (FBI) or U.S. Secret Service to report a ransomware event and request assistance
Should I pay the ransom?
There is no one-size-fits-all response for victims. The payment link provided may be malicious and could lead to additional malware infections and there is no guarantee that paying the fine or following the ransomware instructions will restore access. Deciding whether or not to pay the ransom requires serious evaluation of all options to protect customers, employees, and business. Victims will want to evaluate the technical needs, timeliness, and cost of restarting systems from backup versus payment of the ransom.
Proactive prevention is the best defense; businesses with appropriate security measures in place may be able to eliminate the need to pay a ransom to recover data.
The information contained in this document was prepared for informational purposes only and is not legal advice. Landmark Abstract is not a law firm and this information is not intended to be legal advice. Readers should not act upon this without seeking advice from professional advisers. We hope you did learn more about ransomware, what it can do, and how to prevent it.
See current ransomware threats here: Official Alerts and Statementscisa.gov