Ransomware and steps to help protect your business

15 Aug, 2016

Ransomware is now the most lucrative form of Malware in history. A new report from Malware Bytes now suggests that last year 54% of UK businesses were targeted with an attack. 

Ransomware describes when an attacker has the means to lock your computer and devices or encrypts files so that they cannot be accessed. Your attacker then demands payment in order to restore your device/files.

This form of malware is on the rise and reports suggest that most businesses are not prepared to face an attack. Many businesses do not have the right infrastructure in place and are unable to detect the threat quick enough. Cisco’s Midyear Cybersecurity Report suggests that it takes on average 200 days for a company to identify a threat.

So, how can my business reduce the risk of falling foul to a hacker?

Preventing Ransomware

Cisco advises companies take steps to protect themselves by:

  • Making sure your anti-virus is updated and you have the correct defences in place
  • Timely back-ups of data
  • Improving network hygiene
  • Measures in place to improve threat detection
  • Invest in Information Security Training to protect staff

My files have been encrypted and a pop-up is demanding money. What should I do next?

  • Don’t pay – report to action fraud!
  • Remove system from network to prevent potential spread
  • Restore back ups

The National Cyber Skills Centre and most organisations advise against the payment of ransom demands because:

  • You are not guaranteed to get your data decrypted
  • Further extortion demands may follow
  • It encourages further attacks against other victims and funds cybercrime

There are some free decryption tools available online. “No More Ransom” is a new initiative (announced on July 25th) to help people in America and Europe reduce the risk of being hacked.

The initiative suggests 4 decryption tools for types of ransomware; CoinVault, Cryptokluchen, Rannoh and TeslaCrypt.

Threats can be as simple as opening an email. Are your staff trained to spot fake emails? Do they pro-actively look for something out of place? Book a place on our upcoming Information Security Training Course on 27th September, to minimise threats to your business.

 

Sources: The Guardian, IT Pro Portal, Data Breach Today

ISO Quality Services Ltd are proud to specialise in the implementation and certification of the Internationally recognised ISO and BS EN Management Standards.

Do you want to get ahead of your competition? Win more tenders or save time and money on reoccurring issues? Contact us today on 0330 058 5551 or email info@isoqsltd.com.

Alternatively, you can request a quote by filling out our enquiry form and a member of our team will be in touch shortly.

Related Posts

MAKING A DIFFERENCE ONE GOOD EGG AT A TIME

5 Apr, 2024

The ISO QSL Good Egg Awards returned for its seventh year to support Worcester Foodbank, receiving an outstanding 160 nominations, surpassing all previous records.

Read More

The BS EN 15713:2023 Update

9 Feb, 2024

The new BS EN 15713:2023 has been published.  Here’s everything you need to know about the changes and how to transition from BS EN 15713:2009.

Read More

Good Egg Awards return for the 7th year

31 Jan, 2024

It’s that time of the year again – an opportunity to acknowledge the hard work of your colleagues through our Good Egg Awards.

Read More
Keyboard with a padlock and data privacy printed across the top

Data Privacy and the Role of ISO 27001

22 Jan, 2024

Adopting ISO 27001 demonstrates a commitment to safeguarding stakeholders’ information and enhancing data privacy, here’s how:

Read More