Don't Let Ransomware Ruin Your Business

According to the U.S. Small Business Administration (SBA), so-called ransomware attacks are the fastest growing malware threats. More than 4,000 ransomware attacks occur every single day on average.

Vicious ransomware is an especially pernicious and increasingly widespread type of malware that can take over your devices and networks, and prevent you from accessing your files and information. The goal of ransomware is to lock legitimate users out of valuable files, then extort those users in return for financial assets.

Ransomware attacks on businesses are so commonplace and widespread today that a quick Google search will pull up a mountain of recent victims ranging from small businesses to huge multinational corporations. Within the span of 24 hours, Carnival Cruises Corporation, Konica Minolta, as well as the University of California San Francisco were all recently hit with successful ransomware attacks.

Ransomware Raids

Even Fortune 500 corporations with dedicated IT departments and cutting-edge cybersecurity protocols can’t protect themselves from ransomware raids, what can smaller companies possibly do?

Well, for starters, businesses outside of the Fortune 500 might have an advantage over their larger counterparts. 

Cybersecurity Defenses

The most sophisticated cybercriminals tend to attack organizations that possess the most money. Furthermore, larger companies employ more people, which, in turn, means that there are more potential vectors for attack. 

The number one way hackers can bypass sophisticated cybersecurity defenses is on the backs of careless or oblivious users. 

It’s no secret that the vast majority of cybersecurity breaches occur as a result of a network user or employee who falls victim to a phishing scheme or doesn’t follow basic network security protocols.

With this in mind, the following are 10 tips any company can employ to stop ransomware from ruining their business.

10 Tips To Stop Ransomware From Ruining Your Business

There are hundreds of thousands of ransomware attacks initiated every year against companies and organizations of all sizes. While some of these attacks are executed by sophisticated criminal organizations or even hostile nation-states, the vast majority of these ransomware attacks are launched by individual hackers. 

Generally speaking, run-of-the-mill assaults can be easily deflected with a little know-how and by sticking to a few simple network security best-practices. 

1. Implement network security training for all employees

The number one way to prevent, mitigate, and contain ransomware attacks is to simply educate and train your employees on the subject. A wall is only as strong as the men guarding it.

Likewise, network security strategies and tools only work if those that implement and use them understand how they work. That’s why regular and up-to-date network security training of all employees, particularly remote workers, is essential.

2. Turn on your spam filters

Spam is a huge headache for employers everywhere. Not only do they clog up user emails, but they are often also a vehicle for malicious cyber attacks.

The best way to deal with spam is to simply filter it out automatically before it reaches anyone.

Some useful tools for eliminating spam and authenticating valid emails include Sender Policy Framework (SPF), Domain Message Authentication Reporting and Conformance (DMARC), and DomainKeys Identified Mail (DKIM) to prevent email spoofing.

3. Scan incoming and outgoing employee emails for threats

Email is one of the preferred vectors of attack for hackers and other cybercriminals up to no good. Attacks through email typically take on the form of phishing attempts designed to skim valuable information or executable designed to inject malicious code into a targeted device.

Scanning and blocking dangerous executables before they reach employees is a great way to stop an attack before it ever happens.

4. Turn on or install firewalls

Firewalls act to limit network activity and traffic. It is particularly effective at blocking traffic originating from outside your network.

Simple, effective firewall protocols act as always-on protection preventing attacks before they can even occur.

5. Keep software, firmware, and operating systems up to date

 Always keep the software, firmware, and operating systems versions updated through updates and patches. Hardware and software manufacturers, as well as OS vendors typically such as Google and Microsoft, usually push out updates that contain important security fixes.

Waiting or delaying these patches and updates can leave your network exposed and vulnerable to known ransomware threats.

6. Install antivirus software

In today’s interconnected world, every device should have an antivirus software suite installed. It’s an essential network safety and security protocol similar to wearing a seat belt while driving.

Even the most basic antivirus software will be enormously beneficial for preventing daily malware and ransomware attacks.

7. Limit administrative privileges on company networks and devices

 By default, device and network users can do anything they want.

However, by restricting administrative privileges to only certain authorized users, such as an IT professional, you can limit how much regular users can affect a device or computer’s settings and permissions.

This can be a very effective way to limit exposure to malicious code. Restricting administrative privileges for regular users makes it much for challenging for ransomware to inject itself into the system, spread to other hosts, hide its existence from antivirus software, or steal critical data.

8. Implement Software Restriction Policies (SRP) or other controls

 SRP’s are Group Policy-based features that identify software programs running on devices and controls the ability of those programs to run. In other words, SRP’s can be configured to automatically whitelist or blacklist applications based on the criteria you set.

By restricting which programs can run, you significantly reduce the likelihood of a malicious application injecting ransomware into your network.

9. Practice application whitelisting

Rather than focusing on tracking down and quarantining or containing malicious applications, many companies choose to simply block all apps except approved programs. This makes controlling application permissions easier and acts as a broad barrier to bad applications seeking to infiltrate your business’s vital networks.

Copy and backup important documents, files, and data in a separate storage location.

Backing up crucial data is critical to network security.

If a ransomware attack does occur, having a separate storage location for mission-critical files can save your business from disaster and allow it to continue operating.

Ransomware authors will also have less leverage to extort your business for money. Regularly backing up company files in two or more secured locations is considered an essential best practice.

10. Get immediate help from professional Managed IT Services

If you find yourself in deep and need professional IT services contact a Managed Service Provider (MSP) or a Managed IT Services specialist. If you would like to know how Managed IT Services can help you grow your business safely and securely check out my free guide: 43 Ideas: How Managed IT Services Can Help You Grow Your Business.