After WannaCry, here’s how businesses can fight ransomware
If there’s one thing that the events which occurred at the end of last week taught us, it’s that when you have your own business, security is something you need to take very seriously. Of course, we’re not talking about burglar alarms – although the defence of your premises is an important consideration itself – rather we mean online security, and protecting yourself from incidents such as the WannaCry ransomware which has been plastered across the headlines over the weekend.
Cybercriminals are always actively looking to get into business IT systems and steal lucrative data, from company secrets to customer transactions. According to a 2016 study by ISP Beaming, cyber-attacks costs British businesses an estimated £34 billion (around $45 billion, AU$60 billion) a year.
There are a number of tactics criminals use to steal money from companies, and ransomware is one of the most common. It’s a form of malicious software that encrypts files, preventing the user accessing them until they pay a ransom to unlock the data.
Research by security firm Malwarebytes claims that ransomware attacks have affected more than 40% of businesses over the past year. In this article, we’ll explore how you can prevent such malware attacks, or deal with them if you happen to be unfortunate enough to get hit.
Back up your data and assets
If you haven’t yet been affected by a ransomware attack, then you have an opportunity to put safeguards in place to keep your precious data safe. With the right systems, you’ll be able to protect your business assets.
One of the best ways to do this is by ensuring that you regularly back up your key business files. This is, of course, something you should be doing already. Running regular backups is not only a good defence against ransomware, but also other disasters which could occur such as disk failure.
Backing up data needn’t be a complicated or lengthy process. With the right software solution, you can back up your data without any hassle, and you don’t need any IT expertise. For basic needs, Acronis Backup 12 is one of the most popular products on the market, costing £45 (around $60, AU$80) a year. The tool only takes three clicks to get up and running, and it’s currently compatible with 16 platforms. These include Office 365, VMware and Azure. You can also choose from four different encryption standards.
Naturally, there are other basic security considerations that you should bear in mind. You should always ensure that operating systems and software alike are updated with the latest security patches. And you shouldn’t be running an outdated OS such as Windows XP, which is no longer patched – remember that the WannaCry ransomware leveraged an unpatched vulnerability in this operating system (though it's now been patched, such is the seriousness of this incident).
Also, when downloading files from the web, always put caution first, and never download or install anything from what might seem to be a suspicious source. The same goes for iffy-looking emails and potentially malware-laden attachments.
Invest in computer security
Having antivirus software installed on your systems is also crucial in preventing ransomware attacks. You’ll find that a typical home security package won’t be powerful enough, so it’s worth looking for a business-oriented option. Luckily, there’s plenty of choice, with products available that support businesses of varying sizes.
AVG Internet Security Business Edition is an excellent example. Available to buy starting at £33 online (excluding VAT, for a year’s subscription covering 1 PC) – that’s around $43, AU$57 – it provides you with tools to protect your business computers, email accounts and network from threats such as ransomware, spam and phishing.
The software offers 24/7 protection, and you’re sent an instant email alert if a threat is identified. What’s more, it comes with a selection of remote admin tools that you can use to manage your security while away from the office.
Use free software and resources
You don’t even have to spend any money to get protection from ransomware, though. There are plenty of free tools out there that’ll identify and remove threats. Take, for example, Kaspersky’s Anti-Ransomware Tool for Business. Designed to work with most security software on the market, this free tool will identify key ransomware behaviour patterns and protect Windows-based endpoints.
As well as utilities that can identify ransomware and prevent it affecting your systems, you can also get tools to attempt to reverse the effects of ransomware. If you end up experiencing an attack and your data becomes encrypted, Avast’s free ransomware decryption tools are worth checking out. Data can be encrypted in different ways, and Avast has provided a detailed explanation of how different types of ransomware work along with appropriate solutions.
Once you’ve downloaded one of the tools, you’ll need to provide a copy of the original file, as well as the encrypted one. The software will then analyse those files and try to work out a decryption method. Trend Micro offers a similar tool, and it can identify 26 different types of ransomware.
Other potential tactics you can try include booting from your Windows disc (as opposed to the hard drive) and then attempting a ‘repair’ on your operating system. (See here for more details on this).
You should do some research as well. Organisations such as Get Safe Online provide free online resources to help you learn about the threats posed by ransomware and how to avoid them. Online security firms like Kaspersky also provide significant resources on this topic, from blog posts to YouTube videos.
As a general point, bear in mind that if you are thinking of paying the ransom, there’s no guarantee that when you hand the money over, the criminals in question will send you the key to decrypt your files. We discuss this at much greater length in our feature: Should you ever pay up to ransomware criminals?
Have a strategy in place
As with any aspect of IT and business in general, planning is key to success. Ransomware is a common threat in the business world, and so it makes sense to have some form of strategy in place to deal with this menace. For instance, you could create a set of guidelines explaining what ransomware is, and how employees can identify any threats.
If you have a significant security budget, you may also want to look into setting up an incident response team. A dedicated team of security experts will be able to counter threats and hopefully prevent them from occurring in the first place, but even if the worst still happens, they can decide which systems to take down to prevent the infection from spreading. Alternatively, you can hire a security company to defend your network in such a manner.
Ransomware is a major threat these days, as we’ve seen very recently, but with the right planning and preparation, you can stay ahead of the game.