<img src="https://certify.alexametrics.com/atrk.gif?account=b2hlr1ah9W20em" style="display:none" height="1" width="1" alt="">
    Login
    Get started

    How to stay one step ahead of the hackers!

    ransomware attacks

    Ransomware attacks - where hackers gain control of IT systems or data and then demand payment to unlock them again - are soaring, worryingly because companies are all too willing to pay up.

    According to recent figures:

    • 54% of UK businesses have experienced a ransomware attack. A fifth of companies were charged $10,000 to get their systems back while 3% were hit with ransoms  of over $50,000.
    • A fifth of companies were charged relatively low demands of $500 which made them more likely to payransomware attacks up, ironically placing them at further risk in future.
    • In one week alone, over 14 million emails containing Locky ransomware were sent to potential victims. Hackers are said to adopt a 'spray and pray' approach.

    Malware (such as Cryptolocker, Cryptowall, and so on) is sent via phishing emails. When the recipient clicks on a link, the information on their computer is encrypted, effectively locking them out until the ransom is paid.

    Follow these steps to help reduce the risk of ransomware attacks:
    1. Be vigilant when dealing with unsolicited emails - Most malware is sent via phishing emails so don't click on any links in unsolicited emails, no matter how genuine they may seem to be.
    2. Comply with your company's backup policies and schedules - Back up any files and data you use regularly, ideally to an offline storage device. You will be better protected from the fall out of ransomware attacks if you have backup files and data to restore to your system, but make sure that any backup data is stored securely offline so it is useable and doesn't get encrypted too.
    3. Adopt a 'layered approach' to security - Be sure to make full use of anti-virus, firewalls and web filters to help minimise the risk of ransomware attacks.
    4. Keep your anti-virus software up-to-date - Hackers often exploit known vulnerabilities so be sure to always download patches and updates immediately as soon as they become available. Where possible, configure all computers to download and install updates automatically so this isn't ransomware attacksoverlooked.
    5. Check privileges and access rights - Malware executes with the same privileges and access rights as whoever executed it. So, if someone with 'administrator rights' executes ransomware, the code will lock down whatever data they have access to. The greater the access rights, the bigger the impact. Check user privileges regularly and only grant access to data parts of the system on a 'need to know' basis.
    6. Don't pay up - No matter how tempting it may be! There are no guarantees that you'll get your data back or that hackers won't leave other malware behind. Indeed, experts warn that paying up simply makes you more of a target in future.

    Leave a comment

    Tick

    eBook: Essential Uncovered

    Skillcast Essentials is our best-selling library and there's a reason for that. Essentials library provides comprehensive coverage of the key compliance / conduct issues that companies in the UK face today.

    Request now

    9 ways to reduce the risk of bribery and corruption

    Corruption affects all countries, rich and poor. It causes instability, inequality, and poverty, eroding national wealth. Despite the UK Bribery Act coming into force in 2011 as one of the toughest ...

    Read More
    Highlights from the GDPR 2019 Summit

    Almost a year on from the implementation of the GDPR, Skillcast held a breakfast forum for its clients at South Place Hotel. During this session, Skillcast gave a breakdown of the new GDPR Library of ...

    Read More
    Compliance Essentials News - May 2019

    Here's a selection of the most informative compliance news stories this month - regulatory announcements, market studies, and stories about compliance lapses and downright disregard of ...

    Read More
    FCA Compliance News - May 2019

    Here's a selection of news stories from the last month that touch upon the people dimension of regulatory compliance. Select the links or scroll down for more details. 3 firms and 5 individuals are ...

    Read More