How to prepare for and prevent a ransomware attack

How to prepare for and prevent a ransomware attack

There has been a lot of media attention lately in certain industries around a type of ransomware called DopplePaymer.

Using this ransomware, an adversary will gain access to an organization. From there, they will start infecting systems and will demand a payment and/or threaten to release the victim’s data if the ransom is not paid. This trend of additional extortion become increasingly common with ransomware operators in the past two years.

As more and more companies are being targeted by ransomware actors, here are some best practices to help you prepare for a ransomware event. While you may not be able to have total control over how or who infects your organization, you can control how prepared you.

Ransomware: is a simple but effective means for cybercriminals to make money from cyberattacks. It encrypts a user’s files once it is installed on a victim’s computer and then demands a ransom payment from the victim in exchange for the encryption key needed to restore their data.

DopplePaymer: has been active and affecting victims as early as June of 2019. Research shows that the most popular way victims are infected with DopplePaymer is by spam or phishing emails and through compromised websites.

11 Things to Think About When it Comes to Ransomware 

  • Know your threat landscape | Who might attack and how? 

  • Know your industry’s threat landscape | What type of threats are specific to your industry or what is happening to your industry’s threat landscape?

  • Have a plan or playbook to handle ransomware | Do you have a documented plan so you know your next steps?

  • Ensure you have a Vulnerability Management and Patching Plan | Do you have a plan to manage identified vulnerabilities and how often ..

    Support the originator by clicking the read the rest link below.