Beware beware, the randsomeware
From the Hackney Council attack to the Kaseya extortion worth $70 million USD, ransomware is becoming a greater hazard than ever. Especially owing to COVID-19. For individuals who are unfamiliar with it, ransomware is malware that is installed on a user’s PC without their knowledge in order to steal money from their company.
Courtesy of Chroniclelaw.co.uk, we’re sharing these cyber security tips.
Randsomeware
Ransomware is a type of malware that encrypts data on a user’s computer and transfers control to the attacker. To regain control, the victim must pay the hacker a ransom to unlock their data. Ransomware may also quickly spread across a network, infecting all connected devices and bringing down an entire organization and its consumers. This can result in millions of dollars in losses, not to mention significant damage to a company’s reputation.
Tackling Randsomeware
Anti-virus software is always one step ahead of cybercriminals, which is why it comes out with frequent updates. As a result, Anti-Virus Software Nearing End of Life can leave systems more vulnerable to attack if they are not kept up to date.
If you have an older system, or one that is no longer supported by the manufacturer, it is especially important to make sure your antivirus software is up to date. Many times, these out-of-date systems can be exploited by cybercriminals because they know that the security measures are not as robust as on newer systems.
Enable multi-factor authentication
Having a second security protocol in the form of an OTP (One-time Password) or biometric data such as a fingerprint scan can be an excellent belt and braces strategy; one password might be cracked, but cracking another layer of protection is less probable.
Apply software patches to keep systems up to date
Similarly, your IT software is constantly being updated and patched so that there are no easy opportunities for hackers to take advantage of. Keep all your software up to date to avoid hackers exploiting its weak spots.
Allowing as little permission as possible
If a criminal breaks into one of your devices on the network, you’ll want to limit their access to the rest of the network as much as possible. Employing the principle of minimal privilege; providing your workers with only enough access for them to do their tasks. This might be an excellent belt and braces strategy when combined with application whitelisting, which restricts users from running certain software.
Go beyond antivirus
Your current antivirus isn’t enough any longer. To stay one step ahead of the cyber criminals, you’ll need anti-malware or advanced threat protection, which can help prevent attacks before they happen.
Use a VPN
Vulnerabilities in public Wi-Fi, commonly found at airports and coffee shops, do not have the same level of security as your workplace’s Wi-Fi. Fortunately, utilizing a VPN puts a secure barrier between you and public Wi-Fi, so remind your workers to use one if they’re using public Wi-Fi.
Be wary of the Dark Web
The passwords and personnel data of your organization are likely to be highly attractive on the Dark Web to the right buyer. A Dark Web scan can check to see whether they’ve been seized by the wrong people, and whether they need to be updated.
Ensure your data is backed up
Despite all of your best efforts, cyber criminals may still breach your security. You’ll need an up-to-date backup of your entire business’s IT to recover from and, as a best practice, it should be tested on a regular basis to verify that it covers everything you require in the case of a worst-case scenario.