Ransomware

Out of all the possible malware and viruses you can get on your system, ransomware has the potential to be the worst. ransomware is especially nasty due to the damage it can do to your system. This is especially true in enterprise level environments. I can speak from personal experience, that when the IT department finds a possible ransomware infection we take it very seriously.  I have personally witnessed on multiple occasions a company bring an entire department offline to keep an infection from spreading.

Ransomware is identifiable through its trademark method of infection. A ransomware program will encrypt your data on your system. After doing this, the program will demand payment in return for the decryption key. This is payable in a currency known as Bitcoin. Bitcoin is a currency that is entirely internet based. Criminals that carry out illegal activities on the internet tend to use Bitcoin. This is due to the fact that it is harder to track than normal currency.

Facebook

Facebook is disputing recent reports that the file-encrypting ransomware known as Locky. Locky spreads through Facebook’s instant messaging platform. Websites like LinkedIn are also septic to similar attacks.

The most recent breakout is a ransomware program known as Locky Decryptor. This Ransomware fits the typical description of Ransomware you would expect. However, the attack vector that this Malware infects through is typically the instant message chat on Facebook and other social media sites. Hackers who have gotten control of your friends Facebook accounts send you a link through Instant Messenger. Once you click on this link they put other methods in place to make sure you download the infectious program.

Infection

Depending on the degree of infection and critical nature of the data, some companies decide to pay the ransom.  Rather than waiting to have someone come in and clean up the systems. The problem with this is that there is no guarantee that the attackers in question will give up the key easily. The other problem with this is that the typical cost of ransom is usually one bitcoin. This sounds like a low payment, however, when you look at the transfer rates to this crypto-currency it is anywhere from $315 to $730 depending on the current market. This can be much more depending on how many systems a company identifies as infected.

The best way to deal with Ransomware is to never get it in the first place, Ransomware is not an easy thing to deal with experienced Cyber Security Professionals on the scene. The best defense for this problem is a good Security Plan and user awareness training. Ensuring your network is set up to minimize risk of infection to Ransomware and another malware is always recommended.

 

Cyber Protection Group

Cyber Protection Group also sells industry level solutions for this problem that can get companies back up and quick for when disaster’s like this happen.  Our one-click backup solution will not only protect your data in case of possible infection but also allow you to get your systems back up and running fast. All without paying a dime to shady crooks.  We also offer comprehensive security audits and penetration testing. Running tests like these help by discovering the vulnerability’s in your network before the bad guys do. Creating a safer network for you and your employees.