Ransomware – What Every Business Needs to Know

You don’t need to be an IT expert to have heard of malware, but now there’s a variation on the block which is becoming a growing threat for businesses all over the world – ransomware.

What is ransomware?

Ransomware is a type of malware which restricts access to the computer system that it infects, and demands a ransom paid to the creator(s) of the malware in order for the restriction to be removed.*

*Source: http://en.wikipedia.org/wiki/Ransomware

In other words, ransomware is a form of extortion. It’s been around for a number of years, but has recently started to rear its ugly head again.

How does ransomware work?

Any computer lacking in security is a potential target for ransomware. Without going into lots of technical detail, here’s a quick overview of how ransomware works:

Your computer gets the malware through an email or file download

The malware sends a ‘signal’ to the rogue server to let it know it’s in position

A unique cryptographic key is generated on your computer and the criminals’ server

The malware starts encrypting all your files such as Microsoft Office documents and images so you can’t access them anymore.

You’ll get a ransomware screen on your computer giving you a specified time limit to pay a certain amount to get your files unencrypted and returned for use

Here’s a great infographic by Sophos on the various stages of a ransomware attack.

The trouble when dealing with the kind of criminal gangs behind ransomware is that there’s no way of knowing that they’ll keep their word if you decide to pay the ransom.

What if you pay up and they ask for even more money?

What if you pay up and they don’t return your files?

What if you pay up and they return your files, only to attack you again a few days later?

Prevention is better than cure

The last thing any SME needs is to be the subject of a ransomware attack, but the reality is there are thousands of companies in the UK that are easy targets.

So what’s the best advice we can give you? Take preventative measures before the ransomware strikes:

Make sure your computers are properly protected against viruses and malware

Back up your files remotely every day and test them periodically to make sure they work

Disconnect all your computers from the network right away if you think you may have been attacked

Keep your anti-virus software, web browser and other software up-to-date

It’s also advisable to let your staff know what to look out for and make sure there’s a reporting procedure in place internally or to your IT support provider.

A word of warning

It’s estimated that around 60% of UK SMEs have data backups that don’t actually work properly. You may think you’re covered, but in the event of a ransomware attack, you may not be. By that point it’s too late.

Summary

Ransomware is a form of extortion where malware is used to encrypt your files. You are then asked to pay to get the files back.

Prevention is far better than cure when it comes to malware. Do everything you can now to keep your business protected such as backing up your files and keeping software versions up-to-date.

Ransomware looks like it’s here to stay. Don’t leave the door open for this malware to strike at the heart of your business.

Arrange your free IT consultation today and we’ll let you know how to protect your company from this threat.