Over this weekend you would found it hard to miss the news about a new Ransomware attack based upon a vulnerability in a file sharing protocol within Microsoft Windows that affects multiple operating systems. Over 100,000 organisations have been infected so far and Europol expects that this number will rise significantly as people return to work.
This attack spreads through an emailed zipped attachment. When it's run, the code replicates to other machines on the network, locks the person out of their computer and encrypts what files it can before issuing a ransom demand. If the demand is not paid within a specified time frame the demand is increased and if not paid after another period the files are permanently destroyed.
TOP FIVE WAYS TO PROTECT YOUR BUSINESS
-
Patch your computer systems
- Our clients who come under one of our TrueCare or HomeCare workstation security plans we've confirmed already had their software patched back in March for this vulnerability so would be already protected from this attack!
-
Keep your Software Up-to-Date
- Whilst Windows 7 through 10 have been patched older systems such as Windows XP no longer receive updates and will still be vulnerabile to this attack. Have you got any machines on your network that need replacing?
-
Backup your systems regularly
- If in a worst case scenario you do fall victim it's better to restore your files from a recent good backup if you have one , rather than lining the pockets of these Criminal Organisations. Is your backup viable? Is it monitored and stored offsite? Do you get alerts if it fails?
-
Install Smart Firewalls
- If you are using a free router from your ISP then it won't have the intelligence to spot malware traffic passing through it. Vertech recommends Cyberoam Unified Threat Management Appliances to act as the perimeter guard dog for the organisation. They are able to spot attacks within your network and block the malicious traffic to limit the extent of the damage. What are you using in your company?
-
Train your Staff
- Even with all the technical defenses we can provide at the end of the day your last line of defense is your staff. Hopefully you give them a little more than the 2-Step on-the-job training of "Good Luck and Hang In There"! We can take the hassle out of CyberSecurity Awareness Training for your team and give you stats on how vigilant they are. It's a small investment compared to cost of a security incident I assure you. Give me a ring 09 972 0364 or drop me a line daniel@vertech.co.nz and ask about KnowBe4 training to get a free SIMULATED attack to see how your staff would fare.
If your would like to learn more about what needs to be done to keep your business safe from cybercrime register for my next FREE Educational Webinar here: https://attendee.gotowebinar.com/rt/4166723940651557890
Good luck and keep safe!
Daniel