In the heat of the moment, it's easy to click on a link without thinking. It's human. And sometimes, as with the recent WannaCry virus, we don't even have to click on anything to go there. That's why it's important that you at your company think beforehand. There are ways to reduce the risk, and more importantly to prevent or minimise damage if you are hit by a hostage virus, or ransomware.
There are 3 fairly simple things to keep in mind to resist or cope with an attack, or its effects.
1) Backup - preferably with version control and recycle bin
It may sound obvious, and some say it doesn't even help because the backup is also infected - but it absolutely can, it's still one or more extra sets of your files. Whether it helps you in a malware situation depends on how the backup service you're using works, and how you've set it up. For example, at Storegate we have blacklisted file extensions that we know come from various types of malware, viruses and trojans. Of course there will be new ones, but we are quick on the ball.
In addition, a good backup includes both version control and a recycle bin.Do you have it in your backup service? So you can go back to previous versions of files? In this case, files that are not infected? Make sure you have it, and that the feature is enabled. If you also have a recycle bin in your service, this could be the saviour, as some viruses discard your files and replace them with encrypted ones. If your backup service has a recycle bin, the undamaged files will go there. It may sound strange, but the trash can be your salvation.
2) Good antivirus and firewall
You have antivirus and firewall, right? Malware often comes through more holes to avoid detection by your protection, so it's important to have both. There are of course a variety of software providers, but one we recommend is ESET.
Make sure your software is active and up to date, and perhaps even set up as recommended by the manufacturer. Check out their website and see if they write anything about current risks, and if they send out newsletters, get on the list. Then you'll get information when you need it. You can also follow them on social media, and you'll have another channel for information when you need it. (This applies to all your digital services, of course.)
If you're not in charge of these issues, check with the person in charge of IT. There's a lot going on in security so a reminder is never a bad thing. If you are affected, your job will be difficult too, you may be the one answering to customers, unable to invoice, deliver or otherwise do your job.
3) Make all updates
This is always important. Always. Microsoft, Apple and others who make your software and operating system want you to enjoy using their products and feel safe working in them - so they fix security holes and gaps as quickly as they can, but you have to make sure you're up to date yourself. In almost every update, some hole is plugged, and you're safer. Review your settings, whether you're running PC or Mac, it's best to let the software or operating system tell you when it's needed. But feel free to check. One more time.
Do you know all three? Good! Then you know you've done what you can, and can work on it in peace. In a way, anyway.
*Do you have an account with us at Storegate? Then you have version control and recycle bin, just log in and make sure they are enabled. If you have any questions or concerns, please contact our support.