Three Responses After a Ransomware Attack

Ransomware is a type of computer virus that kidnaps your data and holds it hostage for money. It has become increasingly common, attacking governments and all manner of business as well as non-for profit institutions. If you are unfortunate enough to be the victim of a ransomware attack, there are basically only three options open to you.

What to Do After a Ransomware Attack

Why is ransomware so nasty? Because it steals the most important thing your business possesses. Data. Worse, once infected, there isn’t generally a way out. No one can “disinfect” your machine. You aren’t going to be able to call in IT support to solve the problem. Basically, you have three options.

Do What the Hackers Ask

Pay the ransom. This payment is usually via credit card or bitcoin (a digital currency). Some ransomware viruses even provide helplines if you’re having trouble. Of course, there are no guarantees you will get access to your data – these are thieves you’re dealing with. Plus, you’re going to only ensure more ransomware attacks will happen.

Refuse to Pay to Get Your Data Back

Don’t pay and lose your data – This has its obvious downsides, unless…

Being Prepared with a Backup

You have a safe, clean backup. In that case, you are stuck with the nuisance of restoring your data with the backup, but you aren’t out any money. However, this comes with a caveat: your backups have to be clean. The problem with ransomware viruses is that just making backups may not be sufficient to protect your data, as the backups can be infected also.

Ransomware Requires Prevention and Backups

As you can see, the first two options aren’t very favorable solutions. The only real defense against an attack is the third option. You have to be prepared ahead of time with a safe, segregated backup. Be sure to get the advice of a specialist on how to protect your data from this very serious threat to your business. In addition, you can bolster your cybersecurity through:

Contact Triton Technologies today to learn how we don’t just protect against ransomware but provide a full suite of cybersecurity and IT support for all your projects and IT infrastructure.

Ransomware and Disaster Recovery Plans

Disaster recovery is a fundamental element of good business continuity planning. Business continuity planning refers to the broad range of plans created so that a business can continue to be operational no matter what negative event might occur. Business continuity planning addresses catastrophic events, from loss of a CEO, director, or other principal in the organization to severe natural disasters that incapacitate a physical location. Disaster recovery planning is one piece of this broad planning. Specifically, disaster recovery plans refer to how to quickly recover from some event that compromises your IT infrastructure.

Part of Your Disaster Planning: Ransomware

In general, smaller businesses without any or single-person IT staffs utilize the services of a managed service provider (MSP) to develop disaster recovery plans. One piece of your disaster recovery planning needs to address how the contact center can protect its data from a ransomware attack. Unlike more well-known viruses, ransomware doesn’t just access your data, it locks it down so it is unusable. The business model behind this approach is simple: they are betting you will have no segregated backups and will be willing to buy back access to your data.

Is Your Data Properly Backed Up?

The only real defense against a ransomware attack is offensive. Just routinely making backups of your data may not necessarily protect it from being held hostage. Talk to your managed service provider about the design of your backups and how they are structured, so you will always have a “clean” copy of your data. If you want to defeat the designers of ransomware, your only real solution is to have uninfected backups. As long as you have these, you can simply refuse to pay the ransom. In the case of this virus, offense is the only defense that will keep your business data safe.

Make Sure Your Backup System Get Audited

The most important thing you can do to make sure your data cannot be held ransom is strictly adhering to a regimen of backups. Routinely backup your data. However, even backups may not be foolproof. If your data has been infected and you are unaware of it, or the backup is not segregated from your network, your backups may also become corrupted. Given the severe consequences of a ransomware attack to a business, consider having a security evaluation done by a managed service provider who will have the security expertise to advise you on the best backup protocols for your situation.

From providing superior managed online backups to business continuity planning, Triton Technologies is here to help. We can be called in to help proactively prevent ransomware, as well as provide full IT infrastructure audits and consultation. Contact us today to get started.