BEST OF THE WEB

How to protect your enterprise against ransomware

Ransomware is a threat that strikes fear into the heart of most CISOs: The sudden realization the organization is shut out of its entire system is bad enough, but also to be faced with blackmail — pay up or else — isn’t the kind of dilemma C-level executives want to face.

But it is increasing, even in Canada. In the spring, a security vendor put out an alert that someone leveraging the Koler mobile app ransomware has fashioned an attack aimed at Canadians who visit porn sites. The payload is delivered by a movie viewer users are asked to download. Once infected a warning screen claiming to be from the RCMP pops up telling the user to pay a “fine” or the data on the smart phone will be deleted.

However, as this article points out, with some preparation infosec pros can be better armed for facing these kinds of attacks.

One of the most obvious defences is to daily backup the most valuable data the organization has and regularly practice restoring systems. An extortion attempt can be greatly diminished if the organization can bring back systems quickly.

Another is to recognize that more often than not ransomware gets injected into systems by staff falling victim to phishing email and visiting dangerous Web sites. Regular — more than once a year — employee awareness training and testing is vital to reducing the threat of ransomware.

Planning for the worst of any attack also includes being ready for the worst. That means having clear procedures on what should be done in any crisis including which employee should managing the situation, and what action should be taken.

These are just some of the things a CISO can do to mitigate blackmail. Remember, the situation is only hopeless because it’s been left that way.

Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

ITW in your inbox

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

More Best of The Web