Cybercrime is a widely spread business and ransomware is one of its most lucrative element that pays off a good amount for hackers. By infecting your computer with a malicious file that prevents you from accessing to your critical data, hackers are able to extort money from an unbelievable number of businesses each year. While the typical payout for a ransomware attack is $300, the rate with which these attacks occur, has accounted over $300 million in losses in past year alone. If you fall victim of such attack, you may be convince yourself to pay the money and get your critical information back. But, here is something that you can do and bypass paying ransom for your data:
1.Backup you data regularly:
The best solution to defeat ransomware is having a regular backup. If you are targeted with ransomware you may lose that document you started prior this morning, but if you can restore your files or clean up your machine and restore your old/lost data from backup, you can rest easy.
2.Filter EXEs in email
If your email gateway scanner has the capability to filter out files by extension, you may desire to deny mails sent with “.EXE” files, or to disallow mails sent with files that have suspicious file extensions (“*.*.EXE” files, in filter-speak). However, if you do reasonably need to exchange executable, you can do so with ZIP files (password-protected, of course) or via cloud services.
3.Disable files running from AppData/LocalAppData folders
You can create rules within Windows or with Intrusion Prevention Software that prohibit a particular, distinguished behavior used by Cryptolocker, which is to process its executable from the App Data or Local App Data directory. If (for some reason) you have valid software that you know is set to run not from the typical Program Files area but the App Data area, you will need to exclude it from this rule.
The Cryptolocker/Filecoder malware may access target machines via Remote Desktop Protocol (RDP), a Windows utility that enables others to access your desktop remotely. If you do not entail the use of RDP, you can disable RDP to defend your machine from Filecoder and other RDP exploits.
5.Use a reputable security suite
It is always a good initiative to have both anti-malware software and a software firewall to facilitate you identify threats or suspicious behavior. Malware authors frequently send out new modifications, to try to bypass detection, so this is why it is important to have both layers of protection from reputable security suite, as they update their signature base frequently and assure safeguard.
However, paying a ransom is not a solution. Once you have given into a hacker’s demands, you may then become a victim of future attacks. Many hackers maintain target lists and organizations can find themselves subjected to rapid attacks whose total cost far exceed the original ransom amount. So, preparing yourself prior and backing up your data is the best possible solution to defeat ransomware. Moreover, using additional layer of security is also crucial to have in organization.