A ransomware is a malicious software used by hackers to encrypt files on computers with the intention of demanding a ransom before restoring the owner’s access to his data. A study by SentinelOne showed that about 56% of businesses surveyed were hit by ransomware in 2018. Of those attacked, all suffered five different ransomware attacks during the same period. Because many hackers demand bitcoin payment whose blockchain technology confers anonymity, perpetrators normally go unpunished. Here’s what you need to know about ransomware and how to stay safe.

How Do You Get Ransomware?

One way ransomware attacks your computer is through malspam. Just like a phishing email, malspam tricks you into clicking a link inside a seemingly legitimate email only to download malicious software onto your computer. These emails could contain attachments purported to be coming from your clients, suppliers, and even the tax office. Without a functional firewall installed on your network, it is sometimes difficult to detect that these emails and their attachments are legitimate. Email protection solutions such as Proofpoint Essentials can protect email users from email-borne malware.

Your computer might also be infected by malware through a process known as drive-by-download. Malware creators sometimes build the malicious software into a web page’s element. As soon as you visit the website, the malware automatically downloads onto your drive. The malware can lurk in your computer and steal your information without your knowledge. Until the hacker starts demanding ransom by bitcoin or kind, you might not even realise your computer’s security has been compromised.

Types of Ransomware

With the advent of Ransomware as a Service (RaaS), hackers are creating different strains of malware for profit. Some of these malware come with different variations even if they have the same signatures, making it difficult to track and stop them. Generally, though, all malware fall under three main groups.

Scareware tricks you into thinking malware has been installed on your machine. They appear as popups in your browser and encourage you to pay a ransom in order to remove the malware from your computer. The best response to scareware is to ignore it and do a thorough malware scan instead.

Screenlockers block access to your computer and only relent after you’ve paid a stated ransom. Sometimes, a screenlock ransomware will put up a CIA crest to create a sense of legitimacy and urge you to act in the hacker’s interest.

Encrypting ransomware, which is growing in its bad reputation, is the type of ransomware which encrypts files in addition to denying access until a ransom is paid. The ransom could be a few dollars, like is the case with Jigsaw Ransomware, or upwards of thousands of dollars. Encrypting ransomware promise to give you the key to decrypt your files if you pay the ransom.

What to Do

Many victims assume the hackers will fulfill their part of the bargain and pay up immediately their systems are compromised. Like it happens with kidnappers, however, there is no guarantee that the key will be delivered once you pay the ransom. Less than 30% of businesses that paid the ransom in 2018 had their files unlocked.

As a businessman or woman, it is important to treat ransomware like the criminal activity it is and report it to the relevant authorities. You can also employ the services of a legally trained and certified cyber expert to remove the malware from your system.

After the malware has been removed, the next step is to install and run a malware removal tool to check all files and folders on your computer. Chances are the malware is still installed on your computer even when you manage to get your files unlocked. A thorough malware scan should, therefore, be high on your to-do list right after an attack.

In addition to an antimalware, it is important to install and configure an internet security software. Some antivirus/antimalware software have all-in-one features to take care of your email account, web searches, and also keep your e-commerce activities safe and free of creeping eyes. Don’t just read reviews on the internet when purchasing an antimalware, though; there are many paid reviewers out there who don’t give honest feedback on the capabilities of the antimalware they claim to review. Rather, solicit the expert advice of cyber professionals. Your firewalls should also be at full potential all the time.

After you have cleaned up your computer, create a data backup routine. Keeping your business data backed up on different drives will dampen the impact of ransomware attacks. Having the safe back up will help your business bounce back in no time instead of wasting time bargaining with cybercriminals. Implementing a good disaster recovery plan is your best insurance against malware attacks.