Kroll Ontrack helps to eliminate funding for Ransomware criminals.
Kroll Ontrack has developed a set of solutions to restore corporate data fast and eliminate payments in the event of a Ransomware attack.
Ransomware is a lucrative crime
Payments to Ransomware criminals are expected to reach over one billion dollars in 2017. New attacks are being reported daily and they are not expected to decline anytime in the near future. Anyone with a computer, smartphone or even a smart TV can be the target of a Ransomware attack, but corporations are the ones who are hit the hardest. Not only is an infected company charged the ransom fee, they can also face financial losses due to downtime. Kroll Ontrack has developed a set of solutions to quickly recover the data held hostage, thus eliminating financial support of the criminals behind the attacks and reducing the amount of downtime experienced by companies.
Ransomware is a type of malicious software which blocks the access to data on a device by encrypting it. The global engineering team at Kroll Ontrack has identified over 225 variations of Ransomware and has defined a decryption process for many of them.
Businesses at risk
Ransomware variants will target different business verticals. The highest risk targets are healthcare, financial institutions and government agencies. Those who are at risk should take precautions to reduce their risk and lessen the effects of an attack:
- Create and follow a backup and recovery plan. Ensure that your plan includes storing the backups offsite and how to handle corruption.
- Be prepared by testing backups regularly. Organizations must be familiar with what is stored in backup archives and ensure the most critical data is accessible should ransomware target backups.
- Implement security policies. Use the latest anti-virus and anti-malware software and monitor consistently to prevent infections.
- Develop IT policies that limit infections on other network resources. Companies should put safeguards in place, so if one device becomes infected with ransomware, it does not permeate throughout the network.
- Conduct user training, so all employees can spot a potential attack. Make sure employees are aware of best-practices to avoid accidentally downloading ransomware or opening up the network to outsiders.
Even with the best precautions and policies in place, you may still suffer from an attack. In the event your data is held hostage by Ransomware, the engineers at Kroll Ontrack recommend:
- Remain calm. Rash decisions could cause further data loss. For example, if you discover an infection and suddenly cut power to a server, versus powering it down properly, you could lose data in addition to the infected data.
- Never pay the ransom because attackers may not unlock your data. There are many cases of victims paying the ransom demanded and not receiving their data back in return. Rather than running this risk, companies should work with data recovery experts who may be able to regain access to data by reverse engineering the malware.
- Check your most-recent set of backups. If they are in-tact and up-to-date, the data recovery becomes easier to restore them to a different system.
- Contact Kroll Ontrack for advice and to explore recovery options. We can examine your scenario to see if we have a solution already in place, or if we are able to develop one in time.
There is hope for companies who are infected with Ransomware. The team of engineers at Kroll Ontrack is working around the clock in order to identify and find a resolution for each type Ransomware.