Tag Archive for: ransomware

,

SMBs are being hit with more malware attacks than ever, and many can’t keep up

Between infostealers, ransomware, and BEC attacks, SMBs are having a hard time remaining secure

Information-stealing malware, ransomware, and business email compromise (BEC), remain the three biggest cyber-threats small and medium-sized businesses (SMB) are facing, a new report from Sophos has warned.

The company claims almost half of all malware detected on SMB endpoints last year were either keyloggers, spyware, or infostealers – all malicious programs used to steal sensitive data and login credentials. 

For the researchers, this makes sense as the abuse of legitimate accounts is more difficult to spot, while opening the doors to many more criminal opportunities.

Ransomware and BEC

“The value of ‘data,’ as currency has increased exponentially among cybercriminals, and this is particularly true for SMBs, which tend to use one service or software application, per function, for their entire operation,” says Christpher Budd, director of Sophos X-Ops.

“For example, let’s say attackers deploy an infostealer on their target’s network to steal credentials and then get hold of the password for the company’s accounting software. Attackers could then gain access to the targeted company’s financials and have the ability to funnel funds into their own accounts.” 

Infostealers may be the most wide-spread threats, but ransomware remains the biggest. Fortunately for SMBs, the number of ransomware attacks “stabilized”, Sophos said, suggesting that growth slowed down. At the same time, ransomware attacks continue to evolve. Between 2022 and 2023, the number of remote encryption attacks rose by almost two-thirds (62%). Remote encryption happens when threat actors use an unmanaged device belonging to the victim organization, to encrypt files on other systems.

BEC attacks are the second-highest type of attack, right after ransomware, Sophos concluded. The attackers engaged in BEC are growing increasingly sophisticated, and often engage in a series of conversational emails with their victims, and sometimes even phone calls, before deciding to strike.

If you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

Published with consideration from TechRadar SOURCE

/by
,

5 Seemingly Innocent Download Habits Your Employees Must STOP Now To Avoid A Ransomware Attack

Once upon a time, you could install antivirus software and go about your merry way online and in your inbox, opening, clicking and downloading files without a care.

Today, antivirus alone cannot and will not protect you, especially if you INVITE the hack by downloading a file that is infected with a piece of code designed to circumvent your security protocols. Whether it’s a personal computer, phone or a laptop you use for business, here are 5 things you need to STOP doing now to ensure you don’t get hacked.

  1. STOP downloading apps from unknown sources. There are thousands of free apps available online that are very tempting to download. Hackers are masters at curiosity and “clickbait” designed to nail you in a moment of weakness. To prevent rogue apps and programs from installing, configure your devices to disallow the installation of programs from unauthorized sources. On your phone, ONLY download apps from your device’s respective app store that are tested and forced to meet the store’s security and privacy requirements. Business owners: while I’m sure all of your employees are trusting souls, it IS possible (and recommended) to have business machines locked down, preventing your employees from downloading any applications (or files) that could harm you and compromise your security.
  2. STOP surfing the web unprotected, particularly when accessing downloads. This is particularly true if you are on public WiFi. Starbucks is not going to guarantee your Internet connection is safe, nor is any other business, restaurant or location offering free Internet access. Talk to your IT company (that’s US!) about installing more than just antivirus, but endpoint protection solutions, like a VPN, that will “hide” you from cybercriminals and filter out nefarious websites and attacks so you CAN use public WiFi without the fear of inviting a hack.
  3. STOP opening and downloading files e-mailed to you without extreme caution. Phishing attacks via e-mail are still the #1 way hackers gain access to a network. It’s very common for an attacker to hack into someone’s e-mail and get their list of friends, colleagues, coworkers and their boss to send e-mails that appear legitimate on “their” behalf, even using their actual e-mail – these are are highly sophisticated phishing attacks. So, before you open or download ANY file e-mailed to you, make sure it was one you were expecting. It’s far safer to use IT-managed file sharing like OnDrive, SharePoint or Citrix ShareFile to send attachments. But bottom line, if ANY file “feels” wrong or suspicious about a file download, including a weird extension or suspicious file name, CALL the person who sent it to verify. If it’s important, they can send it again.
  4. STOP downloading “bloatware.” It’s common for legitimate, reputable apps to sneak in other applications or toolbars you don’t need. They sell this as a sponsorship to make more money every time one of their users downloads an app. The best way to spot these is to look for checkboxes when installing that automatically opt you into services by default. So, before you hit “Next” and keep rolling to get your app installed, take a second to really read and review what you’re agreeing to when installing that new app.
  5. STOP downloading music, software, games, movies and the like from websites like BitTorrent, RARBG, 1337x and similar peer-to-peer file-sharing sites. It’s very common for file-sharing networks to be breeding grounds for hackers who post files infected with malicious software for people to download. Some of the ads on these sites are malicious as well. Don’t feel “safe” just because you have antivirus – because you’re not.

Business owners: after showing this to your team for both their work and personal devices, click here to schedule a quick 10-minute call to find out how we can implement security systems that will give you stronger protections against hackers and against employees who accidentally click on or download a malicious file.

If you need professional solutions and expertise to keep your devices safe, we can help. Contact us today to learn more about our security services and get the peace of mind you deserve.

If you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

Published with consideration from TechAdvisory.org SOURCE

/by
,

Improve Your Cyber Security Awareness

Learn About Today’s Most Common Types Of Cyber-Attacks

If you’ve turned on the news sometime during the past few years, you’ve probably heard of more than one instance where a business closed due to a cyber-attack. You may think your business is small enough and hackers won’t target you, but this couldn’t be further from the truth. Every business is at risk of experiencing a cyber-attack and should be well-prepared to defend against these threats. With the right type of attack, a cybercriminal can gain valuable information about your business, customers and employees, which can be used to damage your reputation and hurt you financially.

If you’re a business owner or leader and you want to ensure your business is well-protected, check out the most common cyber-attacks that are affecting companies today. From there, you can implement cyber security plans and tactics to ensure your business is protected from cybercriminals.

Phishing Scams

Phishing is a type of social engineering where an attacker sends a fraudulent message designed to trick a person into revealing sensitive information to the attacker or to deploy malicious software on the victim’s infrastructure. Phishing scams can wreak havoc on your business and personal life. You may have seen an e-mail from someone claiming to be Amazon or your credit card company asking for specific sensitive information. Often, the e-mail address does not line up with who the person is claiming to be.

When a phishing scam targets your business, they’ll likely request valuable information from your employees such as passwords or customer data. If your employees fall for the scam, they could give a cybercriminal unprecedented access to your network and systems. This may also allow the cybercriminal to steal private employee and customer information, leaving your employees vulnerable to identity theft. Phishing scams can be averted by using common sense and providing cyber security training to your employees. Most companies will not request private information over e-mail. That being said, if an employee receives a suspicious e-mail, they should do their due diligence to ensure the e-mail is genuine before responding in any way.

Malware

Malware is software installed on a computer without the user’s consent that performs malicious actions, such as stealing passwords or money. There are many types of malware, including spyware, viruses, ransomware and adware. You can accidentally download malware onto your computer by clicking on sketchy links within e-mails or websites. You might not even notice you have malware on your computer right now. If your computer is operating more slowly than usual, web browsers are taking you to random sites or you have frequent pop-ups, you should scan your computer for malware.

Prevention is key in stopping malware from affecting your business. Hiring and utilizing a managed services provider is the best way to protect your business, as they will continually monitor your network for exploitable holes. With malware, it’s always better to play it safe than sorry. If a cybercriminal is able to use ransomware on your network, your business could be stuck at a standstill until you pay the ransom. Even if you can pay the ransom, your reputation will still take a hit, and your business could be greatly affected. Be careful where you click on your phone, too, since malware attacks on cellphones have become more common over the past few years.

Attacks Involving Passwords

How do your employees access your network or computer systems? They most likely use a password to log in to their computer, access their e-mail and much more. What would happen if someone with bad intentions gained access to one of your employee’s passwords? Depending on the individual’s access, they could obtain sensitive information about your business, customers and employees.

Your team should be using long, complex passwords for their accounts, and each password for every account should be different. Encourage your employees to use password managers that will allow them to create the most complex passwords possible and keep track of them more easily. You can also incorporate multifactor authentication to ensure nobody can steal a password and gain access immediately. You should make your employees aware of this during your annual cyber security training.

If your business falls victim to a cyber-attack, it could have lasting consequences for everyone involved. Now that you know the most common types of cyber-attacks, you can start implementing plans to ensure you and your business stay protected.

If you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

Published with consideration from TechAdvisory.org SOURCE

/by
,

Ransomware: Don’t Become a Small Business Cybercrime Victim

Be on guard against ransomware. Small businesses can fall victim to cybercrime even though many owners don’t think they are likely targets.

A little legal practice, a 35-person manufacturing firm, and a two-person charitable organization are all examples of technology-driven businesses. As much as any brand-name financial institution or international shop, their core operations depend on operating systems, software applications, and networks. And they have all been victims of ransomware.

However, small and medium-sized businesses (SMEs) may be severely harmed, unlike large corporations, which are more likely to withstand a high-profile cyberattack.

A problem? Yes, but perhaps not as big as you think.

SMEs pay a high price for business disruption. They pay a high price for remediation and data recovery. They may lack the expertise and workforce to secure their essential IT infrastructure from cybercrime.

Enormous Ransoms for Small Businesses

According to NetDiligence’s Cyber Claims Study 2021 Report, ransomware has accounted for 40% of overall incident expenses connected to cyber claims in the last five years.

That is to say, the average ransom demand in 2020 was $247,000.

Research has estimated the cost of recovering from a cybersecurity breach affecting a small business to be roughly $352,000. These expenses do not account for the loss of client confidence due to the misuse of sensitive data.

Criminals know that small firms have weak or non-existent cybersecurity systems. As a result, they target them in large numbers, sending out repeated phishing attempts in the hopes of capturing a few victims in their automated nets.

Google has sent out 50,000 phishing or malware attack alerts as of October 2021, up 33% over the same month in 2020.

Since the Covid-19 epidemic, work-from-home and work-from-anywhere technologies have become more popular, exposing workers and small company systems to cyberattacks. According to one survey, approximately 70% of full-time workers in the United States started working from home during the Covid-19 epidemic.

Unfortunately, some small businesses infrequently take efforts to secure their remote employees. These efforts include implementing two-factor authentication (an additional login step) or encrypting computer disks. During the epidemic, millions of people lost their employment. Have they lost access to all of their email accounts and logins? Probably not.

Vulnerabilities in Small Businesses and Cybersecurity

Why are tiny firms such prey to predators? They could not have the operational know-how or staff to appropriately defend their IT systems and networks.

Meanwhile, here are a few examples of circumstances that put small companies at risk:

  • IT infrastructures are often outdated, are not regularly updated, and are poorly constructed.
  • The person in charge of IT — whether the CFO, the CEO, or a random employee — is seldom updated on the newest security risks and solutions.
  • Given the average pay of roughly $165,000, hiring a chief information security officer is often unaffordable.
  • A jumble of local hardware, networks, devices, and apps may make cyber protection difficult.
  • Employee cyber awareness training is poor or non-existent.
  • Backups may be unreliable or have not been thoroughly tested.
  • Business continuity and disaster recovery planning have not been emphasized.

Company executives may mistakenly believe that they are too tiny to be a cybercrime target, to their detriment.

Getting a Head Start On a Tough Situation

You don’t need any new gear or antivirus software to start boosting your company’s cyber security image.

Begin by taking a detailed inventory of your physical and digital assets, as well as a vulnerability assessment. It’s critical to create a “data governance” document that establishes guidelines for data management. People still record passwords on Post-it Notes on computer displays or taped on the bottom of mouse pads in small workplaces. Thus this technique is essential.

Above all, cybersecurity awareness training for employees is also necessary.

Phishing or other efforts at social engineering or getting individuals into vulnerable networks are a vital security threat vector for the ransomware outbreak. According to IBM’s 2021 X-Force Threat Intelligence Index, phishing was responsible for one-third of all cyberattacks. Ascertain that your personnel knows what to look for in these circumstances.

For example, penetration testing is another technique to go ahead with.

“Pen testing” ensures that your security measures are effective. Therefore, few small firms, in all experience, have the competence to undertake penetration testing. Therefore you may wish to hire an expert.

Finally, some experts recommend that every company establish real-time network and server monitoring. While strong passwords, two-factor authentication, encrypted data, and network firewalls are necessary and will slow down attackers, complete protection is neither cost-effective nor practicable.

Taking efforts to mitigate the potentially catastrophic effects of a cyberattack may be well worth the expense for small companies.

Are you interested in learning more about cybersecurity? Call us today and discover how our wide array of tech services can safeguard your business.

If you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

Published with consideration from smallbusinesstechnology.com SOURCE

/by
,

Is My Small Business Vulnerable to Ransomware?

Businesses of any size can fall victim to ransomware. How will you protect your small business from it? And can you afford it?

The Business of Chicago

One Monday morning, 35 workers of a Chicago business board of directors turned on their computers. They were met by a desiccated head popping up and demanding nearly a quarter-million in Bitcoin. Hackers had shut off their internet access. Their databases had been scrambled and rendered unusable.

This NGO had vital infrastructure but no skilled cybersecurity professionals or even a proper data recovery and business continuity strategy, much like thousands of other ransomware victims whose tales never reach the news.

Company management believed that its data and networks were secure until they experienced that dreadful Monday morning return to work. The company also lacked the financial wherewithal to pay the ransom.

Productivity loss is the biggest price tag paid by ransomware victims. In addition, they suffered the time-consuming job of controlling and cleaning up after the assault.

According to Proofpoint and the Ponemon Institute study, a ransom payment generally amounts to less than 20% of the entire cost of a ransomware attack’s interruption.

The staff at the Chicago organization discovered too late that their data recovery methods did not actually back them up. The organization labored over finding paper documents in order to recreate its records from the ground up.

Businesses In a Bind

Many smaller businesses believe they aren’t vulnerable to ransomware. That is very clearly not the case.

According to the National Cyber Security Alliance, small and midsized firms are the target of the bulk of cyberattacks, with up to 60% of them going out of business within six months of the ransomware assault.

Three Simple Steps to Defeat Hackers

Some may reasonably question, if a $44 billion firm like Accenture can fall prey to ransomware, what hope does a smaller company have?

Everyone requires a reaction plan if no one is immune to an assault. Consider the following three essential steps:

1. Provide cyber awareness training to all staff.

PEBCAC stands for “problem exists between computer and chair” in the world of cybersecurity.

Because email phishing is by far the most common threat vector for ransomware, the first line of defense is to teach all employees not to open unfamiliar attachments or clickbait links — “You’ve just won $1 million!” — and to protect their login credentials, preferably with two-factor authentication.

Some employees, believe it or not, still retain passwords on Post-it Notes stuck to their computer displays. Every employee in today’s networked remote workforce is a member of the security apparatus. Employees play an essential role in data protection. However, they must be given the correct knowledge and training.

2. Update all of your applications.

An inventory of operating systems and software is the first step in any threat assessment.

Updates defend a computer network from known security flaws. Additionally, you must properly maintain and configure every firewall and server to stay safe.

Unfortunately, this seemingly simple task of data governance is a big undertaking. It’s made considerably more difficult by the abundance of endpoints. Think smartphones, industrial systems, IoT devices, and all the equipment used by work-from-home staff.

3. Put backups and recovery strategies to the test.

This is the one step that many companies skip. You shouldn’t.

Pick a day, perhaps a Saturday, when everyone “pretends” to be victimized by a hacker. Test the reliability of your backups and the amount of downtime you can expect to endure should you fall victim to ransomware.

How You Can Recover

To recover from an assault, every firm needs dependable backups and, equally essential, a business continuity strategy. Form a cyber incident response team and conduct penetration testing to ensure the safeguarding of vital infrastructure. Be proactive rather than reactive in your cyber response.

No one is immune to assault. These are merely the beginning of your defenses.

Monitor network traffic in real-time. Otherwise, your organization is extremely susceptible. Mechanisms must be in place to detect and respond to intrusions before you suffer damage. Be aware that 100 percent prevention is neither cost-effective nor practical.

Virus Software

Virus software and firewall hardware have come a long way. However, at the end of the day, the greatest defense is a skilled cybersecurity team.

A monitoring and incident response control center will allow speedy data recovery, reducing downtime for both internal and external cyberattacks. Outsourcing a security operations center may help businesses with limited resources reduce their risk.

Consider the cost of business disruption as the first step in making systems more robust. Governments, utilities, and even IT corporations are all vulnerable to assault. Put a solid data security strategy in place. Without one, it’s not a question of if, but rather when hacking will occur.

Make sure your cloud storage is secure.  It’s imperative that you do so ASAP. Without this safeguard, all sorts of malware, such as ransomware, can run riot through your systems.

Are you interested in learning more about cybersecurity? Call us today and discover how our wide array of tech services can safeguard your business.

If you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

Published with consideration from smallbusinesstechnology.com SOURCE

/by

Can malware affect your Mac?

Malware creators will target anyone and everyone, including Mac users. So even though Apple computers are less vulnerable than Windows PCs, they are not completely impervious to cyberattacks. Read on to find out the different threats you should protect your Mac against, as well as signs that your computer has been compromised.

What are the threats that can affect your Mac?

There are several forms of malware that hit Apple products, and their effects can range from ones that are merely annoying to downright destructive.

  1. Adware – These are unwanted programs that bombard users with pop-up advertisements. Some malicious adware piggyback spyware like keyloggers and keyboard sniffers onto their deployment protocols, allowing them to record your typing habits and monitor your browsing behavior.
  2. Sniffers – These are usually designed to detect certain words on a web page and in a person’s typing pattern in order to trigger the keylogger. For instance, when you type your password, sniffers can activate the keylogger to copy the information you type and steal your login details.
  3. Trojan horses – These can infect both Macs and PCs, and they are often deployed through fake software installers or unsecured updates. They parade as legitimate software that actually contain a nasty surprise once installed. A notorious Trojan horse for Macs is the MacDownloader, which attempts to steal personal data stored in iCloud Keychain.
  4. Macro viruses – These attack computers by running a code that can take screenshots, format hard drives, corrupt files, deliver more malware, and access webcams and microphones. They are triggered when a user opens an infected macros-enabled file, hence the name.
  5. Ransomware – Macs managed to hold off ransomware for a while, but nowadays, even they can be vulnerable to it. KeRanger was one of the first big ransomware outbreaks in Macs. After remotely encrypting the computer and hibernating for three days, KeRanger would issue a .txt file containing instructions for decryption in return for one bitcoin.

Telltale signs your Mac is infected

Now that you know what kinds of malware your Mac could be affected with, here are some ways to tell if your computer is infected with one:

  1. Pop-up ads – If you’re seeing more pop-ups on your computer than usual, your computer is probably infected. An unusual amount of banner ads and pop-ups may mean that your computer is due for an update and/or a virus scan.
  2. Slowness – Mac users fear one thing above all: the spinning wheel of death. This little rainbow-colored spinning cursor wheel indicates that the computer is having trouble processing at usual speeds. This slowness can often be caused by overwhelming requests from simultaneous processes — likely of dubious origin — running in the background.
  3. Browser issues – Viruses sometimes do weird things to Safari or Google Chrome such as change its homepage or redirect a preset landing page to a site you’ve never seen before. If your browser starts behaving oddly, crashes regularly, or is often unresponsive, your Mac might have a virus.

Computer security is a matter of importance no matter what operating system you use. Reach out to our experts for an assessment of your network today.

If you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

Published with consideration from TechAdvisory.org SOURCE

/by

Cybersecurity terminology you need to know

Do IT security terms like “phishing” and “intrusion protection” sound extremely foreign to you? If so, it’s time you familiarize yourself with these and other common cybersecurity terms. By learning these basic concepts, you’ll be more aware of the depth and scope of online dangers and, hopefully, be better prepared to deal with them.

Malware

For a long time, the phrase “computer virus” was misused to refer to every type of attack that intended to harm or hurt computers and networks. The more appropriate term for these harmful programs and files would be “malicious software” or “malware.” Whereas a virus is a specific type of malware that is designed to replicate itself, any software created for the purpose of destroying or unfairly accessing networks and data should be referred to as malware.

Ransomware

Don’t let all other cyberthreats ending in -ware confuse you; they are all just subcategories of malware. Currently, one of the most popular of these is “ransomware,” which is malware that encrypts valuable data until a ransom is paid.

Intrusion prevention system (IPS)

There are several ways to safeguard your network from malware, but an IPS is quickly becoming one of the nonnegotiables. An IPS sits inside your company’s firewall and looks for suspicious and malicious activity that can be halted before it can exploit or take advantage of a known vulnerability.

Social engineering

Not all types of malware rely solely on fancy computer programming. Experts agree that the majority of attacks require some form of “social engineering” to succeed. Social engineering is the act of tricking people, rather than computers, into revealing sensitive or protected information. For cybercriminals, complicated software is totally unnecessary if they can just convince potential victims that they’re a security professional who needs the victims’ password to secure their account.

Phishing

Despite often relying on face-to-face interactions, social engineering does occasionally employ more technical methods. Phishing is the act of defrauding people using an app or a website that impersonates a trustworthy or often well-known business in an attempt to obtain confidential information. Just because you received an email that says it’s from the IRS doesn’t mean that it is. Don’t take such emails at face value — always verify the source, especially if the emails are requesting your sensitive data.

Antivirus

Antivirus software is often misunderstood as a way to comprehensively secure your computers and workstations. These applications are just one piece of the cybersecurity puzzle and can only scan the drives on which they are installed for signs of well-known malware variants.

Zero-day attacks

Malware is most dangerous when it has been released but not yet discovered by cybersecurity experts. When a vulnerability is found within a piece of software, vendors will release an update to fix the gap in security. However, if cyberattackers release a piece of malware that has never been seen before, and if that malware exploits one of these holes before the vulnerability is addressed, it is called a zero-day attack.

Patch

When software developers discover a security vulnerability in their programming, they usually release a small file to update and “patch” this gap. Patches are essential to keeping your network secure from the vultures lurking on the internet. By checking for and installing patches as often as possible, you keep your software protected from the latest malware.

Redundant data

When antivirus software, patches, and intrusion prevention fail to keep your information secure, there’s only one thing that will: quarantined off-site storage. Duplicating your data offline and storing it somewhere other than your business’s workspace ensures that if there is a malware infection, you’re equipped with backups.

Our cybersecurity professionals are always available to impart more in-depth knowledge of the many different kinds of cyberthreats. Get in touch with us today and find out how we can help you with your IT security woes.

To learn more about how to safeguard your business, or if you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment.

Published with consideration from TechAdvisory.org SOURCE

/by
Decryptors

Struck by ransomware? Try out these decryptors

There are several ransomware decryptors now, thanks to communities of white hat hackers concerned about increasing ransomware attacks worldwide. While some of these decryptors do come with a price, the rest are free or for a minimum donation.

The state of ransomware in 2021 so far

Businesses need to deal with ransomware both from outside and within. On one hand, there are more cybercriminals trying to infiltrate your network. On the other hand, careless and unknowing staff can easily let ransomware enter your network. For instance, employees may be tricked into providing their access credentials in phishing sites, or they may click links to websites that upload ransomware downloaders onto their machines.

The statistics are sobering. Ransomware cost businesses more than $75 billion per year. Over the past two years, ransomware attacks have increased by over 97%. And compared to the first two months of 2017, ransomware campaigns that were initiated from phishing emails increased by 109% in the same span of time this year.
According to studies, there will be a ransomware attack targeting a business every 11 seconds in 2021. That is up from every 14 seconds in 2019, and every 40 seconds in 2016. And the trend is that the rate will continue to increase over the years.

Zombie ransomware is easy to defeat

Not every type of infection is targeted to individual organizations. Some infections may result from self-propagating ransomware strains, while others may come from cyberattackers who are hoping targets become so scared that they pay up before doing any research on how dated the strain is and how to remove it.

No matter what the circumstances of your infection are, always check the following lists to see whether free decryption tools have been released to save you a world of hurt:

Prevention

But even when you can get your data back for free, getting hit with ransomware is no walk in the park. There are essentially three basic approaches to prevent ransomware:

  • First, train your employees about what they should and shouldn’t open when browsing the web and checking email.
  • Second, back up your data as often as possible to quarantined storage. As long as access to your backed-up data is extremely limited and not directly connected to your network, you should be able to restore everything in case of an infection.
  • Finally, regularly update all your software solutions (operating systems, productivity software, and antivirus). Most big-name vendors are quick to patch vulnerabilities, and you’ll prevent a large portion of infections just by staying up to date.

Whether it’s dealing with an infection or preventing one, the best option is to always seek professional advice from seasoned IT technicians. It’s possible that you could decrypt your data with the tools listed above. In reality, most ransomware strains destroy your data after a set time limit, and you may not be able to beat the clock. And even if you do, you probably won’t have the expertise to discern where your security was penetrated.

Don’t waste time fighting a never-ending stream of cyberattacks — hand it over to us and be done with it. Call us today to find out more.

If you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

Published with consideration from TechAdvisory.org SOURCE

/by

How to Protect Your Company from Ransomware Attacks

Data breaches are serious problems with business-crippling results. Some organizations are unaware of the multiple ways cybercriminals can attack and are often unprepared to combat the issues that arise when such activities occur. Others let fear of attack control their response and deploy common solutions that they presume will protect them but may later find themselves compromised because of gaps in their data protection approach.

Cybercriminals thrive on both of these scenarios–using lack of preparation or overconfidence in what was deployed to their advantage.

In this eWEEK Data Points article, Index Engines Vice-President Jim McGann offers valuable industry information about how to thwart the possibility of succumbing to a ransomware attack. Enterprises should implement the following five defensive strategies:

Data Point No. 1: Deploy a real-time malware detector.

Cybercriminals are looking for the path of least resistance when attempting to break into data centers. Whether it is a remittance of old attacks hoping to find an unsecure target or one of the many new threats created each day hoping to infiltrate a system before they’ve been identified, having one of the commercially available anti-malware software protection solutions deployed is an important first line of defense. Ensure that the software is scheduled for frequent system scans, and that updates and patches are installed automatically to minimize protection gaps.

Data Point No. 2: Deploy a backup solution that supports full-content analysis of your data.

Many backup products on the market today have some level of analytics functionality to determine whether any particular data has been corrupted. However, many of these solutions are metadata-only based, only looking at basic information about a file or database. Others use metadata analytics on the first pass and then follow up on suspicious results with content-based analytics. But this approach is flawed and can miss more sophisticated attack vectors, providing a false sense of confidence. A comprehensive content-based analytic scan deployed from the start validates the data’s integrity and delivers the high level of confidence that advanced or hidden attacks are found and neutralized.   

Data Point No. 3: Use forensic analysis that includes machine learning.

Because of the efforts of real-time malware detection providers and content-based analytic backup solutions, most cybercriminals have to consistently change approaches in their efforts to infect and attack business operations. What was once a bunch of loosely affiliated opportunists have turned into well-funded and organized syndicates using advanced technologies to re-engineer their attacks. Forensic analysis software that employs machine learning and artificial intelligence as part of its learning can detect patterns and anticipate changes that human-based intervention cannot. The cybercriminals are using ML to their advantage; so should you!

Data Point No. 4: Don’t pay a ransom.

Because of the swiftness and scale of these cybercriminal activities, it is possible that they may still find a way into your computing and storage infrastructure. Human error, falling for phishing schemes or intentional damage from a disgruntled employee can be the gaps that data thieves need to penetrate organizations that have deployed the proper security defenses. As overwhelming as it may be to find out that your data has been compromised and/or encrypted, don’t play into the hackers’ hands by paying a ransom for a return of your business-critical information. It is possible that you may still not recover your data even after paying. The security exploit that was leveraged may still be intact and cybercriminals may re-target your systems. Criminals may see you as an easy mark for having paid the ransom and have reason to come at you again, knowing that you’re willing to pay to get back up and running.

Data Point No. 5: Focus on best practices for cyber-recovery.

Not paying a ransom does not mean that you cannot get your systems back and operational. Nor does it mean that there has to be an excruciatingly long recovery period. The right protection software can turn a ransomware attack into just another disaster-recovery scenario. It can find the most recent clean backup prior to an attack and help recover any lost or infected data. In addition, the right cyber-recovery tool can launch a post-attack forensic discovery to find the breach and the malware that executed the attack in order to guide the post-attack recovery process and protect against future intrusions.

“Cybercriminals will strike any organization, no matter how big or small, if they feel like there is a good chance of collecting a ransom,” McGann said. “Taking steps to fortify your defenses and ensure fast, efficient recovery in case you do fall victim is paramount for protecting against ransomware in the first place. Criminals want the easy score. Deploying a solution like CyberSense that serves as a safety net against ransomware makes working for a win not worth the time and effort.”

To learn more about how to safeguard your business, or if you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment.

Published with consideration from eweek.com  SOURCE

/by
, ,

Protect your Mac from these threats

Through the years, Apple products have shown resistance to different kinds of malware that Microsoft computers weren’t able to dodge. This, however, does not mean that Macs are invulnerable. Here are some threats you should watch out for to keep your Mac protected.

What are the threats that can affect your Mac?

There are several general virus types that hit Apple products, and their effects can range from merely annoying to downright destructive.

1. Adware – Adware are unwanted programs that bombard users with pop-up advertisements. Some malicious adware piggyback spyware onto their deployment protocols, which can record your typing habits with keyloggers and keyboard sniffers, as well as monitor your browsing behavior.

2. Sniffers – Sniffers are usually designed to detect certain words on a webpage and in a person’s typing pattern in order to trigger the keylogger. For instance, when you type your password, sniffers can activate the keylogger to copy the information you type and steal your login details.

3. Trojan horses – Trojan horses can infect both Macs and PCs, and they are often deployed through fake software installers or unsecured updates. They parade as legitimate software that actually contains a nasty surprise once installed. A notorious Trojan horse for Macs is the MacDownloader, which attempts to steal personal data stored in Apple Keychain.

4. Macro viruses – Macro viruses attack computers by running an executory code that could take screenshots, format hard drives, corrupt files, deliver more malware, and access webcams and mics. They are triggered when a user opens an infected macros-enabled file, hence the name.

5. Ransomware – Macs held off ransomware for a while, but nowadays, even they can be vulnerable to it. KeRanger was one of the first big ransomware outbreaks for Macs. After remotely encrypting the computer and hibernating for three days, KeRanger would issue a .txt file containing instructions for decryption in return for one bitcoin.

Does your Mac have a virus?

Now that you know what kinds of viruses and malware your macOS could be affected with, here are some ways to tell if your Mac is infected with one:

1. Pop-up ads – If you’re seeing more pop-ups on your computer than usual, your computer probably infected. An unusual amount of banner ads and pop-ups may mean that your computer is due for an update and/or a virus scan.

2. Slowness – Mac users fear one thing above all: the spinning wheel of death. This little rainbow-colored spinning cursor wheel indicates that the computer is having trouble processing at usual speeds. This slowness can often be caused by overwhelming requests from simultaneous processes — likely of dubious origin — running in the background.

3. Browser issues – Viruses sometimes do weird things to Safari or Firefox such as change its homepage or redirect a preset landing page to a site you’ve never seen before. If your browser starts behaving oddly, crashes regularly, or is often unresponsive, your Mac might have a virus.

Computer security is a matter of importance no matter what operating system you use. Reach out to our experts for an assessment of your network today.

If you are looking for an expert to help you find the best solutions for your business talk to GCInfotech about a free technology assessment

Published with consideration from TechAdvisory.org SOURCE

/by