The term ransomware refers to a type of malicious software (or virus) that prevents or limits users from accessing their system and/or files. Modern ransomware encrypts certain file types on infected systems until users pay a ransom online to get a decryption key.
-1- Use Brightsquid Secure-Mail instead of email.
The most common way ransomware gets onto internal systems is through regular email. Users receive an email that might appear to be legitimate but by clicking an embedded link, they download a virus programed to seek out designated files on the organization’s network and block user access. These malicious emails are often sent en mass through hacked email accounts so that they appear to come from a known source, or from ‘spam’ accounts.
Training staff not to click links in suspicious email is one step toward keeping ransomware out. Blocking the emails altogether is a much more secure step.
Brightsquid Secure-Mail is a closed communications network. The security measures we have in place don’t not allow hackers into the system. Brightsquid also blocks executable files (files that can perform actions) such as the WannaCry virus that attacked millions of computers.
By excluding executable files from our network, we protect clinics that exclusively use Brightsquid Secure-Mail for all electronic communications from ransomware attacks.
-2- Update software.
Many ransomware viruses are programed to exploit vulnerabilities in common software that let them gain access to important files. Once these vulnerabilities are discovered by software manufacturers (often before hackers do), an update is issued to secure the program.
Failure to update software and operating systems with each new release puts your organization at risk to ransomware.