1. Business Ideas
  2. Business Plans
  3. Startup Basics
  4. Startup Funding
  5. Franchising
  6. Success Stories
  7. Entrepreneurs
  1. Sales & Marketing
  2. Finances
  3. Your Team
  4. Technology
  5. Social Media
  6. Security
  1. Get the Job
  2. Get Ahead
  3. Office Life
  4. Work-Life Balance
  5. Home Office
  1. Leadership
  2. Women in Business
  3. Managing
  4. Strategy
  5. Personal Growth
  1. HR Solutions
  2. Financial Solutions
  3. Marketing Solutions
  4. Security Solutions
  5. Retail Solutions
  6. SMB Solutions
Product and service reviews are conducted independently by our editorial team, but we sometimes make money when you click on links. Learn more.
Grow Your Business Security

Protecting Your Business From Ransomware

Protecting Your Business From Ransomware
Credit: nito/Shutterstock

WannaCry, Petya and now Bad Rabbit — the massive ransomware outbreaks are becoming more and more common. These cybersecurity attacks can shut down major firms, ATMs, airports and departments of the government. Bad Rabbit started infecting systems in Russia and Eastern Europe and then spread to Germany and Turkey, much like Petya did. Some researchers also have detected the malware in Poland and South Korea.

Those infected are presented with a direct ransom note, telling them their files are "no longer accessible" and that "no one will be able to recover them without our decryption service." Then victims are given a time limit to pay in Bitcoins.

If such ransomware and CryptoLocker can paralyze large-scale businesses worldwide, there's no doubt small businesses are highly vulnerable. Although there are no foolproof ways to keep ransomware out of your systems — even antivirus and anti-malware can't keep businesses safe from Bad Rabbit and its variants or other ransomware — there are steps you can take to protect your business.

One of the biggest questions about Bad Rabbit and Petya is how it spread so quickly. Experts say they may be because operating systems and software are out of date, making their systems vulnerable. In many cases, it only takes one computer to infect an entire network. This also applies to antivirus software. Ransomware such as Bad Rabbit can take computer systems by storm because it takes antivirus companies hours to update their malware definitions, once they know about the malware.

Current catch rates from antivirus companies run at best between 80 and 90 percent, said Stu Sjouwerman, CEO at cybersecurity firm KnowBe4. Most antivirus companies test against known malicious software found "in the wild" and do not do as good a job against zero-day malware, which exploits holes in software as soon as the vulnerability is known, he said.

If the ransomware is known, an antivirus program may block it, but usually, it is an unknown variant or one that can bypass the filters in place. More often than not, a business antivirus may be out of date or software unpatched, meaning updates are not installed.

You may not be able to fully protect your computer, but you can protect yourself from data loss by backing it up. This way, you still have access to your data, even when your computer is on lock-down.

As an extra layer of protection, businesses should consider multiple backups using a cloud backup service. Offsite backups should be included, as some ransomware will encrypt most local files, files shared on the network and local backups, as well as disable services that use shadow copies, Sjouwerman said. If you don't know where to start, check out our suggestions for cloud storage and cloud backup solutions.

One of the most effective ways businesses can protect themselves against ransomware is to put employees through an effective security awareness training program. Another possibility for how ransomware spreads is through drive-by downloads on hacked websites. Visitors are told they must install a Flash update. But it's not actually a Flash update. Those infected sites are compromised by JavaScript injected in their HTML code. When in doubt, don't click on any Flash updates. You can always go directly to Adobe to check if an update is available. 

In many cases, businesses get hit by cyberattacks because a single employee clicked on a malicious link, opened an infected email, fell for a phishing scam or otherwise inadvertently opened the doors for a cybercriminal.

Cybersecurity awareness training can be done in-house if you have experts on your IT team. There are also many training and consulting services that specialize in training small businesses in best cybersecurity practices, and many offer a guarantee. For instance, KnowBe4's Security Awareness Training guarantees that it works or the company will pay your ransom if you get hit after doing the training.

For an in-depth look at cybersecurity and how you can defend yourself, visit our Cybersecurity Guide for Small Businesses.

Additional reporting by Sara Angeles.

 

Anna Attkisson

After getting infected with the tech bug at Wireless World and Cellular Business magazines as an intern in 1998, Anna Attkisson went on to dabble in all sorts of publications covering everything from children’s fashion to financial planning, cars and travel. During the last 10 years, she’s returned to her roots where she’s been writing and editing for Laptop Mag and Tom’s Guide, before moving on to Tom’s IT Pro, Business.com and Business News Daily. She has a B.S. in journalism from the University of Kansas.