The impact of CryptoLocker
CryptoLocker is a piece of malware that gets onto one PC and encrypts files across a company’s entire network. It is ransomware that tries to extort hundreds of pounds in return for the key to decrypt the encrypted data. It causes serious problems because of the disruption of having to turn off the entire network, clean up computers and recover files from back-up.
How do people get infected?
CryptoLocker arrives as an innocent-looking e-mail with an attachment that looks like a genuine file (Zipped up) but is, in fact, the CryptoLocker program. When the user opens the file the CryptoLocker program runs.
There are lots of variants of CryptoLocker and lots of new versions being released. There is always a period of time when the CryptoLocker is ahead of the anti-virus companies that are trying to detect it.
How to avoid getting infected
- Stay alert when opening email. NEVER open emails or attachments if you don’t know the company, you aren’t expecting their invoice, you aren’t expecting a tax refund or your bank probably isn’t offering you a £100 prize. Educating your users is very important.
- IT managers – agree to have all your PCs locked down so your users cannot install new software. This is good practice and it is quick and easy to enable someone to install a genuine application.
- Use Riverbank E-mail Protect to provide an additional level of protection.
- Use Riverbank SecureConnect to prevent people going to risky websites and to inspect all your web traffic for signs of a virus.
What else should you do?
Make sure you have a reliable back-up, preferably with a Disaster Recovery option to provide rapid and effective recovery if you ever need it. Test your back-up. You don’t want to find out that you do have CryptoLocker but you haven’t got a back-up.
Have an effective business continuity plan. For example, you know what you would do if your entire system was down for 24 hours and you know where you would find vital customer contact details.
How can Riverbank help you stay protected?
If you would like to learn more, please speak to your account manager or if you’re not a client and are interested in Riverbank carrying out a free security audit, please contact firstname.lastname@example.org or call 01235 426700.