The threat of the ransomware is very real due to its malicious routines – specifically, its ability to encrypt files not only on the system it infects but also those shared on the affected organisation’s network. This threat also goes after network-stored backups, in an attempt to undermine the typical recommendations for dealing with ransomware: don’t pay the ransom and implement a regular backup strategy.
Stu Sjouwerman, CEO of KnowBe4, told Legaltech News that the malware is particularly risky for law firms and legal departments because ‘apart from no one being able to get to case files, there is the issue of confidentiality.’
He advised that law firms and companies:
· Have top-grade backups and take frequent off-site backups
· Disable macros network-wide
· Block .zip files before they make it into the organisation
· Take all employees through effective security awareness training.
Similarly, the FBI advised to:
· Ensure that anti-virus software is up-to-date
· Implement a data back-up plan to maintain copies of sensitive data in a separate and secure location
· Ensure that backup copies of sensitive data are not readily accessible from local networks
· Scrutinise links contained in emails
· Not open attachments included in unsolicited e-mails
· Only download software – especially free software – from sites you know and trust
· Enable automated patches for your operating system and Web browser.
Sources: Legaltechnews; Softpedia; TRENDmicro
Email your news and story ideas to: [email protected]
