An organization falls victim to ransomware every 14 seconds in 2019. This number is expected to change to every 14 seconds in 2021! Ransomware is a disruptive business risk! The journey for ransomware readiness, starts with preparation and that must be established in a formal policy on ransomware. Consider the following steps if a system or application is infected with ransomware – and must be outlined in your policy on ransomware.
- Isolate the infected computer immediately
- Isolate or power-off affected devices that have not yet been completely corrupted
- Immediately secure backup data or systems by taking them offline; ensure backups are free of malware
- Contact law enforcement immediately; contact FBI or Secret Service
- If available, collect and secure partial portions of the ransomed data that might exist
- If possible, change all online account passwords and network passwords after removing the system from the network.
- Delete Registry values and files to stop the program from loading
- Ensure Business Impact Analysis (BIA) and the IT Disaster Recovery Plan (DRP) are performed annually
Ask Ali Pabrai for a complimentary copy of a ransomware policy draft to jumpstart your readiness to address ransomware challenges. Ali.Pabrai@ecfirst.com. Leap ahead and be prepared to mitigate the ransomware risk to your business.
Date: April 09, 2019