Most people will be aware, due to the extensive media coverage, that many organisations have been affected by the ‘WannaCry’ Ransomware attacks. Ransomware is a form of malware that encrypts data on your hard drive. The criminals behind the Ransomware then attempt to collect a fee from you in exchange for decrypting the data. Ransomware is often an untargeted attack.
In fact, several small businesses that signed up with Labyrinth in the recent past joined us after they had been affected by Ransomware attacks because they had not maintained their systems or implemented adequate security controls.
Whilst we feel it is necessary to ask our clients to be take precautions in response to the recent attacks, we must emphasise the need to maintain secure systems and staff awareness at all times.
It is crucial to install, update and monitor anti-virus on all computers and servers. Labyrinth supply this as standard to all our clients. Real time data feeds back to our cloud control panel which we monitor daily. If an endpoint fails to update, or an infection is identified, Labyrinth will always take immediate action.
We can confirm that there are no pending anti-virus issues to be reported to any of our clients.
It is crucial to use a supported operating system which is fully up to date. Management of this will either be via a Windows Server (WSUS) or via automatic updates. We recommend that all clients restart their computers regularly (at least once a week) to allow pending updates to install.
Ensure staff are aware of Phishing practices (fraudulent emails appearing to be from legitimate companies). If an email, particularly containing attachments or links, appears to be suspicious, contact the sender to verify the integrity of the email or report this to us. Do not click any links, or download attachments from a suspicious email. This is one of the key methods of infection from Ransomware.
Key network devices should be kept up to date with the latest firmware. This is not specific to the recent ‘WannaCry’ ransomware attacks but is important to protect against other vulnerabilities. Labyrinth routinely update firmware on Firewalls, Switches, Routers, Access Points and NAS devices for all our clients. We employ robust systems and processes to keep track of this.