skip to Main Content

Ransomware: What you need to know

When it comes to computer attacks, there’s a not-so-new villain in the cyber world.

Can you spot a bad email?Ransomware is the fastest growing malware, which is malicious software intended to damage or disable computers. Ransomware is affecting technology companies, banking institutions, government organizations and even individuals.

Even though this sophisticated malware is about 30 years old, the number of attacks grew by more than 50 percent last year compared to 2015, according to Carbon Black Inc.

What is ransomware

As the name suggests, ransomware takes control of the data in the computer, injects a code (encrypts it) and demands the victim to pay a ransom to regain access to files in his or her computer. If the money is not paid in a certain period, the data is lost forever.

“Although this ransomware is affecting mostly organizations, individuals are not exempt of being affected as well, so it is important to take some actions to keep your personal data safe,” says Camilo Ruiz, network security analyst at Dupaco Community Credit Union.

The malicious software acts like a virus, spreading and attacking vulnerable computers in three phases:

  • Phase 1: The attacker sends a spam email, and the user clicks on a malicious link.
  • Phase 2: Malware runs in the computer, and it encrypts the computer’s files.
  • Phase 3: A ransom note is delivered, and the attack attempts to spread to other computers.

If your computer is attacked

“There is not much that can be done if you are a victim of a ransomware attack and you do not have a recent backup created that can be restored,” Ruiz says.

If you decide to pay the ransom, know that you might not regain access to your data.

“There is not 100-percent certainty you will receive the key to free your data, and then you would lose your data and your money,” Ruiz says.

How to prevent it

But you can take steps to prevent falling victim to ransomware. Ruiz recommends taking these precautions:

  • Get—and update—security software. If you don’t have security software on your computer, install it. Then, continue to update it. Anti-virus and malware detection companies regularly release updates to help keep your computer protected from the latest known risks.
  • Frequently back up your data. Regularly back up your important, private and sensitive data on a defined schedule. “Do this every week or two, but do not wait more than a month to create your copy,” Ruiz says. “Utilize one of the many trusted online backup services, as these also protect against a fire in your home. If you choose to use an external hard drive or USB, do not leave it plugged into your computer or it might be encrypted by the malware as well.”
  • Delete any unknown email. If you receive an email that appears to be spam, delete it immediately, and never open an unknown attachment.