Ransomware: What you don’t know

[{"selector":"#anim-881457cd-7a24-4076-b415-db63f4e0a799","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}]

DAILY RISK ESCALATING

[{"selector":"#anim-b244a49d-d6ec-4dea-8794-3158b92290d1","keyframes":{"opacity":[0,1]},"delay":0,"duration":3400,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-19347511-b8dc-4019-82f9-aca9501cadc9","keyframes":{"opacity":[0,1]},"delay":1000,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] IBM Security X-Force saw a rapid increase in victims of ransomware, commonly delivered via an unsolicited email as an attachment.

IDENTIFYING VULNERABILITIES

[{"selector":"#anim-2bda6085-b453-4000-af9c-521774acc04b","keyframes":{"opacity":[0,1]},"delay":0,"duration":3400,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-5d72a729-475b-4ac8-92c2-911ef6530431","keyframes":{"opacity":[0,1]},"delay":1000,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] Knowing the incidents you are most likely to encounter based on operating sector, systems in use and applicable key risk indicators is critical.

DEFENSE AS A GREAT OFFENSE

[{"selector":"#anim-21a34833-7aa4-4656-9613-5bccb5187355","keyframes":{"opacity":[0,1]},"delay":0,"duration":3400,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-b0a07c6d-9091-4d1e-990b-fdb724246734","keyframes":{"opacity":[0,1]},"delay":1000,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] Proactive end-user education is key; a well-developed and rehearsed incident response plan can save time and money.

ATTACKS COME IN ALL FORMS

[{"selector":"#anim-df2de904-ad9d-49d4-bcec-d894556ce792","keyframes":{"opacity":[0,1]},"delay":0,"duration":3400,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-0cf775a2-0e59-4082-babe-e63952cf9a8d","keyframes":{"opacity":[0,1]},"delay":1000,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] Discovering ransomware infection can vary, from being unable to access specific files or services to receiving a ransom note.

ANALYZING THE INCIDENT

[{"selector":"#anim-6262ff3f-1dea-4537-b277-236a8468e1cd","keyframes":{"opacity":[0,1]},"delay":0,"duration":3400,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-93670378-c56c-46ec-b947-abdc092540a1","keyframes":{"opacity":[0,1]},"delay":1000,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] It is essential to identify the ransomware variant and determine how it entered the organization to better fight it and prevent the spread.

Using an endpoint detection and response solution can aid early detection, allowing infected devices to maintain power and retain data.

[{"selector":"#anim-4900eed9-c12b-4c2b-b3d3-8b846cf75dd8","keyframes":{"opacity":[0,1]},"delay":1000,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}]

FIND, CONTAIN AND ELIMINATE THREATS

[{"selector":"#anim-6fec31f8-fe28-435e-a640-7af860e1064a","keyframes":{"opacity":[0,1]},"delay":0,"duration":3400,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-ea11abde-7f68-4bf2-ae4b-e111d503a5c6","keyframes":{"opacity":[0,1]},"delay":1000,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] Staff must identify all infected resources, disable and disconnect them, remove ransomware and rebuild systems with a trusted source.

RECOVERING FROM AN ATTACK

[{"selector":"#anim-f4307f22-2fb1-4bd7-bac2-ed0838c21a36","keyframes":{"opacity":[0,1]},"delay":0,"duration":3400,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-537d7e41-b14f-40d3-959c-0462538e7e8d","keyframes":{"opacity":[0,1]},"delay":1000,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] Afterwards, organizations must patch vulnerabilities to prevent re-exploitation and restore data using internal backup infrastructure.

IBM SECURITY X-FORCE RESOURCES

[{"selector":"#anim-e45fae6a-cac3-4dd6-9117-7df5f5edacce","keyframes":{"opacity":[0,1]},"delay":0,"duration":3400,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-1dae0cf5-04c6-40e7-920e-bfcd89057e19","keyframes":{"opacity":[0,1]},"delay":1000,"duration":2000,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] To learn how to protect your organization, download the complete guide.