What you need to know about ransomware

SPONSORED CONTENT

The latest cyber threat that is costing businesses money through extortion is ransomware. Ransomware is a form of malicious software, or malware, that blocks a user from their computer system and/or data until a ransom is paid. Ransomware has become to be the No. 1 cybersecurity threat due to its high profitability.

According to the 2019 Cybercrime Tactics and Techniques: Ransomware Retrospective report by anti-malware organization Malwarebytes, ransomware directed at businesses increased 365% from 2018 to 2019.

Ransomware is delivered via phishing emails or by unknowingly visiting an infected website. U.S. companies have taken the brunt of ransomware attacks across the world, with organizations out of Texas, California and New York being the biggest targets. Any organization can become a victim of this prevalent threat, with industries like education, healthcare and government entities (such as cities and municipalities), being targeted the most.

While there are many forms of ransomware in circulation, there are two main types of ransomware ̶ both equally costly and dangerous.

Crypto Ransomware: Fraudsters encrypt files on an organization’s network, which blocks users from accessing them. Fraudsters will only reverse this encryption after their payment demands are met.
Locker Ransomware: Fraudsters lock down devices and prevent users from accessing them until their extortion is paid.

How can you protect your business from this risk? Below are some strategies that can help your business thwart this attack:

Install new security patches as soon as your operating system and internet browser developers make them available.
Never click on links or open attachments from unsolicited emails.
Consider purchasing cyber insurance.
Implement spam filtering to block emails that may contain malicious URLs.
Use an email testing environment to automate the scanning of attachments and URLs before delivering them to your organization’s email network.
Maintain a proactive retainer for an incident investigation service. If needed, this service can help you determine the source and scope of the breach, collect and analyze evidence and outline remediation steps. Ensure the incident investigation service is approved by your cyber insurance provider.

Here are a few points to consider if your organization becomes a victim of a ransomware attack:

Contact law enforcement. Ransomware attacks and extortion are crimes and should be reported as such. Any information provided could help the FBI apprehend the criminals responsible for the attack.
Quarantine any infected devices and remove the threat. This could prevent the threat from spreading through your network. Watch your other devices for any signs that the malware has spread.
Restore your organization’s data that was affected by the ransomware attack. Perform regular backups of your data and keep it stored on a separate device that is not connected to the internet.
Start a contract with an external law firm that specializes in data protection and corporate cyber security breaches. They can advise you on federal and state laws.

The tips above are not a comprehensive assessment of what your business should do to protect itself from ransomware, or a chronical of the complete steps to take if you become a victim. To best protect your business, keep cyber security top of mind and educate your employees. As fraud threats change and evolve quickly, it’s important to stay on top of trends to ensure you’re doing all the right things to protect your business and your customers.

For more information and tips on securing your data, check out Commerce Bank's guide to protecting your business from Fromjacking and its article on business email compromise.

(This sponsored content was provided by Commerce Bank.)

Robin J. Wandschneider-Stiegelmar, senior vice president of Commerce Bank Colorado, is Commerce Bank’s team lead for retail banking and small business banking in the Denver market. Commerce Bank has four locations in the Denver metro area, with its newest location now open in the Highlands at 3550 W. 38^th Avenue.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Select Region or Brand

Upcoming Event