Ransomware attacks have been very common in the recent years especially in 2016, 2017 and last year. Although they haven’t hit the headlines lately, ransomware attacks still wreak havoc, and now they have shifted into other areas such as cryptocurrency. They can also go undetected till an attack has occurred due to recent upgrades and technological changes cybercriminals are building into them.
Что такое программы-вымогатели?
Ransomware is a family of malware which generally decrypts or wipes off your files and then demands some hefty amount of money for a decryption key or for your files to be restored. In the recent years, once you have been attacked by ransomware, you get a note saying “your files have been encrypted and to access them, pay a certain amount of cryptocurrency to a given address.”
Most ransomware attacks are propagated through networks, or via Trojans that are disguised as legitimate files. Others have worm abilities and can move through networks and replicate themselves without user interactions.
The most commonly known variants of ransomware are encrypting ransomware – most common, non-encrypting ransomware – this restricts access to files but doesn’t encrypt them, leak ware – this type of ransomware also doesn’t encrypt your files but threatens to publish your sensitive information online, and lastly, mobile ransomware – this type attacks mobile operating systems.
Как защититься от программы-вымогатели?
Вот несколько советов, которые помогут вам лучше противостоять атакам программы-вымогатели;
- Do regular backups; Ransomware attacks are after data and having a good backup in the first place ensure you are immune to these attacks. But even backups can be attacked by ransomware if they are stored in the devices or connected to the internet. To avoid this, back up your data into a hard drive and disconnect it from your device once the backing process has finished.
- Be cyber aware; Ransomware attacks begin as a simple download, and in a matter of seconds, a whole organization can be infected. Always be keen on what you download online, avoid suspicious links and never open email attachments from people you don’t know. Also, avoid clicking on ads.
- Install the latest software updates and security patches; Ransomware attacks exploit vulnerabilities that are not patched. For instance, the Wanna Cry ransomware attack became a worldwide menace, and it attacked organizations which did not apply an update released by Microsoft earlier on.
Что делать в случае, если вы стали жертвой программы-вымогатели-атаки
Большинство жертв впадают в панику и, желая вернуть свои файлы, спешат заплатить выкуп. Иногда это хорошая идея, когда это единственный выход, а иногда - плохая. Мы подробно рассмотрим, почему платить не стоит. Но сначала давайте посмотрим, что можно сделать;
- Отключитесь от Интернета и всех сетей, к которым вы подключены. Это не позволит Ransomware распространиться, если она обладает способностями червя.
- Убедитесь, что это не программа-пугало: некоторые атаки с целью выкупа не шифруют файлы пользователя, даже если утверждают, что это так. Всегда проверяйте, не стали ли ваши файлы недоступными.
- Use a decryptor; antivirus companies have decryptor tools that can help you recover files encrypted by certain.
- Restore from backup; do a fresh install and restore your files to a state before the ransomware attacked.
- Сообщите об инциденте; это хорошая практика - сообщить соответствующим органам и даже окружающим вас людям о том, что в сети распространяется программа-вымогатель.
Почему вы не должны платить?
Вас могут заставить заплатить выкуп, чтобы вернуть свои файлы, но вот почему этого делать не следует.
- You might not get your files back; at times the ransomware may change as it propagates and loses its original purpose. In this case, even the authors don’t know how to decrypt your files, and they will continue demanding more money for nothing.
- Вы станете легкой мишенью. Заплатив, вы увеличиваете шансы на повторное нападение.
Always use a VPN – IPBurger VPN
If you like accessing free public Wi-Fi, ensure that you have your VPN turned on. Some malware can be injected via the free public Wi-Fi, and some of it might be ransomware. A VPN encrypts your internet traffic and tunnels it through a secure server to its destination. The encryptions ensure that your internet traffic is not visible to prying eyes such as malicious actors.
