Ransomware attacks on companies take place every day; attackers attempt to encrypt IT systems and demand a ransom. The damage caused by such an attack can quickly cost over €100,000. In this article, we will discuss how companies can reduce the follow-up costs of such an attack. One thing is clear from the outset: preparation is particularly important.**
It is particularly important to create offline backups in good time. These backups are writable, but cannot be changed after saving. A proven method for this is to use tape systems or cloud providers that enable encrypted backups. This not only ensures GDPR compliance, but also protects the data from deletion by a potential attacker. Backing up to local network drives is risky because hackers often specifically search for and delete them. The recommendation is therefore to consistently rely on an offline strategy. It is important to emphasize that simply physically separating hard disks is not enough, as hard disks can fail. Alternatively used hard disks should be regularly checked and replaced to avoid unexpected total failures. If a backup is already infected with malware before it is encrypted, data cleaning is also required. So-called data laundering can remove the parts infected by the virus. This procedure is particularly important to ensure that restored data is not reinfected by the ransomware.
When backing up, it is best to back up data selectively rather than entire systems. Restoring entire virtual machines with their operating systems can be very time-consuming and carries the risk of also restoring the malware. Automating the provisioning of virtual machines makes this process easier and speeds up recovery in the event of a disaster. In the event of a hack, reinstalling the operating system is recommended. This measure, combined with rapid system provisioning, increases the likelihood of removing the attacker from the system. Reinstalling the operating system is an effective strategy for breaking through the complexity of the malware and quickly getting the affected systems back up and running. By implementing these preventive measures, companies can significantly minimize the impact of ransomware attacks and effectively protect their data. Our team of experts is available to help you implement these measures. Book an online consultation now with no obligation and strengthen your company"s IT security. Protect yourself from potential threats – your data deserves the best possible security.
