Ransomware Tips for Everyone – Redmondmag.com


questions and answers

Questions and Answers with Karinne Bessette: Ransomware Tips for Everyone

A leading Veeam technologist shares the key first steps IT must take during a ransomware attack. Most importantly, don’t pay the ransom.

News of emerging ransomware attacks has been around a dozen lately, with everything from mom and pop stores to government agencies falling victim to it. But for all its prevalence, ransomware is a threat that many companies don’t seem to have a good plan for.

For IT professionals looking for practical advice on how to forestall ransomware, a good start is an upcoming Live! 360 session called “Ransomware tips for everyone“hosted by Microsoft Azure-certified expert Karinne Bessette and Microsoft MVP Rick Vanover as part of the Live! 360 Conference taking place November 15-19 in Orlando, Florida. Bessette and Vanover will cover all of the basics to make a business more resilient to ransomware threats, from user education to recovery to how Microsoft technologies can help IT repel attackers.

As a foretaste of what’s to come in the session, Bessette recently shared their views on the current state of ransomware – including the worst things a company can do.

Redmond: So pay or not pay?
Bessette: Never pay. Many countries have rules that can be used to punish you for paying and funding terrorists. Even if you pay, sometimes the decryption is so slow that you have to restore from backups anyway.

We advise you on how to prepare yourself to be in control of your data before an incident occurs.

Have ransomware attacks changed as more employees work remotely?
Short answer, yes. Long answer: There are more devices (device sprawl), vulnerable home networks and a lack of training for such situations, both for users and for admins. In addition, remote access is one of the most widely used types of access.

“Make sure you know who to contact. Do you have a cybersecurity professional to turn to? Do you have support offers from key components in your environment? Valuable time must not be wasted during an incident. ”

Karinne Bessette, Technologist, Product Strategy Team, Veeam

What are the first things to do if you think your company is in the middle of a ransomware attack?
Isolation is the first practical step. This can begin with disconnecting network access and shutting down affected servers. Assess the extent of the damage and initiate the right stakeholders for your disaster recovery plan for your scenario.

Also, make sure you know who to call. Do you have a cybersecurity professional to turn to? Do you have support offerings for key components in your environment? Valuable time cannot be wasted during an incident.

The last thing you should do when faced with ransomware?
Pay the ransom. The reason this continues to be a nuisance to administrators around the world is because ransomware is a profitable business. There are pages on the dark web dedicated to selling information and vulnerabilities found in current and unpatched networks. This has made it easy for low-level hackers and script kiddies to get more dangerous.

Creating a contingency plan that mitigates the payment of the ransom in all possible cases is the best way to fight the spread because as long as ransomware continues to be profitable, people will continue to do so.

Any ransomware horror stories? What’s the worst ransomware attack response you’ve seen from any company?
In the course of our practice we have seen a number of incidents that have been a successful recovery, but some things have not gone so well either. We have also seen that things are solved out of “luck” and that should never be part of the solution.

One organization paid the ransom because it was simply “faster” than dealing with the complexity of their recovery tools. This is not the expectation of the world we live in today.

What makes a company particularly vulnerable to ransomware or attractive to attackers?
No layered approach to protecting against all forms of ransomware, from your network to disaster recovery. In addition, IT professionals must be made aware of the common attack vectors.

What do IT pros misunderstand the most when it comes to ransomware attacks?
It is not about if but if will it happen, there is a need to test disaster plans because you never know unless you test your plan. IT professionals also need to realize that there are actionable steps now to avoid disaster later. This session will provide you with practical advice on how to prepare to deal with the threat and how to respond.

Ransomware is a continuous learning perspective. In the session we will share the latest tips and tricks from experts who have made ransomware resilience their focus and area of ​​expertise. The advice is broken down into simple, actionable steps to ensure that you are getting the best out of a ransomware threat.

About the author

Gladys Rama (@ GladysRama3) is the publisher of Redmondmag.com, RCPmag.com and AWSInsider.net and publisher of Converge360.

Source link


About Author

Leave A Reply