Companies in Finland face many kinds of threats online, too. Among other things, Tampere-based IT company Onnisys has prepared instructions to improve the company’s information security in order to avoid ransomware attacks.
Companies can improve their chances of protecting themselves from so-called ransomware attacks by adopting certain information security practices. Colourbox
Earlier on Thursday, we reported on the ransomware attack on the Finnish company KWH Freeze.
Ransomware is a general term for malware designed to extort data from a target.
According to F-Secure, ransomware software can, for example, encrypt files on a computer or server or lock the device completely.
The victim is typically required to exchange bitcoin virtual currency to unlock. If the victim does not act as requested, the blackmailers threaten to publish all the data they have captured.
This is a typical ransomware attack
The Finnish software company Onnisys says on its website that ransomware attacks on companies often follow the same pattern.
– First, the malware hides and searches for backups. Backups are then destroyed, important data is encrypted, and the backup application is taken over by attackers while deleting existing backups, it describes.
You can get malware on your computer, for example, by downloading a dangerous e-mail attachment, visiting an infected website, clicking on a fake ad made by an attacker, or even using an unprotected network.
Malicious software can sit on servers for months, waiting for the right moment to be activated.
– If the device or the data it contains is locked, cybercriminals can also threaten to leak data to the network for everyone to access.
The BitLock hacker group is reportedly behind the attack on the Finnish company. They threaten to publish the information online on November 27 if their demands are not met by then.
Read below Onnisys’ tips that companies can use to reduce the likelihood of falling victim to a ransomware attack.
PROTECT YOURSELF FROM RANSOMWARE ATTACK
1. Make sure that all devices have functional and reliable protection.
2. Back up files regularly in a clean location.
3. Keep the software of the devices updated and up-to-date.
4. Be wary of email links and attachments.
5. Limit the use of the browser by blocking the most known vulnerable plug-ins.