The latest Data Breach Investigation Report from Verizon noted that 2016 brought “more technical and process innovation in ransomware than we have seen since the invention of Bitcoin-enabled anonymous payments.” The report’s section on ransomware — titled “Ransom Notes Are the Most Profitable Form of Writing” — featured data and analysis from McAfee, a leading provider of anti-virus software. They found that email was the top infection vector for malicious software like ransomware, with “social actions” like phishing attacks figuring in on 21% of incidents. They also said the following of the role of security software in the fight against malware:
Although [endpoint protection systems and added detection techniques] have increased detection and prevention rates, the volume of ransomware variants and the criminals’ speed of adaptation mean the techniques are unlikely to be 100% effective, thus necessitating further action.
What You Can Do to Protect Yourself
Know this: This post is not a call to uninstall your anti-virus software and throw up your hands in defeat. Rather, it’s a call to expand your thinking and carry the knowledge that technical safeguards — while very helpful and valuable — cannot prevent all cyberattacks from happening. Your decisions and your actions matter.
Here are a few tips to keep in mind:
- Educate yourself about phishing prevention techniques. You are very much in the driver’s seat when it comes to social engineering scams like phony emails that attempt to trick you into clicking malicious links, downloading infected attachments, and/or revealing personal or sensitive data (like financial information and login credentials). If you don’t take the bait, these attacks won’t succeed.
- Don’t underestimate the ransomware threat. Cybercriminals use these attacks to get a quick return because they know people don’t want to be without access to important business and personal files (like family photographs and tax documents). It is critical to realize that paying the ransom offers no guarantee that you will regain access to your data. Prevention and planning are key. Our infographic can help you get up to speed on this threat and ways to avoid ransomware attacks, and the website nomoreransom.org is an excellent resource, particularly if you find yourself infected.
- Install anti-virus software on all your devices. Technical safeguards aren’t just for desktop PCs. Many effective, well-rated options exist for mobile devices like smartphones and tablets. Do a little research and choose the application that’s best for your platform.
- Reboot PCs regularly. Many anti-virus software variants run automatic updates to add protections against the latest discovered virus and ransomware strains, but they often require a reboot to take effect. (This is also the case with some operating system updates, which fix flaws and vulnerabilities.) It’s a great idea to restart your system at least once a week (or immediately if you receive a notification that a reboot is required to complete critical updates).
Subscribe to the Proofpoint Blog