Defend Your Data from Ransomware Attacks

The Threat of Ransomware

The WannaCry attack was the turning point in the awareness of security threats. Suddenly malware was not about slowing down or compromising a few work stations. Malware and particular ransomware was now blocking entire networks in a matter of minutes across the globe.

Take action nowRecent years have been challenging in networking and data security. The cryptoworm WannaCry and numerous other malware threats caused significant data breaches around the world to businesses and individuals. Malware attacks have resulted in huge financial losses in business productivity and reputational damage as personal data is compromised. For many this threat was new, but with increased media spotlight on data security and GDPR regulations, protecting data from malware and the ability to demonstrate it, should be a top priority for all businesses of all sizes.

The real cost of ransomware to business

Ransomware costs businesses around the word millions of dollars from the ransom itself to loss of productivity and their reputation. According to a study by IBM, 70 percent of targeted companies pay the required ransom - half of the more than 10,000 US dollars and 20 percent even over 40,000 US dollars, but paying the ransom does not guarantee the files will be released.

The real cost to businesses is downtime and loss of productivity. With restricted access to files and data, businesses can experience huge delays in accessing data, which can easily run to millions of dollars. Then there is the cost to the company’s reputation if personal data is stolen or compromised.

Businesses of all sizes seem to be taking action but more needs to done. Most are reviewing their network security and have started to upgrade insufficient security protection, using the most up-to-date security technology and improving employee education of the threats. The demand for UTM (Unified Threat Management) and USG (Unified Security Gateways) has grown significantly and many have focused on upgrading Anti-Virus and Intrusion detection. But there are still many firms, especially SMBs, that are not taking the necessary action and should not consider themselves safe.

What is ransomware?

Ransomware is a form of malware (malicious software) and is also referred to as blackmail mail or a trojan. Ransomware encrypts files on a computer, device or smartphone and often on connected network drives via a security flaw or from an employee receiving and accessing malicious emails or websites.

The affected data becomes encrypted by the malware so the user cannot access files. The cybercriminals will then often demonstrate they have control of the files and will demand the victim transfers a certain sum (often in the form of cybercurrency) to them. Only then would the files be decrypted. But there is no guarantee that paying the ransom will allow the victim to regain access.

SMEs are increasingly under attack

Cases of ransomware infections are no longer only restricted to major companies. Even small businesses and even micro businesses are increasingly under attack. In 2015, SMEs were the most attacked companies with 43% of all cases. The common opinion of many SMEs that only large companies are in danger of falling victim to Ransomware is definitely wrong.

01. Backups! Backups! Backups!

Make regular backups of your data and save them separately from the wider network. Otherwise, the backups could also be encrypted. If your data is compromised, you’ll still have access to the backup.

02. Stay Up-to-date

Whether it’s the operating system or applications make sure they have the latest manufacture updates. Manufacturers always update their latest software versions first. Therefore it’s best to use the latest software versions as much as possible.

03. Unsafe Websites

Avoid visiting unsafe websites. Particular caution should be made when visiting blogs as they are the most frequently infected websites. Firewalls with protection mechanisms increase the security of surfing the web. In particular, content filters can help by blocking contaminated sites and the associated databases are constantly updated. Therefore, even “newly” infected websites are quickly marked and can no longer be accessed.

04. Take special care with emails

Always be suspicious of unsolicited email and above all do not open attachments. Fraudsters are becoming ever more sophisticated - be it fictitious job applications or authentic looking emails from financial service providers. If you are not expecting an email from a firm be skeptical and never reply, click on a link or open attachments.

05. Protection by hardware and software

Among the most effective protection mechanisms are firewalls. Combined with various software solutions, firewalls offer comprehensive protection against ransomware and other malicious programs - from gateway to endpoint protection (client). SSL inspection, VPN application intelligence, intrusion detection prevention, single-sign-on and content filters are now common functions of firewalls. In terms of software, anti-virus solutions as well as special anti-ransomware programs are a good idea. It’s important that the programs and firewalls are coordinated so that there’s no conflict.

06. Working without admin rights

Do not share the user profiles of the employees with admin rights. Many programs cannot be installed with normal rights and can minimise networks from being compromised by malicious software being installed.

10 ransomware protection tipsWhat should IT administrators and employees consider to protect themselves against ransomware?

07. Script blockers

Install a script blocker for web browsers to prevent the execution of malicious code on websites.

08. Raise awareness

Set up regular training sessions for employees to reminded them of the potential threat of ransomware and their responsibilities to take action.

09. Be prepared

Plan for the worst case scenario and make sure everyone if aware of the crisis plan. What should employees do if their computers are infected and who should they contact? By making sure everyone is prepared, the crisis can be mitigated.

10. In case of an infection

Immediately disconnect the affected computer from all networks. Check if other computers on the network are infected and understand the source of the infection to minimise its spread. Then reinstall the system and change all passwords. Now load the backup. Paying ransom to blackmailers is not recommended - there’s no guarantee that the encrypted data will actually be decrypted.

Begin Security Audit

Robust affordable solutions

Businesses of all sizes can now opt for affordable solutions offering reliable protection against ransomware and other malicious software. Several security options exist to protect personal and enterprise networks from being compromised.

Unified Security Gateways (USGs) provides a comprehensive solution for protecting against ransomware attacks through features including: anti-spam to block phishing emails, content filtering to prevent access to suspicious links, anti-virus to protect users from malware-infected files, and Intrusion Detection and Prevention (IDP) to detect and stop intruders from gaining control of your system.

Security “by design”

Zyxel’s Unified Security Gateway series offers highly integrated defence technology to provide the best protection for small, medium and large businesses against ransomware and other malware attacks via IDP inspection. Your data encryption requirements are met through IPSec and SSL VPN tunnel technology.

Security “by design” means a comprehensive, powerful and scalable solution that is at the core of the solution. Through licensing, you have the freedom to select and design the functionality that fits with your business.

The number of cases involving ransomware and other malicious programs are growing rapidly and attacks are becoming increasingly more sophisticated, but so is the

software and hardware fighting against them.

Solving the ransomware problem

Zyxel integrated Security Solutions

USG SeriesThe USG Series provides all the protection you need in order to fend off attacks from the Internet and defend against hackers. With full UTM Protection including Antispam, Antivirus, Content filtering and Intrusion Detection, it gives you a strong solution to deal and manage ever-increasing threats.

ATP SeriesOur Advanced Threat Protection (ATP) offers UTM services, but goes that one-step further. With sandboxing technology, ATP performs real-time checking for unknown threats offering a Zero-Day protection. ATP is the right choice to protect networks against increasingly sophisticated hackers.

NSG SeriesZyxel Nebula gateways are quick and easy to deploy with a remote location through nearly zero-touch cloud provisioning. It automatically pulls policies and configuration settings, receives seamless firmware upgrades and security signature updates from the cloud without the need for on-site networking expertise.

UTM - Complete network protection with Anti-Virus, Anti-Spam, Content Filtering 2.0, IDP and Application Patrol

VPN - Branch offices, partners and home users can deploy ZyWALL Firewalls for site-to-site IPSec VPN connections

Ease-of-Use - Managing complex configuration settings can be confusing and time-consuming. ZyWALL USG Series provides an “easy mode” setup for entry-level and SOHO users

Sandboxing - For unknown programs to be contained, emulated, executed, and inspected Sandbox Cloud then analyzes the behavior and verifies if it’s malicious or not in real-time

UTM – The ATP service pack includes classical UTM protection such as Web security and Malware blocker

Analytics – SecuReporter analyses your security and correlates data in real-time

Easy setup - Providing site-wide visibility and control that enables administrators to manage event logs, traffic statistics, bandwidth consumption, networked clients and application usage without access to individual devices

VPN - The Security Gateway, either site-to-site or hub-and-spoke VPN connections can be configured with complete simplicity and without complex VPN configuration steps – it’s just a few clicks in the Nebula Control Center

Policy Management - Zyxel Nebula gateways streamline configuration of firewalls and every security feature for faster, easier and more consistent policy settings by supporting object-based management and a unified configuration approach for all security related policies

Learn more

Learn more

Learn more

Content Filtering

Anti-Virus

Anti-Spam

Intrusion Detection& Prevention

ApplicationIntelligenceWLAN

Controller

Firewall

Prevent the latest content layer threats by detecting

and removing malware.

Integrated in a WLAN control gateway to the radio receiver,

reducing the cost of multi-machine deployment

Reduce the number of spam messages, control attacks and

virus infections via email

Prevent inappropriate content and dangerous sites on the Internet by blocking

connections

High-end encryption technology to ensure mobile

users have a safe connection to your network

Check against network traffic flow to prevent known and

unknown stealth cyber threats

Allows or deny the use of web applications to prevent threats

from entering the network

Monitor and control the incoming and outgoing

network traffic

Zyxel Unified Gateway Series integrated security defense technology

For more information on how Zyxel can support your network security needs, request a call back from a Zyxel Security Specialist or visit zyxel.com

Begin Security Audit Let’s talk

Next steps to take action against ransomware

Take our security audit to understand your security requirements

For more product information, visit us on the web at www.zyxel.com

Copyright © 2018 Zyxel Communications Corp. All rights reserved. Zyxel, Zyxel logo are registered trademarks of Zyxel Communications Corp. All other brands, product names, or trademarks mentioned are the property of their respective owners. All specifications are subject to change without notice.

Corporate HeadquartersZyxel Communications Corp.Tel: +886-3-TT 578-3942Fax: +886-3-578-2439Email: sales@zyxel.com.twhttp://www.zyxel.com

Europe Asia The AmericasZyxel BelarusTel:TT +375 17 334 6099Fax: +375 17 334 5899Email: sales@zyxel.byhttp://www.zyxel.by

Zyxel NorwayTel: +TT 47 22 80 61 80Fax: +47 22 80 61 81Email: salg@zyxel.nohttp://www.zyxel.no

Zyxel China (Shanghai)China HeadquartersTel: +86-021-61199055 TTFax: +86-021-52069033 Email: sales@zyxel.cnhttp://www.zyxel.cn

Zyxel Middle East FZETel:TT +971 4 372 4483Cell: +971 562146416Email: sales@zyxel-me.comhttp://www.zyxel-me.com

Zyxel USANorth America HeadquartersTel:TT +1-714-632-0882Fax: +1-714-632-0858Email: sales@zyxel.comhttp://us.zyxel.com

Zyxel BeNeLuxTel:TT +31 23 555 3689Fax: +31 23 557 8492Email: sales@zyxel.nlhttp://www.zyxel.nlhttp://www.zyxel.be

Zyxel PolandTel: +48 223TT 338 250Hotline: +48 226 521 626Fax: +48 223 338 251Email: info@pl.zyxel.comhttp://www.zyxel.pl

Zyxel China (Beijing)Tel: +86-010-6TT 2602249Email: sales@zyxel.cnhttp://www.zyxel.cn

Zyxel PhilippineEmail: sales@zyxel.com.phhttp://www.zyxel.com.ph

Zyxel BrazilTel: +55 (11)TT 3373-7470Fax: +55 (11) 3373-7510Email: comercial@zyxel.com.brhttp://www.zyxel.com/br/pr t/

Zyxel Bulgaria(Bulgaria, Macedonia,Albania, Kosovo)Tel:TT +3592 4443343Email: info@cz.zyxel.comhttp://www.zyxel.bg

Zyxel RomaniaTel: +40 31 0809 888TTFax: +40 31 0809 890Email: info@cz.zyxel.comhttp://www.zyxel.ro

Zyxel China (Tianjin)Tel: +86-02TT 2-87890440 Fax: +86-022-87892304Email: sales@zyxel.cnhttp://www.zyxel.cn

Zyxel SingaporeTel:TT +65 6339 3218Hotline: +65 6339 1663Fax: +65 6339 3318Email: sales@zyxel.com.sghttp://www.zyxel.com.sg

Zyxel Czech RepublicTel: +4TT 20 241 091 350Hotline: +420 241 774 665Fax: +420 241 091 359Email: sales@cz.zyxel.comhttp://www.zyxel.cz

Zyxel RussiaTel: TT +7 (495) 539-9935Fax: +7 (495) 542-8925Email: info@zyxel.ruhttp://www.zyxel.ru

Zyxel IndiaTel:TT +91-11-4760-8800Fax: +91-11-4052-3393Email: info@zyxel.inhttp://www.zyxel.in

Zyxel TaiTT wan (Taipei)TTTel: +886TT -2-2739-9889Fax: +886-2-2735-3220Email: sales_tw@zyxel.com.twhttp://www.zyxel.com.tw

Zyxel Denmark A/STel: +45 39 55TT 07 00Fax: +45 39 55 07 07Email: sales@zyxel.dkhttp://www.zyxel.dk

Zyxel SlovakiaTel: +421 2TT 20 861 847Hotline: +421 220 861 848Fax: +421 243 193 990Email: info@cz.zyxel.comhttp://www.zyxel.sk

Zyxel KazakhstanTel:TT +7-727-2590-699Fax: +7-727-2590-689Email: info@zyxel.kzhttp://www.zyxel.kz

Zyxel ThailandTel:TT +66-(0)-2831-5315Fax: +66-(0)-2831-5395Email: info@zyxel.co.thhttp://www.zyxel.co.th

Zyxel FinlandTel:TT +358 9 4780 8400Email: myynti@zyxel.fi http://www.zyxel.fi

Zyxel Sweden A/STel: +46 8 55 77 60 60TTFax: +46 8 55 77 60 61Email: sales@zyxel.sehttp://www.zyxel.se

Zyxel Korea Corp.Tel: +8TT 2-2-890-5535Fax: +82-2-890-5537Email: sales@zyxel.krhttp://www.zyxel.kr

Zyxel VietnamTel: (+848) 35TT 202910Fax: (+848) 35202800Email: sales_vn@zyxel.com.twhttp://www.zyxel.com/vn/vi/

Zyxel FranceTel:TT +33 (0)4 72 52 97 97Fax: +33 (0)4 72 52 19 20Email: info@zyxel.frhttp://www.zyxel.fr

Zyxel SwitzerlandTel: +TT 41 (0)44 806 51 00Fax: +41 (0)44 806 52 00Email: info@zyxel.chhttp://www.zyxel.ch

Zyxel MalaysiaTel:TT +603 2282 1111Fax: +603 2287 2611Email: sales@zyxel.com.myhttp://www.zyxel.com.my

Zyxel Germany GmbHTel: +49TT (0) 2405-6909 0Fax: +49 (0) 2405-6909 99Email: sales@zyxel.dehttp://www.zyxel.de

Zyxel Turkey A.S.Tel: TT +90 212 314 18 00Fax: +90 212 220 25 26Email: bilgi@zyxel.com.trhttp://www.zyxel.com.tr

Zyxel Hungary & SEETel:TT +36 1 848 0690Email: info@zyxel.huhttp://www.zyxel.hu

Zyxel UK Ltd.Tel: +44TT (0) 118 9121 700Fax: +44 (0) 118 9797 277Email: sales@zyxel.co.ukhttp://www.zyxel.co.uk

Zyxel IberiaTel:TT +34 911 792 100Email: ventas@zyxel.eshttp://www.zyxel.es

Zyxel UkraineTel: TT +380 44 494 49 31Fax: +380 44 494 49 32Email: sales@ua.zyxel.comhttp://www.ua.zyxel.com

Zyxel ItalyTel:TT +39 011 2308000Email: info@zyxel.ithttp://www.zyxel.it