CHEKLIST: How to stop RANSOMWARE?

Posted on Tue, Jul 18, 2017 @ 03:44 PM by Carlos Lahrssen

Ransomware-infection.jpg

Ransomware attacks start in two main ways. A booby-trapped email with a malicious attachmentor via a compromised website; which then work their way down to your endpoints and servers. To stop these attacks, it’s critical that you have advanced protection technology in place at each stage of the attack and combine this protection with good user security practices.

Securing your Endpoints and Servers
If ransomware makes it onto your endpoints and servers it’s vital that you block and remove it as quickly as possible. Get the following technologies:

  • CryptoGuard Technology 
    Secures your endpoints and servers with unique technology that stops ransomware in its tracks. CryptoGuard complements your existing security, blocking processes that attempt to make unauthorized changes to your data
  • Exploit Prevention 
    Stops ransomware taking advantage of weaknesses in other software products.
  • HIPS Behavior Analysis/File Analytics Examines the components/structure of files for malicious elements and checks if it contains code trying to modify the registry.
  • Web Security
    Scans web content for ransomware code
  • Malicious Traffic Detection (MTD)
    Detects traffic to ransomware Command & Control servers and blocks it.
  • Application Control
    Restricts what applications are allowed to run and can block Wscript – which is often used by ransomware.
  • Application Whitelisting
    Establishes a “default deny” policy on servers so that only trusted applications can run – stopping ransomware from gaining a foothold.

Stopping Email Threats
The Email Gateway is your primary defense against malicious emails carrying ransomware.Make sure it includes:

  • Anti-Spam/Anti-Virus Technology
    Blocks ransomware emails, including those with booby-trapped macro attachments and stops other email-borne threats.
  • Time-Of-Click Protection
    Stops users from clicking on links to websites hosting ransomware – even if the link was safe when it entered the inbox.
  • Cloud-Sandboxing
    Catches zero-day threats including ransomware, by testing files in a safe environment before the user runs them.

Stopping Web Threats
The Web Gateway blocks web-borne ransomware before they hit your users’ endpoints. Look for the following:

  • URL Filtering
    Blocks websites that are hosting ransomware and stops ransomware communicating with its Command & Control servers.
  • Web Filtering
    Enforces strict controls on ransomware-related file types, stopping them from being downloaded.
  • Cloud-Sandboxing
    Catches zero-day threats including ransomware, by testing files in a safe environment before the user runs them.

Discover the nexogy solution: To stop ransomware before it stops you, you need the right protection in place. Use nexogy's managed firewall solution (CryptoGuard technology by Sophos) to stop ransomware from encrypting your files. And make sure you have the right anti-ransomware technologies at your email gateway, web gateway, firewall, and servers to stop these threats before they ever get to your endpoints. We will give you the very best chance of stopping ransomware from holding your data – and your business – hostage.  Contact us now for more information

Download the guide and become a nexogy Channel Partner today! 

Topics: cloud based technologies, managed network, managed services provider

nexogy's Bundles

About the Author

Carlos Lahrssen
Carlos Lahrssen
Carlos Lahrssen is president and CEO of nexogy, as well as founder, president and CEO of LD Telecommunications, Inc., nexogy’s parent company. Lahrssen is an industry fan, follower and advocate — stay...read more