Most of us have heard of computer viruses that can steal our data and the anti-virus software that is commonly used to fight it. An emerging nuisance known as ransomware is quickly wreaking havoc with businesses and consumers alike.

Ransomware is the cyber version of an old crime: instead of kidnapping and holding a person for ransom, a cyber criminal will hold your data ransom. Once installed on your computer, ransomware encrypts your data files. The only way to decrypt your data is to pay a ransom in exchange for a decryption key.

So how do you protect yourself from ransomware?

I have a backup disk, so I’m safe, right?

One of the most dangerous aspects of ransomware is that it can encrypt data on any drive your computer has access to, including backup drives. Network drives, such as file servers commonly used in business, and your local backup hard drives are also at risk. If your computer has assigned a drive letter to it, and you can browse files on it, then ransomware can get it.

Are cloud data backups safe?

There are two ways that cloud backups can also fall victim to ransomware. The first is by using a local utility that mirrors the data on your local computer with the cloud. If the ransomware encrypts your local copy and then synchronizes with the cloud, your last good backup in the cloud gets overwritten with encrypted data.

The second risk is similar: you automated backup schedule runs after the ransomware strikes, overwriting your last good backup.

The best defenses

Keep one offline backup

First, the best defense against ransomware is an offline data backup. This means your computer cannot be connected to the backup drive when the ransomware strikes.

One straightforward option is to keep two local backup drives: one is always plugged in and the other is not. You will have to remember to unplug the second drive after running a backup.

Cloud-to-cloud backup

Second, many businesses are turning to an emerging backup model where cloud storage is backed up to a second cloud storage. Consumer versions of this type of service are just now emerging. Instead of overwriting the last backup, however, the new backup is created anew. This takes more space but there is always an older, safe copy of backups unaffected by ransomware.

Experts are debating whether prevention or recovery is the most important way to deal with ransomware. Prevention includes having auto updates turned on for your computer’s operating system, browser plug-ins and anti-virus software. Good cyber-hygiene is also critical. Don’t click links or open attachments unless you expect them and know the sender.

If you need more tips on cyber-hygiene or if you have been a victim of ransomware, contact Holland & Hart or attend an information session.

Related topics