How to Prevent Cyber-Crime in Your Organization in the Wake of Another Ransomware Attack

Let’s face it, cyber-crime is a very real threat globally in today’s working world. From small businesses to large corporations, the risk is real and the impact can be great. Look no further than the latest WannaCry attack that has impacted more than 230,000 victims in over 150 countries since it began. The malware locked up the files in organizations as sensitive as hospitals and has shone a blindingly bright spotlight on the vulnerability in our digital security systems.

So the question moves from “well what if?” to “how do I prevent this when?” As the probability of cyber-attack increases, how do you keep your business safe? Here are a few key things to implement.

THE LATEST RANSOMWARE ATTACK

In May we faced the grave consequences of the WannaCry attack that impacted hospitals and so much more. June has unfortunately brought another massive ransomware attack in the form of a new virus that’s hit over 2,000 targets in Europe and shows signs of moving on to the U.S. The virus, called, NotPetya, stemmed from a hack of the MeDoc accounting software and has since spread. Once the infection has been downloaded, targeted files are encrypted after 30-40 minutes.

Where the WannaCry virus was stopped by a killswitch domain that was found, it appears as though NotPetya is operating without a killswitch domain, which could make stopping this one more difficult. This virus is capable of hitting Windows systems that have been patched up to current, including Windows 10 systems. The infection scans for many different file types and encrypts their data. If you can identify the existence of the virus before the 30-40 minute timeframe when it begins scanning and encrypting, rebooting using a Windows recovery disk and fixing the MBR will clear the malware from memory and prevent encryption of files.

Efforts to find a decryption method to allow you access back into your files is currently ongoing.

EMPLOYEES BIGGEST RISK FOR CYBER-ATTACK

Leadership may know all about cyber security and the most common ways hackers attempt to get into your system. They might even know some of the less common strategies and the signs of a more sophisticated hacking attempt. However, if this knowledge stays only in the heads of leadership and doesn’t reach down to all employees, there’s a huge hole in the safety net. After all, employees are most often the gateway for hackers into your system.

Training your employees on how to adequately protect themselves and the organization’s best interest is extremely important. Whether that’s the basics of more complex passwords and password variety or something a little more advanced such as a quick rundown of the latest phishing and hacking attempts and how to spot them, making sure your employees have security at the top of their priority list will pay dividends in the future.

UPDATE YOUR PRACTICES TO HELP PREPARE

Getting your business ready to handle any type of cyber-attack without derailing everything seems like a daunting task, but if you can include preventative measures as a regular part of your business operations, preparation becomes as ingrained a part of your organization’s life as that Monday morning meeting or Friday afternoon social gathering. Regularly, take the following security steps to increase your chances of a smooth survival if hackers ever do strike:

– Regularly backup your information
– Restrict access to sensitive information
– Install firewalls
– Upgrade your operating system regularly
– Install intrusion detection and an emergency notification system

Have a system in place to handle everything immediately and comprehensively if an attack does occur to your organization
All the preventative measures in the world may not protect you from that one sneak attack that gets through it all. That’s why it’s equally important to have an effective incident management system available to your IT or BC team that will aid in the organization’s response and recovery process if an event does occur.

When it comes to a potential cyber-attack, it’s no time to assume the best. Prepping for a crisis like this means having a contingency plan that will help mitigate the fallout from the worst-case scenario. An incident management system encompasses all the aspects necessary for that contingency plan and helps ensure business continuity as you handle the breach and come through on the other side as unscathed as possible.

HOW TO USE THIS INFORMATION

There is a lot to consider when it comes to a potential cyber breach, but time spent considering all angles and preparing your teams for the worst is time extraordinarily well-spent.

MissionMode’s emergency notification and incident management tools are perfectly adapted to help your team keep communications open and recovery plans actionable during a cyber-attack or IT breach situation.

Call MissionMode today at 877-833-7763 or contact us online to schedule a demo. Let us help set you and your business continuity and crisis communications team up for success now!

MissionMode is the trusted leader in providing organizations with an effective and reliable emergency notification and incident management system specifically designed to handle your needs from end to end. Our Situation Center Suite acts as a virtual command center in times of crisis, helping your organization stay on track through both emergencies or more routine operations by enabling your team to effectively communicate and project manage incidents from onset to resolution. The MissionMode Notification Center allows our clients to send two-way multimodal notifications to employees during times of crisis.

From incident management to mass notification to interactive field communications, mobile control, integrated weather planning and more, MissionMode’s team of seasoned and certified emergency managers and business continuity practitioners are dedicated to being an intuitive and easy to use partner in your incident management and mass communication needs.