Databack - Récupération de données
Request a quote
THE BLOG

Ransomware attack, what to do?

Ransomware attacks lock down your computer or network and encrypt your data. A ransom is then demanded in exchange for the decryption key and the recovery of your data. Whether you’re a company, a local authority, a healthcare institution, a private individual… how do you react when you fall victim to a ransomware attack?

What to do in the event of a ransomware attack?

When you detect a ransomware attack in your companyit’s probably already too late, whether you’ve received the ransom note or not. But there are a few things you can do to prevent the situation from getting any worse.

1. Isolate the infected device from the Internet and your computer network.

To prevent the virus or malware from spreading, disconnect your computer by unplugging its Ethernet cable, cutting Wi-Fi access or disconnecting it from your servers.

2. Gather evidence to identify the ransomware.

Screenshots, copies of ransomware messages, system logs, encrypted files… Any trace of the attack will enable us to identify the ransomware and implement the appropriate solutions.

3. Remove the ransomware and decrypt the infected data.

Free decryption tools are available on sites such as Kaspersky’s No Ransom or Europol’sNo More Ransom. Failing that, contact a data recovery laboratory.

4. Never pay the ransom!

Even if the sum may seem “reasonable” in view of the sensitivity of your data and your business, never pay the ransom! After all, there’s no guarantee that your data will be decrypted or that you’ll be protected from further attacks – quite the contrary.

How can you protect yourself against ransomware attacks?

When it comes to digital security, preventive measures can help reduce the risk ofransomware attacks and, more broadly, guard against cybercrime.

1. Save your data.

Backup solutions adapted to your structure(cloud computing, NAS servers, RAID systems…) will enable you to re-establish your business or restore your data. Be careful, however, not to back up data corrupted by ransomware, in the event of an undetected attack…

2. Regularly update your OS, applications and software.

Regularly updating your operating systems (OS), applications, software (especially firewall and anti-virus), plug-ins and browsers will help you react to new developments in ransomware and protect you against the most widespread.

3. Avoid “risky” IT and digital practices.

To reduce the risk of intrusion, or of leaving doors open to malware, behave cautiously:

  • do not open e-mails or attachments from unknown senders, or from known senders whose message seems suspicious;
  • do not install software, applications or media (music, videos, images, etc.) that are pirated or of dubious origin;
  • avoid sites with suspicious, illicit or unsafe content (streaming or download sites, adult sites, etc.).
2 June 2021
Back to blog

list of latest articles

KEEP IN TOUCH

SUBSCRIBE TO OUR NEWSLETTER

By entering your email address, you agree to receive the Databack newsletter. You can unsubscribe at any time by clicking on the unsubscribe link at the bottom of the content. You can consult our privacy policy to find out more.
Databack Linkedin