Similar to a phishing attack, ransomware is triggered when a user is lured to click on an infected link or e-mail attachment or to download a file or software drive while visiting a rogue website. Sophisticated social engineering techniques are used to entice users to take the desired action; examples include
- an embedded malicious link in an e-mail offers a cheap airfare ticket
- an e-mail that appears to be from Google Chrome or Facebook invites you to click on an image to update their web browser
- a well-crafted website mimics a legitimate website and prompts you to download a file or install an update that locks their PC or laptop.
So, what can you do to protect yourself?
- Delete any suspicious e-mail. Messages from unverified sources or from known sources that offer deals that sound too good to be true are most likely malicious. If in doubt, through it out and contact the alleged sender or company via phone.
- Avoid clicking on unverified e-mail links or attachments. Suspicious links might carry ransomware.
- Install and maintain up-to-date antivirus software. Keeping your operating system updated with the latest virus definitions will ensure that your security software can detect the latest malware variations. ESU offers Symantec anti-virus for FREE!
- Update all devices, software, and plug-ins on a regular basis. Check for operating system, software, and plug-in updates often — or, if possible, set up automatic updates — to minimize the likelihood of someone holding your computer or files for ransom.
- Back up your files. Back up the files on your computer, laptop, or mobile devices frequently so you can access your backups when files get locked.
Source: EDUCAUSE
