3 min read

What You Should Know About Ransomware

What You Should Know About Ransomware

Ransomware is a form of malware designed to obtain access to files on a device and encrypt them, making them unusable to the owner. Fraudsters then demand ransom in exchange for decryption. This scam is making headlines as the latest way fraudsters are taking money from vulnerable individuals and businesses. Luckily, there are a few things you can do to protect yourself and your business’s data.

How do ransomware schemes occur?

Before we dive into protecting yourself from ransomware schemes, you must understand how they most commonly occur. The most common strategy fraudsters use is phishing, which entails contacting you or an employee impersonating someone you should be familiar with and asking you to click on a link. While the request may seem reasonable – perhaps they’re from IT and calling to “update your software,” or they’re a colleague inviting you to “access a document” – but the link actually contains malware. Once the link is clicked, it compromises the device and its data.

How to protect yourself from ransomware

There are several ways to protect your data from ransomware schemes. Here’s a list of the top four strategies:

  1. Train your employees. If you have a business, no matter how large or small, you must have discussions with your employees about phishing. Employees are the first line of defense and are often targeted during these kinds of schemes. Offer training to teach them how to spot malicious emails, links, and phone calls.
  2. Install the most updated security software systems. There are a variety of options depending on a person’s or business’s needs and budget. Any layer of security is better than none.
  3. Back up your data regularly. Ransomware scammers often are not interested in the data they steal as much as the money they earn when you try to get it back. If you back up your data regularly – hourly, daily, weekly, depending on your needs – you’re less likely to need to negotiate with fraudsters to get access back.
  4. Use cybersecurity best practices. This includes using only secure private Wi-Fi and/or a VPN, enabling two-factor authentication, being careful of the websites you visit and changing your password

What to do if you’re a victim of ransomware

One of the first actions to take when you realize you are a victim of ransomware is to determine which of your systems is impacted and immediately isolate them by turning off internet networks or disconnecting the compromised device(s). Next, you should utilize your data backups to restore capabilities and data.

Once you’ve identified which systems are impacted and triaged critical data and capabilities, contact federal law enforcement and submit a claim with the FBI’s Internet Crime Complaint Center. You should also contact your financial institution(s) to ensure financial accounts haven’t been accessed and contact your cybersecurity insurance partner (if applicable) to create a claim.

Amy Berger, CCBSO, CAFP, ABCP, CBBCP

Amy Berger, CCBSO, CAFP, ABCP, CBBCP

AVP, Fraud and Security Supervisor Email Amy

Amy Berger is AVP, Fraud and Security Supervisor at Bankers Trust. She joined the bank in 2012 and has held various roles in our branches before joining the Financial Intelligence team. Amy's work focuses on preventing fraud, protecting physical security, and business continuity. She holds her Certified Community Bank Security Officer (CCBSO), Certified AML and Fraud Professional (CAFP), Associate Business Continuity Professional (ABCP), and Certified Banking Business Continuity Professional (CBBCP) designations.

Have the Education Center delivered right to your inbox

Subscribe to the Education Center to stay up-to-date with the latest Education Center posts on the topics that matter to you.

Form Illustration

    Select which topics you are interested in, and we’ll send new posts directly to your email inbox: *