Last week on the 4th July, Independence Day in the US, there was a huge cyber attack. The hackers are demanding 70 million dollars in the form of a ransom payment. In this blog, I’ll tell you exactly what happened and how you can protect your business.
You might have seen this on the news or read about it online.
There is a ransomware organisation called REvil – which is short for Ransomware Evil. They’re whole reason for existence is to hack into organisations and encrypt all of their data so you can’t access anything. They then demand a ransom in exchange for your data.
And if you don’t pay it – well they’ll publish all of your data on their blog – which is aptley named the ‘Happy Blog’
This is a situation that no business wants to find itself in.
Last week on the 4th of July, REvil hacked into a company called Kaseya.
Kaseya provide IT software to IT companies. Most IT support companies, like Integral IT use management software to secure and manage all of the computers that we support. The management software is an essential part of our toolbox – like a carpenter using a saw.
The hackers found a vulnerabilty in the Kaseya software. A vulnerability is a weakness or a security flaw.
They were able to use this vulnerabilty to spread ransomware across lots of businesses.
If you look closely, it makes perfect sense. They can hack into one business and spread ransomware
But if they hack into a company like Kaseya, they can then access the software of multiple IT companies and therefore access the devices of hundreds or thousands of different businesses. This is what has happened.
This also represents a worrying trend. IT software companies are getting targetted for this reason. This also happened to another IT company called Solarwinds last year.
So how does this affect your business and what can you do about it? Although this attack happened primarily in the US, we see ransomware attacks every week right here in the UK. We’re based in North Yorkshire and we see accountants and law firms in small market towns getting hit with ransomware. The reason we don’t hear about this is because they’re just not newsworthy. So if you believe that your business is not going to be a target, then think again. Have you ever asked yourself the question – what would happen if we got struck by ransomware? How would we recover? This is a business question, not an IT question.
Back in May I made a video showing you my top tips on how to prevent a ransomware attack in your business. I won’t go over those tips again, but you can see those on my YouTube channel
But there is another side to ransomware that I want to talk about – that is how to recover from a ransomware attack… quickly before it starts to affect your business.
The analogy I use here is trying to secure your home from getting burgled. There are lots of things you can do to minimise this risk
You can have good locks on all the doors and windows. You can buy a burglar alarm You can even have some guard dogs.
But you also need some strategies in place for if you do get burgled. You can put all the security in place, but you can never guarantee it won’t happen.
So you might have some CCTV so you can identify intruders and you will have a good insurance policy to help you recover and replace items that are stolen.
The same is true with ransomware. We can implement lots of security measures to minimse the risk, but we can never guarantee that you won’t get hacked.
As a business, you need some strategies to help you recover from a ransomware attack. The number 1 way to recover from a ransomware attack is to have a robust backup in place.
That way should your business get ransomware, you can recover quickly. It’s not just a simple case of saying “yes we have a backup”.
And what I am going to do is talk about my four strategies for ensuring your backup is robust and is actually protecting your business.
Email
The ULTIMATE Microsoft To Do Tutorial
How do you handle your to-do lists? Do you write tasks on scraps of paper? Or do you pop them in a notebook? Perhaps you have a digital application such as Todoist! If you’re a Microsoft 365 user, you already pay for a task management system! It is called Microsoft To Do. We all have