One of the most dangerous ransomware threats to emerge recently is Fantom.
It disguises itself as a Windows update and preys on the fact that users are always told to keep security and systems up to date—and then holds it against them.
Fantom disguises itself as a critical Windows update, using file properties to pose as if it is from Microsoft and pulling up a Windows update screen.
The malware stops users from moving to another screen, and behind the scenes it starts encrypting files. While users can close the screen by keying CTRL+F4, Fantom still continues to encrypt data. When it’s done, it changes the background image and prompts users to pay the ransom.
Best practices to protect against Fantom
Even as ransomware continues to evolve, education is still first and foremost the best defence against ransomware.
1.Education is still the best way to avoid a ransomware infection. Educate your users about cyber security and teach your users to look for warning signs, such as pop ups and malicious attachments.
Remind them NOT to:
Install programs from an unfamiliar source
Click on any unknown attachments
Download unknown software
Disable or deactivate their antivirus program
Open emails from an unfamiliar email address
2. Maintain up-to-date systems, anti-virus and anti-malware protection. Make sure your users are running the newest version of these systems. Backdoors are usually fixed in the latest patch or update, and hackers prey on companies running out-of-date software, which gives them an easy “in” to the system.
3. Backup multiple versions frequently and consistently. Make sure you have multiple versions of your customers’ files backed up. If ransomware were to strike and you only backed up a single version, it’s possible that you backed up an infected file. By saving multiple revisions, you have a better chance of restoring clean data. As a best practice, keep multiple days’ worth of files in order to provide additional restore points.
As the threat continues to evolve and more sophisticated variants emerge, Cybersecurity remains important and the strongest defence against breaches is education and awareness.
The protection of a business’s most valuable asset – information as data, should rank high on every organisation’s priority list.
Why the lack of a comprehensive data security strategy poses a significant risk to your business