Ransomware often targets large corporations and government agencies where a single user’s mistakes can lead to a wide infection pattern. Other users may be infected by spam email or phishing attacks.

Install a verified antivirus software from one of the main providers like McAfee, Kapersky, Symantec, or Norton for the best protection and avoid installing any .exe files from web links. Look out for suspicious emails from unknown sources that have attachments. Often these emails will have spelling mistakes, use generic language (i.e. “Dear Sir/Madam”), or will come from a suspicious looking address. 

Reveton in 2012 started the ransomware trend by impersonating a police department and demanding a fine. CryptoLocker in 2013 began the trend of BitCoin ransom attacks.

• Do: Install an antivirus software and introduce a training or awareness program with staff
• Don't: Leave your data without a backup so that you can delete and reformat devices after infection
  

Ransomware makes business owners consider how they approach antivirus, network security, and data backups. Businesses are recommended to use an antivirus scan on the firewall that includes known ransomware attacks. Administrators must consider how much tolerance they have for data loss on worker PCs and how to integrate regular secure backups on desktop productivity machines. Learn how the VMware Service-defined Firewall helps mitigate ransomware and other attacks.

Generally speaking, the answer is not if it can be avoided. And the reason is twofold: there is no guarantee the attackers will release the files and systems held hostage, and it gives ransomware distributors confidence that you are willing to pay.

However, it’s understandably not unusual for companies to pay ransoms, especially in the case of life or death situations that can sometimes arise in ransomware outbreaks. In fact, according to recent research from Cybersecurity Ventures, ransomware was estimated to be a $5 billion crime in 2017, which is a dramatic increase from $24 million in 2016 and $850,000 in 2015.

The 2018 Cyberthreat Defense Report form Cyberedge Group surveyed companies from around the globe and found that 55% of these organizations were victimized by ransomware in 2017. Of the ones that paid ransom, over half of them lost their data, an indication that paying ransom may be ineffective.

As to the ones that did not pay, nearly 87% were fortunate enough to recover their data, although it’s unclear at what the cost of recovery was.

Here is a quick look at how ransomware is quickly evolving into one of the most dreaded types of malware out there. 

4,000 Attacks a Day

This, according to the FBI, is a 300% percent increase over 2015 attack volume.

3 Million Computers Attacked

In 2017 researchers identified more than 120 new ransomware families affected systems worldwide

$11.5 Billion Cost Projection

In 2019 a ransomware attack will likely occur every 14 seconds, bringing the daily average to over 6,000

Because of the financial success of ransomware today, attackers are increasingly developing ransomware variants that slip by most traditional malware protection that detects known attack modes. New variants, such as Locky and advanced attacks that leverage PowerShell, scripts, macros, remote shell attacks and memory-based attacks, evade detection from most antivirus software.

However, a next-generation antivirus (NGAV) solution with streaming prevention technology uses deep analytics to inspect files and recognize events that can lead to a ransomware outbreak. By identifying malicious behavior unique to ransomware before an attack actually takes place, the attacks can automatically be blocked. In addition, with full visibility into the attack, companies can quickly remediate the vulnerabilities found by attackers to prevent future outbreaks.