Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
CybersecuritySecurity Leadership and ManagementSecurity Education & Training

Ransomware Attacks: Strategies to Recover and Prevent Them

By Schachar Shamir
ransomware
June 27, 2019

Chances are you’ve been warned never to download files or click on links from unknown senders. This is, in part, because of the prevalence of ransomware, a type of malware that denies you access to your data with the (often false) promise that the data will be restored in exchange for hundreds or even thousands of dollars.

There are a few ways ransomware can infect a device. Unsuspecting users might download and install ransomware when they click on links, visit web pages, or download files, applications, or web programs that are infected with malicious code. These links and files can be found in phishing emails, infected email attachments, on social media, in malvertising and infected web pop-ups, and more.

Ransomware is covert by nature and difficult to detect by many users. In order to give you a better understanding of how to mitigate the threat of ransomware, we’ll first go over how, exactly, ransomware works. After that, we’ll discuss how to detect and prevent ransomware attacks on your devices.

How Does Ransomware Work?

Once your device is infected, ransomware scans the files on your device and encrypts them, locking your data and making it inaccessible. The ransomware notifies the user about the infection, providing detailed payment instructions that the user must follow in order to get the decryption key and unlock their data. The instructions will include a payment link which, when clicked, will typically provide the attacker’s Bitcoin address.

It’s important to note that despite the attacker’s promises, there is no guarantee that the attacker will actually send the decryption key once the payment is made. Users should also note that ransomware doesn’t necessarily attack immediately, but can instead wait to strike until the device is particularly vulnerable.  

How to Respond to a Ransomware Attack

If you find that one of your personal or company devices has been attacked by ransomware, don’t panic – an efficient, methodical approach can help you recover with minimal damage.

As a first step, identify the machine that was initially infected. This is particularly important for company devices since ransomware can spread from one machine to another through your network. Once you locate the infected machine or machines, unplug them from the network to prevent the infection from spreading. You should notify all employees –  including remote workers –  to unplug their devices from the network as well. If your company has an IT team, cybersecurity provider, or help desk, you should involve them immediately.

Do not pay the ransom. Doing so does not guarantee you’ll get your data back, and it only encourages hackers to continue these types of attacks in the future. Instead of panicking or paying up, notify your security professional right away so that they can resolve the issue and prevent against future attacks.

Prevention and Detection of Ransomware Attacks

Mitigating ransomware attacks is a twofold process, one that involves identifying suspicious activity as well as taking preventative measures against future security breaches:

Detection

By detecting ransomware attacks right away, you can protect against further harm. Setting real-time alerts prevents the infection from spreading by automating the identification and blocking of ransomware. You can also use deception-based detection, which identifies encryption behaviors during the first stages of the attack to contain the attack right away. Finally, keeping a detailed audit of how users access files is a great way to help investigators obtain information about the source and breadth of the problem.

Prevention

In addition to identifying malicious activity, you should implement strong cybersecurity practices to guard against ransomware attacks in the future. These preventative measures include keeping your devices’ operating systems up to date, tightening your browser security settings, and installing anti-malware software. Be sure also to disable Adobe Flash and macros, both of which can make your devices more vulnerable to infections. On top of that, you should back up all your data to ensure that even in the event of a successful attack, you or your company won’t be hit too hard.

For companies and organizations, educating your employees is a critical part of effective cybersecurity protocol. Invest some time in training all employees, regardless of their position, in cybersecurity awareness and response. Teach your employees cybersecurity best practices such as not clicking on questionable links or downloading unknown files, and show them how to identify and alert authorities about suspicious activity.

Only with a strong ransomware response protocol in place, effective ransomware detection software, and general preventative measures can you ensure that you and your company are protected.

KEYWORDS: cybersecurity malware ransomware

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Schachar shamir

Shachar Shamir is COO of Ranky, a marketing company based in Tel Aviv. As Ranky’s COO, Shachar helps startups around the world with their marketing and online growth needs. 

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Security's Top Cybersecurity Leaders 2024

    Security's Top Cybersecurity Leaders 2024

    Security magazine's Top Cybersecurity Leaders 2024 award...
    Cybersecurity
    By: Security Staff
  • cyber brain

    The intersection of cybersecurity and artificial intelligence

    Artificial intelligence (AI) is a valuable cybersecurity...
    Security Enterprise Services
    By: Pam Nigro
  • artificial intelligence AI graphic

    Assessing the pros and cons of AI for cybersecurity

    Artificial intelligence (AI) has significant implications...
    Technologies & Solutions
    By: Charles Denyer
Manage My Account
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

Popular Stories

Coding

AI Emerges as the Top Concern for Security Leaders

Half open laptop

“Luigi Was Right”: A Look at the Website Sharing Data on More Than 1,000 Executives

Shopping mall

Victoria’s Secret Security Incident Shuts Down Website

Laptop with coding on ground

Stepping Into the Light: Why CISOs Are Replacing Black-Box Security With Open-Source XDR

Gift cards and credit cards

Why Are Cyberattacks Targeting Retail? Experts Share Their Thoughts

2025 Security Benchmark banner

Events

June 24, 2025

Inside a Modern GSOC: How Anthropic Benchmarks Risk Detection Tools for Speed and Accuracy

For today's security teams, making informed decisions in the first moments of a crisis is critical.

July 17, 2025

Tech in the Jungle: Leveraging Surveillance, Access Control, and Technology in Unique Environments

From animal habitats to bustling crowds of visitors, a zoo is a one-of-a-kind environment for deploying modern security technologies.

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Related Articles

  • Cybersecurity breaches: a history and what you can learn

    Notorious cybersecurity attacks in history and how to prevent them

    See More
  • computer employee

    5 tips for SMBs to prevent ransomware attacks

    See More
  • online shopping cyber security

    Top 3 online retail fraud methods and how to prevent them in 2022

    See More

Related Products

See More Products
  • security culture.webp

    Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

  • physical security.webp

    Physical Security Assessment Handbook An Insider’s Guide to Securing a Business

  • databasehacker

    The Database Hacker's Handboo

See More Products
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing