There is a new ransomware called "Locky" that is on the attack. Please make sure your entire office is aware of it. It comes in the form of a Word Attachment. If you are not expecting an email with a Word Attachment call and ask the sender if it in fact came from them and was it actually meant for you.
What the "Locky" ransomware does is rename your files, scrambles them and then encrypts them. Locky also removes any Volume Snapshot Service (VSS) files also known as shadow copies that you may have. Shadow copies are Windows way of making backup snapshots.
Once seeded on a host, the ransomware can spread quickly across your network. Then when it is ready, it instructs you via a screen to pay a ransom to get your data back.
The best defense is a good offense.
- Make sure you have a good backup solution.
- Check your backup and make sure you have a good backup every day.
- Make sure your staff does NOT click on random emails that they were not expecting. If something looks suspicious, it probably is suspicious.
- Make sure you have a good Antivirus and it updates automatically.