Ransomware on the Rise

Ransomware takes your data from you and charges you to give you back access. Often your data isn’t removed, but encrypted in place, because moving will take too long, even on fast internet connections.

Before they became our customers, a number of business owners walked into their businesses one morning and all of their customer information, all of their solutions to old problems, all of their plans and documents, were encrypted and unavailable to their business. They had an email asking for many thousands of dollars to return access.

Worse, while ransomware attackers often do restore access when paid, sometimes they don’t. No guarantees.

In short, ransomware is a catastrophe to your business, a setback of months, and many thousands of dollars. And paying may not solve the problem.

Ransomware prefers to target small businesses. Small businesses don’t have the same security as large businesses, but small businesses have more money, and more data, than private individuals do. This makes a small business a logical target for ransomware. Since ransomware often enters a network through email, and your employees often open emails, ransomware has an easy time getting into a small business network.

A secure email with a browser add-on that only opens an email if its contents are verified is helpful, but is no guarantee. One or more layers of firewall, preferably monitored, also helps. Monitoring matters because an intrusion may happen weeks or months before the ransomware attack itself. The program inserted into your network or server may move your data or may scout out and bring in the ransomware attack. Monitoring is helpful for noticing that initial intrusion, and the unusual traffic as your network is scouted.

Some businesses think that cloud data is automatically secure from ransomware. It isn’t. While cloud services make every effort to exclude ransomware, they are not immune. You may login to your server on the cloud and discover it encrypted.

Many small businesses have a backup, but don’t update it regularly. Some business don’t even backup every few months. While a three month or six month old backup is better than nothing, using that to recover from ransomware will still be damaging to your business and to your profits.

What can you do?

1) Back up your data, preferably in two locations. Your first location is always local. There must be a drive of sufficient capacity sitting near your server. This is because that data has to be reloaded to your server after the ransomware attack. You must load (potentially) several terabytes of data back onto your server so that your business can resume operation. This can takes days or longer on even a fast internet connection, and these are days in which your business is handicapped.

2) Ensure that every backup has a history of at least a few days, so that if your server is encrypted on a Saturday, that Monday morning your IT company can restore you to Friday evening. A simple backup is great in the case of a lightning strike (if it survives), but may itself be encrypted by the time you discover the ransomware, because it backed up the encrypted data, and didn’t have a history.

3) A remote backup is also necessary. The backup that sits in your server room is subject to many of the same hazards as your server itself. A physical break-in, a fire, an electrical surge of sufficient force, all could be hazardous to both. Remember, the remote backup is neither as fast to reload nor as convenient – it’s best to think of it as the backup of the backup.

Consult us to ensure that your backups are being made automatically, every night, and with a history that will protect the backups themselves from ransomware. Don’t be one of the businesses that lose tens of thousands of dollars to the growing threat of ransomware!

Why you need your office wired and not just on WiFi

The 21st century is a great place to live in. We have bathrooms everywhere, food on every other corner and a vast amount of data accessible all the time at our fingertips. When it comes to internet connectivity there is no doubt that the possibility of staying in touch all the time is a relief, specially without the need for any of those cumbersome wires that are so ugly.

One of the marketing geniuses of our generation is the realization by companies that business owners are also people, what a breakthrough. They have then adapted a sort of “if it works for your home then it should also work for your business” marketing strategy. So, when business grade setups are required and the IT person recommends a wired office, the business owner believes it to be a splurge. After all, if it works for my home it should work for my office, right?

What they are not considering is the fact that when the WiFi system fails, and there is no secondary backup for the internet on the computers, then the entire office is without a connection. This not a problem when the case is the home, since you can just connect to your phone’s service provider and at least Netflix from there. No, in the case of the business you cannot work from your phone, and there is the entire office not having anything to do during billable hours. This is an unnecessary strain for both you and your IT company.

That is why every single office should be wired, and then the WiFi can be used as a secondary source of internet in case the cable fails. But do not hold your breath, cables rarely, if ever, break.

We hope you enjoyed this weekly piece of IT insight! Let us know if you liked it!

Choose a Local IT Company

Hiring an IT company is cheaper and more effective than having an in-house IT person. The IT company works only when there’s work, and has staff at several levels of expertise that are able to address simple printer issues as well as cloud encryption and security concerns.

Which IT company is best for your business? You will benefit from a clear understanding of what your IT company offers. With this understanding you can better choose, and negotiate with, your IT company.

Obviously your IT company must keep your computers (workstations, servers, wifi, printers, etc.) running smoothly. The part that isn’t obvious is whether your IT company is following best practices. Their goal here has to be to minimize your business downtime, and to do this you should be seeing them less, not more. Some easy ways to tell whether your IT company follows these practices include: cabling are labeled and bundled, old stations are replaced before they generate regular failure downtime, and data is secure, protected, and backed up.

Less obviously, your IT company exists to support your staff. Your staff must call your IT company immediately and without hesitation when they encounter any problem that will create downtime for them. Your staff must be familiar with the person they will call, and comfortable that the person they will call wants to help and understands the setup in your office.

Remote IT companies have help desks that answer questions. Your staff will hesitate to call them, and will spend additional time in that call, because the remote IT company has a person on the call who has never been to your office, and most likely has never been within 100 miles of your office. This will consume precious employee time, and will make your employee hesitant to call.

What the remote IT company doesn’t have is a person who regularly visits your office and tries to find problems before they cause you downtime. Isn’t less downtime what you’re paying for? The remote IT company operates on an efficient business model, but it’s efficient for them, not for you.

When comparing a local IT company whose employees visit your company regularly and a remote IT company, understand that the cost to the IT company of those personal visits is large. The IT company makes an investment in your efficiency, and will be more expensive. Don’t compare a remote IT company with a local one that visits your regularly!