Sophos Resources to Stop Ransomware
Ransomware keeps evolving, getting faster, smarter – and costlier – at every turn.
With a full-scale ransomware attack costing on average an eye-watering US$1,852,872* it’s essential to know what you’re up against – and how to stay protected.
Train Your Organization
Many ransomware attacks start with a malicious email. Attackers know it only takes one individual to let down their guide for them to get into your organization.
Our anti-ransomware educational toolkit for IT managers gives you free resources to train your users on ransomware, including an organizational checklist, security awareness posters, and an educational video for employees.
See how Sophos technologies work together to disrupt multiple stages of a Ryuk ransomware attack:
Apply Best Practices at All Times
Follow these top tips to minimize your risk of attack:
- Use multi-factor authentication (MFA)
- Use complex passwords, managed through a password manager
- Limit access rights; give user accounts and administrators only the access rights they need and nothing more
- Make regular backups, and keep them offsite and offline where attackers can’t find
- Patch early and patch often. Ransomware like WannaCry and NotPetya relied on unpatched vulnerabilities to spread around the globe
- Lock down your RDP. Turn off RDP if you don’t need it, and use rate limiting, 2FA, or a VPN if you do
- Ensure tamper protection is enabled – Ryuk and other ransomware strains attempt to disable your endpoint protection
* The State of Ransomware 2021, Sophos