Kaspersky Endpoint Security for Business, Kaspersky Small Office Security and Kaspersky Standard demonstrated complete protection against ransomware in 10 different real-life attack scenarios during regular Advanced Threat Protection assessments held by AV-TEST.
To combat ransomware and assist those affected, Kaspersky, alongside Europol, the Dutch National Police, and others has the No More Ransom initiative, launched in 2016. On the official website, participants provide decryption tools, guidelines, and instructions to report cybercrimes, irrespective of the location of the incident.
By the end of 2023, Kaspersky marked the seventh anniversary as a key contributor to the No More Ransom initiative. This period witnessed expanded access to Kaspersky’s free decryption tools, in line with its commitment to combating ransomware. These tools, targeting 39 ransomware families, have been integral in assisting nearly 2 million victims globally, as reported by Europol, underscoring the profound impact of the No More Ransom initiative supported by Kaspersky.
To protect yourself and your business from ransomware attacks, consider following the rules proposed by Kaspersky experts:
• Do not expose remote desktop/management services (such as RDP, MSSQL, etc.) to public networks unless necessary and always use strong passwords, two-factor authentication and firewall rules for them.
• Promptly install available patches for commercial VPN solutions providing access for remote employees and acting as gateways in your network.
• Always keep software updated on all the devices you use to prevent ransomware from exploiting vulnerabilities.
• Focus your defence strategy on detecting lateral movements and data exfiltration to the Internet. Pay special attention to the outgoing traffic to detect cybercriminals’ connections.
• Back up data regularly with special attention to offline backup strategies. Make sure you can quickly access it in an emergency when needed.
• Avoid downloading and installing pirated software or software from unknown sources.
• Assess and audit your supply chain and managed services’ access to your environment.
• Prepare an action plan for the reputational risk of your data exposure in the unfortunate event of data theft.
• Use solutions like Kaspersky Endpoint Detection and Response Expert and Kaspersky Managed Detection and Response service which help to identify and stop the attack in the early stages, before attackers reach their final goals.
• To protect the corporate environment, educate your employees. Dedicated training courses can help, such as the ones provided by the Kaspersky Automated Security Awareness Platform.
• Use the latest Threat Intelligence information to stay aware of actual TTPs used by threat actors. The Kaspersky Threat Intelligence Portal is a single point of access for Kaspersky’s TI, providing cyberattack data and insights gathered by our team for over 26 years.