How to protect against Ransomware

ransomware ict4 virus
CAPH partner iCT4 has developed some guidance on how to minimise the risks of your school falling victim to a ransomware attack. The following are the key points to look at to try to reduce the risks.
 
1) Backup – this is the most important thing you can do. You need to ensure that you have regular backups with multiple historic versions which are tested. Better still have multiple backups such as onsite and offsite.

2) Anti Virus - ensure you have a reputable Anti Virus software that is kept up to date. We recommend ESET.

3) Staff training – the biggest threat to data security is people. Whether that is inadvertently opening an infected email, bringing in a virus on their data storage device or falling for a phishing email it is something that everyone needs to be aware of.

4) Additional security measures – this could be using systems such as 2 Factor Authentication (similar to what banks use where you enter a code from your phone/token device to be able to remotely login to your network). This is a great additional security feature for staff working remotely. We recommend ESET Secure Authentication.

5) Firewall – this is the ‘perimeter protection’ for your network. It scans all incoming and outgoing traffic from your network and will block any threats that it detects. An ISP provided router (such as BT Business Hub) will not provide adequate protection which is why you must ensure that you have an active, up to date hardware firewall. If you are using our internet service then you will be fully covered.

6) Updates – ensure that software updates are completed regularly, this includes the operating system and any software that you use (such as Microsoft Office). Viruses often exploit vulnerabilities in software which are generally patched with updates from the manufacturer. It’s also important that firmware updates are completed on hardware devices such as routers/firewalls/servers.

T. 01726 212892 E. info@caph.org.uk