This cyberattack scheme hasn't garnered nearly as much attention as the usual “break-in-and-steal-data-to-sell-on-the-Internet” type, but it can be even more debilitating.

Ransomware attacks have begun appearing in the last few years and its practitioners are so polished that in a few cases they even have mini-call centers to handle your payments and questions.

So what is ransomware? The business model is as old as the earliest kidnapping. Ransomware stops you from using your PC, files or programs. The attackers hold your data, software, or entire PC hostage until you pay them a ransom to get it back. Obviously, seeing that you are dealing with criminals, there isn't any guarantee you will ever get your data back just because you meet their demands.

The M.O. is pretty simple. You suddenly have no access to a program or file and then a screen appears announcing your files are encrypted and that you need to pay (usually in bitcoins) to regain access. There may even be a Doomsday-style clock counting down the time you have to pay or lose everything. Microsoft reports that some versions accuse you of having broken a law, and that you are being fined by a Federal agency, police force or other official enforcement office. Some versions use the FBI logo.

Interestingly, one of the more common “market segments” being targeted in the US has been public safety. Police department data is held hostage, and in many cases, they have given up and paid the ransom. They had little choice. They aren't the only ones. Within a week, a hospital in southern California also fell prey, as did one in Texas.

Ransomware can be especially insidious because backups may not offer complete protection against these criminals. Such new schemes illustrate why you need to be aware of the latest criminal activities in the cyber world, and make sure your data protection efforts are up to date.

Here are 5 steps you can take right now to protect yourself from ransomware:

1) Make sure you continue to keep your antivirus software up to date.

2) Train your employees to be aware. People remain the biggest source of security breaches. Employees unwittingly open malicious emails or go to corrupted sites and expose their employers’ networks and infrastructures to malicious software.

3) Backups are probably the most important method to restore your systems if you suffer a ransomware attack. Make sure that your backups are detached when the backup is not occurring. Otherwise, you risk that even backup files will be corrupted.

4) Keep all of your software programs updated. Software developers frequently patch vulnerabilities with new updates. These simple tips discussed work like the locks we put on our front doors. Just as you wouldn’t leave your home unlocked and invite a robbery, you shouldn’t leave your data vulnerable to an attack by miscreants. 

5) Use pop-up blockers. AdwCleaner is one. It not only blocks unwanted pop-ups but also protects against browser hijacks, malware and adware.

• Your website: Hackers have become very sophisticated in cyber attacks on websites. They can access specific information by targeting websites that have the information they are looking for. For example, if they want only financial information about their victims, they can use tools that will fish for the websites that carry that kind of information. Implementation of web-based applications has made it easier for cyber criminals to connect to your website data base. They are able to find the loopholes and hack into systems. They can then access your customer’s personal information, allowing them to steal from your clients by committing credit card and bank fraud. Or they can just sell your client’s info on the Internet.

• Your computers and servers: Your computers and servers are treasure-troves of information. By sending malware into your systems they can steal your admin passwords, and then login to your servers and other network devices. These hardware devices are the ultimate prize for cyber thieves because these devices not only hold important information about your clients, they also have all the information about your business and possibly about your vendors and associates. There is nothing about your business that these hackers don’t know. Imagine how devastating this attack can be.

• Mobile devices used by your employees: If you are one of those entities that allow their employees to use their mobile devices to conduct business, you have another security dimension to worry about. You don’t know how secure their mobile phones, iPads, laptops or tablets are. You don’t know how hard or easy their passwords are to crack. Breach of security into those devices will lead hackers right into your networks where they can steal data at will.

• Unsecure Wi-Fi network: Most businesses keep their Wi-Fi networks well protected, but unsecured Wi-Fi is an open invitation to cyber criminals. If your Wi-Fi network is not secure, hackers are one step closer to breaking into your systems without even trying.

• Your PoS systems: PoS systems are the prime targets for hackers who want to commit financial fraud. Cyber thieves know that PoS systems that come with pre-loaded software can be hacked using an unsecured Wi-Fi network. This fraud has a direct impact on an individual’s finances because a hacker can make unauthorized credit card charges quickly and move on before anyone realizes what happened. Ruined credit can take years to mend.

• Your emails: Email is another venue that hackers use to infect computers with malicious software. They send viruses that replicate themselves in the host computers, performing various tasks such as denial of service to the users of your systems, spamming your contacts and accessing data without authorization.

Summary: After reading this article you probably feel like you are in cyber warfare with hackers and your IT infrastructure is the battlefield. You are absolutely right. Hackers are relentless and they are devising new methods all the time to steal from businesses. But this is one fight you can’t let them win. Protecting client data is not just a moral obligation. You are legally bound by the privacy laws to protect this information by all means. Breach in data security can ruin your reputation, and the financial liability to meet legal obligations may become too much to sustain.

So how do you fight this war in which you have to make certain that there is only one winner? Outsource your IT managed services to professionals who will monitor your networks 24/7 from a remote location. Your in-house IT management team may be able to fix problems, but it is important that proactive solutions are in place in case there is data loss as a result of a breach. Managed services can create solid data backup & recovery plans that will have your systems up and running quickly, so you can reduce downtime and protect your revenue.

In computing, a denial-of-service attack (DoS attack) is a cyber-attack where the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host connected to the Internet. Denial of service is typically accomplished by flooding the targeted machine or resource with superfluous requests in an attempt to overload systems and prevent some or all legitimate requests from being fulfilled.[1]

1. "Understanding Denial-of-Service Attacks". US-CERT. 6 February 2013. 

There are some things that only humans can fix. 95% of all security incidents involve human error. Ashley Schwartau of The Security Awareness Company says that the two biggest mistakes a company can make are “assuming their employees know internal security policies” and “assuming their employees care enough to follow policy.” There are many security risks to which your data is susceptible, but there is one method that remains a wonderfully effective hacking tool.  That is the phishing scam. This scam is a legitimate looking email that asks the reader to click on a link. If clicked, the link can infect the user’s computer with malicious software that can steal passwords, logins, and other critical data. Alternatively, the email appears to be from a legitimate source, perhaps even duplicating a legitimate webpage.

The distinction is that the phishing email asks the user to enter personal information, including passcodes. In either case, that is how hackers easily get into your systems. What’s the best defense against this one? The single biggest defense is education. Training your people to be constantly wary of all the emails they receive. One way some firms are educating their people is by sending out their own “fake” phishing scams. Employees who click on the link inside are greeted with a notice that they've fallen for a phishing scam and then are offered tips how not to be fooled in the future. Think of it as the hi-tech version of Punk’d.

You may not be ready to go that far, but it is important to provide ongoing training to all of your staff about phishing scams. Your staff are critical factors in your data security plans. To avoid falling into these traps, you must: a) have a plan, b) educate users about your plan, c) make them care about procedures. To give a quick summary, you need to have a defense plan for each of the layers that a hacker can attack: the physical layer (i.e. you need policies to ensure that only authorized personnel can access your devices), the network layer (i.e. make sure that only authorised devices access your network, and your devices only access authorized networks), and the human layer (i.e. you should make your employees practice good password hygiene and are aware of security threats). 

You should train employees on your security and disaster recovery policies at least twice year, and your IT person should keep your employees up-to-date on security issues on a weekly basis. Make sure that they understand the risks of a breach.

Most importantly you need to create a “culture of security,” where employees go beyond the minimum guidelines laid down by your IT staff and always ask “is this good security sense” for every action they take. You need to have clearly defined penalties for those who practice bad security, and reward those who display good security sense.

In healthcare, there is absolutely no escape from the mandatory utilization of technology. From the simple task of setting an appointment to billing and procedure codes, everything requires an intensive use of protocols that can be implemented only through the use of technology. HHS mandates these processes across the board, from a doctor who is operating solo to the largest hospitals. All HIPAA covered entities must adhere to rules and standards set forth in ANSI 5010 starting Jan. 2012 and ICD-10 starting Oct. 2015. Needless to say, all providers need help using the technology that is designed to bring efficiency and accuracy to the health care system.

Let's discuss why doctor's offices and clinics need managed IT services.

• You're a Medical Professional: As a doctor you don't have the knowledge to repair your own networks in case there is a failure. Your support staff is trained to make appointments and take blood pressure, draw blood along with several other medical-related responsibilities. They don't fix computers for a living.

• The prohibitive cost of an in-house IT team: Hiring an IT staff even as part-time employees can be very costly, and even full-time staff may not provide all your support needs. System failures can be very unpredictable and technology can be a 24/7 concern. IT support based solely on your own payroll is not typically a practical choice for doctors or clinics.

• Data security: This is a very serious issue in health care. Medical records of patients must be protected according to HIPAA requirements. Laws governing health care provides stiff penalties and fines in the case of a breach in patient's private information. You need to make sure that your networks are impenetrable. There are even requirements now to prove that you've had a qualified professional attempt to hack your systems on a routine basis. Managed Service Providers (MSPs) specialize in technologies that will safeguard your data. There are also software maintenance and upgrade issues to be addressed. Outdated software and hardware can expose your systems to hackers. An in-house IT team may be too busy to keep up with the changes, thus making your data vulnerable.

• Monitoring: The best way to avoid critical breakdowns and security breaches is 24/7 monitoring. This is the surefire way to avoid and control security breaches, viruses and hacker attacks, but it isn't something a small firm can do on its own. It requires the presence of 24/7 labor plus investment in exceptionally sophisticated software and hardware. This sort of investment is not practical for smaller firms.

• Government regulations: Now there are new government regulations in place that all health care providers must comply with. The purpose is to speed up the billing process and promote more accurate diagnostic records, all while protecting patient privacy.

• ICD-10 and ANSI 5010: The World Health Organization has updated the international system of coding diseases. It is called ICD-10, with implementation mandated by Oct. 1st 2015. Implementation of ICD-10 requires the use of the new billing system called ANSI 5010, which was to take effect on Jan. 1st 2012. These regulations are designed to improve the information flow between systems so the providers will get paid faster and the patient's conditions will be diagnosed more precisely.

• Electronic Health Records (EHR): The government now mandates that all the patient's health records be maintained electronically. Also, this mandate provides for the patient's right to know who has accessed their medical records and when. The patient portals that are gaining popularity will be another task to manage.

So what does all this mean for health care providers in terms of managing their networks? More data volumes, more software packages, and more privacy headaches.

At the end of the day, you have to decide what your priorities are as a health care provider. It should be to provide the best care to your patients without having to worry about your infrastructure. As a MSP, we can ensure your focus remains on healthcare.

Are you under the impression that data loss is all about putting up firewalls to protect against evil cyber attacks? Some of the biggest sources of data loss include sloppiness, human error, and just plain forgetfulness.

What are some of the unglamorous things that we do every day that leave us vulnerable?

Passwords

Old or easy passwords are a good first example. Employees set up simple passwords that are easy to crack. More importantly, employees may share passwords, and many often fail to create new ones on a frequent basis. Both of these represent critical breakdowns of good data protection practices.

Emails

Another significant problem caused by bad judgement is the tendency of people to open phishing scams. Most everyone now knows about the Nigerian who wants to send money to your bank account, but many new scams come along everyday and people fall for them. This is such a serious source of virus infection that some companies now deliberately send out their own phishing email to teach workers not to open anything from an unknown source. (The employee who opens one of these gets a pop up screen that tells them they’ve been tricked and then offers guidelines for identifying bad emails.)

Browsing the Web

Bad websites. Yes, everyone has policies about internet use at work, but that doesn’t mean people pay attention and don’t visit places they shouldn’t. Most significantly, a lot of those “sites they shouldn’t visit” are far more likely to be infected than CNN, Ebay or Amazon!

Losing Your Belongings

And finally there is just old-fashioned forgetfulness. Phones left on a barstool.Or the bus. Sigh. There isn’t much more to be said about this one.

Loss of Data: Causes and Prevention

The adoption of technology from the simplest of matters to the most complex problems has rendered us heavily dependent on it. We love paying our bills minutes before they are due. We enjoy seeing loved ones face-to-face on our computer screens. We can access and print our extremely sensitive records from government and financial websites in a matter of minutes instead of waiting for the mail for days. The time and resources that technology saves are invaluable, but this convenience has a very ugly side. This convenience brings costs, which could include irreparable financial, professional, and social damage. The technology that is designed to make life easier can also wreak havoc when criminals use it to breach secured, personal information. So how do we tame this beast called ‘breach of data security’?

Background: The gravity of the problem: To look for a solution, we first need to understand how serious this problem is. Breaches in data security and loss of data could spell imminent demise for many small companies. According to the National Archives & Records Administration in Washington, 93% of companies that have experienced data loss resulting in ten or more days of downtime have filed for bankruptcy within a year. 50% wasted no time and filed for bankruptcy immediately and 43% that have no data recovery and business continuity plan go out of business following a major data loss. In the past, small- to medium-businesses (SMBs) thought that data security problems were reserved for large corporations, but cyber criminals are finding out that SMBs are more complacent in securing their data thus making themselves easier targets. More importantly, the lightly guarded SMBs can provide backdoor access to the large entities hackers really want to hit. Fewer than half of the SMBs surveyed said they back up their data every week. Only 23% have a plan for data backup and business continuity. That is why the number of cyber attacks on SMBs has doubled in the recent past.

Causes of lost data: Loss of data can be attributed to two factors.

• Breach of data security: As we discussed above, theft is the main reason for loss of data. Hackers can get into networks by installing their own software hidden inside emails and other Web content. They take over PCs and networks and then access files containing personal information. They can then use that information to empty people’s bank accounts and exploit data for other purposes.

• Human error and employee negligence: Humans still have to instruct technology to perform as desired. Examples of negligence include unattended computer systems, weak passwords, opening email attachments or clicking the hyperlinks in spam and visiting restricted websites. Fortunately, this type of loss of data is easily preventable, but it is just as detrimental and can bring your business to a halt. Downtimes can be very harmful to your business continuity and revenue.

Five ways to minimize data loss

1. Enforce data security: More than technology, this is the management of human behavior. SMB management must communicate data protection policy to the entire staff and see to it that the policy is adhered to. Rules and policy must be enforced very strictly regarding the use of personal devices. Tell employees to create passwords that are hard to crack and change them frequently.
2. Stress the consequences: Rules are only good if there are consequences for not following them. Define what those consequences mean for the both the individual and the organization.
3. Mobile device management: Mobile devices may be the weakest link in data security. “Mobile device management” refers to processes that are designed for the control of mobile devices used within the company. Devices tapping into company systems are identified and monitored 24/7. They are proactively secured via specified password policies, encryption settings, etc. Lost or stolen devices can be located and either locked or stripped of all data.
4. Snapshots: Fully backing up large amounts of data can be a lengthy process. The data being backed up is also vulnerable to file corruption from read errors. This means sizeable chunks of data may not be stored in the backup and be unavailable in the event of a full restoration. This can be avoided by backing up critical data as snapshots.
5. Cloud replication and disaster recovery services: For SMBs who consider data backup to be too costly, time consuming and complex there is an answer. The Cloud provides a cost-effective, automated off-site data replication process that provides continuous availability to business-critical data and applications. Cloud replication can often get systems back online in under an hour following a data loss.

To conclude our conversation, it is very important to understand the causes and consequences of data loss. Be proactive and minimize the likelihood of a data breach and data loss, so you can stay in business without interruption. Make sure you have a solid data recovery and business continuity plan so you don’t become another statistic about small firms who didn’t make it.