Also posted on LinkedIn
As the recent event at the University of Calgary makes clear, ransomware is big business for organized crime. Low startup costs, big returns. Regardless the size of your business, you need a proactive strategy to protect yourself.
Do not for a moment think you are not a target, prepare for the worst. I have seen a number of businesses be attacked, no pattern, no reason, their number just came up.
A modern and well managed commercial UTM firewall, SPAM filter and Antivirus solution are a start, but rarely prevents this type of attack as you or your staff actively "invite" it in. Most businesses lack the rigid workstation lockdown policies and strong file share security to prevent an attack such as this from spreading. How tight are your policies and are they being followed? Who is making sure?
The best protection is a powerful and tested backup and disaster recovery solution coupled with an effective and practiced business continuity plan. If any of these terms are foreign to you, or you have any doubts AT ALL about your solution, now is the time to take action, once hit, it is too late and that hit could occur tonight, tomorrow, or at any time.
The alternative? A great Bitcoin account and lots of luck.
Photo Attribution: "Cryptolocker ransomware" (CC BY-SA 2.0) by christiaan_008