{"id":2839,"date":"2020-03-05T17:00:00","date_gmt":"2020-03-05T11:30:00","guid":{"rendered":"https:\/\/www.24x7serversupport.com\/blog\/?p=2839"},"modified":"2020-11-24T02:55:34","modified_gmt":"2020-11-23T21:25:34","slug":"things-to-do-when-you-are-the-victim-of-ransomware","status":"publish","type":"post","link":"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/","title":{"rendered":"Things To Do When You Are The Victim Of Ransomware"},"content":{"rendered":"\n

What is ransomware already?<\/h2>\n\n\n\n

Far be it\nfrom me to provide you with a complete and complex definition like Wikipedia<\/a> does so well . In summary, a ransomware will make the files<\/strong> on\nyour hard disk, usb stick, smartphone etc. unreadable<\/strong> . These attacks are\nfound on  all\nmedia<\/strong> from the PC, to the Mac<\/strong> ,\nincluding smartphones<\/strong> and tablets<\/strong> .<\/p>\n\n\n\n

Another\npeculiarity is that some ransomware can spread on internal<\/strong> corporate or\ndomestic networks<\/strong> . There\nhave even been cases where the ransomware waits before activating<\/strong> (notably on\nWindows ISOs downloaded in illegal ways). Or more recently it is one of\nthe methods of propagation of WannaCry<\/strong> .<\/p>\n\n\n\n

1 – At the start of the attack isolate\nthe PC \/ Mac<\/h2>\n\n\n\n

As\nsoon as you realize<\/strong> that you have\nbeen the victim of ransomware the first thing to do is to disconnect it from the network as\nquickly as possible<\/strong> . We have already seen it in the\npast and WannaCry has just re-confirmed that ransomware can try once on your PC\nor Mac or to spread\nto other stations on the network<\/strong> . Whether via WiFi\nor wired connections in all cases disconnected as soon as possible the infected\nPC.<\/p>\n\n\n\n

If you\ncannot disconnect the infected pc from the wifi, turn off the wifi while you finish\nprocessing the workstation<\/strong> . It is better for you to\nhave an interruption in wifi for a few minutes \/ hours rather than having all your computers infected<\/strong> with\nransomware.<\/p>\n\n\n\n

2 – Attempt data recovery<\/h2>\n\n\n\n

If you\nhave n’t set up a backup<\/strong>  and\nvery important files have been encrypted then you should be having a few cold sweats<\/strong> at\nthis point. Keep calm and don’t\npay the ransom<\/strong> . Why ? Quite simply you are not\nsure to recover your files.<\/p>\n\n\n\n

With\nanother PC, go to the following site:  https:\/\/www.nomoreransom.org\/index.html<\/a><\/p>\n\n\n\n

The\npurpose of the site and to offer<\/strong> you help directly<\/strong> to free you<\/strong> from\nransomware indeed there are tools<\/strong> developed\nby the majors of\ncomputer security<\/strong> that can help you recover your files\nand this for free<\/strong> .<\/p>\n\n\n\n

Attention\nhowever there is not\na solution for all the ransomware<\/strong> if it is the case of the\nransomware of which you are victim and that you do not have a backup I am\nsorry, but you only have the poker stunt pay the ransom, again I don’t recommend it<\/strong> .<\/p>\n\n\n\n

You can\nalways contact\ncomputer security experts<\/strong> to help you, but there is a cost\nand it is not certain that they can help you find your files. At times\nmourning non-vital files will be preferable.<\/p>\n\n\n\n

Last chance\npatience indeed over\ntime a solution to decrypt the ransomware may see the light of day<\/strong> ,\nbut beware some ransomware  impose\na payment deadline<\/strong> before destroying your files. So\nif there is no recovery solution and your data is important, keep the disk safe<\/strong> while\nwaiting for a solution.<\/p>\n\n\n\n

3 – Reinstall your PC \/ Mac<\/h2>\n\n\n\n

If you have backups<\/strong> of\nyour data do not try to restore your computer, reinstalling it properly<\/strong> will\nbe more effective. If you had to first decrypt your data once it has been\ncopied and saved, you must also reinstall your computer. For a person who\nis used to 2\/3 hours everything is operational again in business your CIO or\notherwise your service provider will be able to carry out these actions without the slightest concern<\/strong> .<\/p>\n\n\n\n

Once\nreinstalled, update\nthe product to 100%<\/strong> , do not forget the anti-virus even on Mac OS<\/strong> .<\/p>\n\n\n\n

It\nis important to\nformat and reinstall<\/strong> your computer if you have backups or\nrecovered your data, since it is very likely that the hacker took advantage of the\ninstallation of the ransomware to install other malicious software<\/strong> .<\/p>\n\n\n\n

Conclusion<\/h2>\n\n\n\n

Ransomware\nis not synonymous\nwith disaster<\/strong> , if you take the right precautions upstream\nit will be just a little\ntime wasted<\/strong> . If you do not have the possibility of\nrecovering your data it can turn into a nightmare in business and sign the death knell for the latter<\/strong> .<\/p>\n\n\n\n

Data\nbackups are computer security what the car seat belt is one of the great basics to always use<\/strong> .<\/p>\n\n\n\n

Bonus – In prevention make backups<\/h2>\n\n\n\n

The best defense<\/strong> against\nransomware is to make\nbackups of your workstations<\/strong> on External hard drives, so\nthat it is really\neffective<\/strong> do not hesitate to have two hard drives<\/strong> with\nthe same data. So if unfortunately during a backup you infect your disk\nand it is also encrypted you\nwill still have a copy<\/strong> .<\/p>\n\n\n\n

To\nproperly manage your backups, you should\nnot leave<\/strong>  your backup disks permanently connected<\/strong> to\nyour computer or the electrical network. It should ideally be placed\nin a lockable\ncupboard<\/strong> and if possible not a cupboard exposed to direct\nsunlight, because the discs support the heat, but if we can avoid them it is\nalready taken for life of the disc.<\/p>\n\n\n\n

Depending\non your use, you will have to make backups more or less often between one per day to one per week<\/strong> or\neven per month if you have not modified \/ added important data for a long time.<\/p>\n","protected":false},"excerpt":{"rendered":"

What is ransomware already? Far be it from me to provide you with a complete and complex definition like Wikipedia does so well . In summary, a ransomware will make the files on your hard disk, usb stick, smartphone etc. unreadable . These attacks are found on  all media from the PC, to the Mac , including smartphones and tablets . Another peculiarity is that some ransomware can spread on internal corporate or domestic networks . There […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false}}},"categories":[210],"tags":[233],"class_list":["post-2839","post","type-post","status-publish","format-standard","hentry","category-security","tag-ransomware"],"jetpack_publicize_connections":[],"yoast_head":"\nThings To Do When You Are The Victim Of Ransomware | 24x7serversupport Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Things To Do When You Are The Victim Of Ransomware | 24x7serversupport Blog\" \/>\n<meta property=\"og:description\" content=\"What is ransomware already? Far be it from me to provide you with a complete and complex definition like Wikipedia does so well . In summary, a ransomware will make the files on your hard disk, usb stick, smartphone etc. unreadable . These attacks are found on  all media from the PC, to the Mac , including smartphones and tablets . Another peculiarity is that some ransomware can spread on internal corporate or domestic networks . There […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/\" \/>\n<meta property=\"og:site_name\" content=\"24x7serversupport Blog\" \/>\n<meta property=\"article:published_time\" content=\"2020-03-05T11:30:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-11-23T21:25:34+00:00\" \/>\n<meta name=\"author\" content=\"24x7support\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@24x7serversuppo\" \/>\n<meta name=\"twitter:site\" content=\"@24x7serversuppo\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"24x7support\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/\",\"url\":\"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/\",\"name\":\"Things To Do When You Are The Victim Of Ransomware | 24x7serversupport Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.24x7serversupport.com\/blog\/#website\"},\"datePublished\":\"2020-03-05T11:30:00+00:00\",\"dateModified\":\"2020-11-23T21:25:34+00:00\",\"author\":{\"@id\":\"https:\/\/www.24x7serversupport.com\/blog\/#\/schema\/person\/decfb5fad6bde6ac6822d4e965c6d401\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.24x7serversupport.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Things To Do When You Are The Victim Of Ransomware\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.24x7serversupport.com\/blog\/#website\",\"url\":\"https:\/\/www.24x7serversupport.com\/blog\/\",\"name\":\"24x7serversupport Blog\",\"description\":\"Linux | CPanel | WHM | webhosting| Plesk | DirectAdmin | CentOs | Debian | Ubuntu Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.24x7serversupport.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.24x7serversupport.com\/blog\/#\/schema\/person\/decfb5fad6bde6ac6822d4e965c6d401\",\"name\":\"24x7support\",\"url\":\"https:\/\/www.24x7serversupport.com\/blog\/author\/24x7support\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Things To Do When You Are The Victim Of Ransomware | 24x7serversupport Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/","og_locale":"en_US","og_type":"article","og_title":"Things To Do When You Are The Victim Of Ransomware | 24x7serversupport Blog","og_description":"What is ransomware already? Far be it from me to provide you with a complete and complex definition like Wikipedia does so well . In summary, a ransomware will make the files on your hard disk, usb stick, smartphone etc. unreadable . These attacks are found on  all media from the PC, to the Mac , including smartphones and tablets . Another peculiarity is that some ransomware can spread on internal corporate or domestic networks . There […]","og_url":"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/","og_site_name":"24x7serversupport Blog","article_published_time":"2020-03-05T11:30:00+00:00","article_modified_time":"2020-11-23T21:25:34+00:00","author":"24x7support","twitter_card":"summary_large_image","twitter_creator":"@24x7serversuppo","twitter_site":"@24x7serversuppo","twitter_misc":{"Written by":"24x7support","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/","url":"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/","name":"Things To Do When You Are The Victim Of Ransomware | 24x7serversupport Blog","isPartOf":{"@id":"https:\/\/www.24x7serversupport.com\/blog\/#website"},"datePublished":"2020-03-05T11:30:00+00:00","dateModified":"2020-11-23T21:25:34+00:00","author":{"@id":"https:\/\/www.24x7serversupport.com\/blog\/#\/schema\/person\/decfb5fad6bde6ac6822d4e965c6d401"},"breadcrumb":{"@id":"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.24x7serversupport.com\/blog\/things-to-do-when-you-are-the-victim-of-ransomware\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.24x7serversupport.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Things To Do When You Are The Victim Of Ransomware"}]},{"@type":"WebSite","@id":"https:\/\/www.24x7serversupport.com\/blog\/#website","url":"https:\/\/www.24x7serversupport.com\/blog\/","name":"24x7serversupport Blog","description":"Linux | CPanel | WHM | webhosting| Plesk | DirectAdmin | CentOs | Debian | Ubuntu Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.24x7serversupport.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.24x7serversupport.com\/blog\/#\/schema\/person\/decfb5fad6bde6ac6822d4e965c6d401","name":"24x7support","url":"https:\/\/www.24x7serversupport.com\/blog\/author\/24x7support\/"}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_likes_enabled":true,"jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/posts\/2839","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/comments?post=2839"}],"version-history":[{"count":1,"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/posts\/2839\/revisions"}],"predecessor-version":[{"id":2840,"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/posts\/2839\/revisions\/2840"}],"wp:attachment":[{"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/media?parent=2839"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/categories?post=2839"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.24x7serversupport.com\/blog\/wp-json\/wp\/v2\/tags?post=2839"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}