Ransomware Attacks: Best Practices To Protect Yourself And Deal With Them

Published date01 June 2021
Subject MatterMedia, Telecoms, IT, Entertainment, Technology, IT and Internet, Security
Law FirmSoulier Avocats
AuthorMs Pauline Kubat

For several months now, ransomware cyberattacks have been on the rise. Recent attacks echoed by the media show that all types of organizations, whether private or public, can be affected, whatever their size.

In this context, this article offers a reminder of the best practices to implement in order to limit the risks and to know how to react effectively in case of an attack.

First of all, what is a ransomware?

The French National Cybersecurity Agency (Agence nationale de sécurité des systèmes d'information, also known by its acronym "ANSSI") provides the following definition:

"As a common cybercrime attack technique mode, ransomware involves sending the victims a malicious software that encrypts all of their data and asks for a ransom in exchange for the decryption password"1.

In recent months, there have been many victims of ransomware attacks: Among the most emblematic are the French companies Sopra Steria, Bouygues Construction and, more recently, the American oil pipeline Colonial Pipeline.

The consequences for companies can be disastrous: In addition to the potential loss of data or the payment of a ransom, the victims must face up the disorganization or even the discontinuation of their operations and a subsequent drop in revenue. Not to mention the serious risk of reputational damage and the negative impact on their relationships with customers and business partners.

In this context, how can organizations protect themselves against ransomware attacks? And what if an attack nonetheless does occur?

In August 2020, the ANSSI, in partnership with the Directorate for Criminal Matters and Pardons (Direction des Affaires Criminelles et des Gr'ces, also known by its acronym "DACG"), published a guide that sets out a number of recommendations aimed at limiting the risks and reacting adequately in case of a ransomware attack2.

In view of the recent increase in these attacks, you will find below a brief reminder of the ANSSI's recommendations.

Measures to reduce the risk of attack

Acting upstream of any attack can be a winning strategy that can prevent attacks or, at least, reduce losses. This involves implementing the following cybersecurity principles within the organization3.

  • Back up data

It is important to perform regular backups of all the organization's data.

Knowing that ransomware can also reach backups, it is imperative to provide, at least for the most critical data, backups disconnected from the computer network, for example through external...

To continue reading

Request your trial

VLEX uses login cookies to provide you with a better browsing experience. If you click on 'Accept' or continue browsing this site we consider that you accept our cookie policy. ACCEPT