Best practices for protecting files from ransomware?


  • If you don't know what CryptoWall and such ransomware is, you are lucky. For now.

    This os probably more of a Desktop security issue but I'd like some ideas for file server protection.

    A corporate office got lucky today with just the files on one PC infected and network file shares the user had access to lost - but they were backed up, hence the "lucky".

    But it was scary enough they want to know what Microsoft wants us to do to prevent this in the future. The user was not admin on the local machine and so we are not sure how it was installed (I've read people get it different ways).

    We have SCCM EndPoint protection and obviously it didn't help. It did actually stop a password stealing utility from installing around the same time but didn't stop us from having thousands of files rendered useless for many hours today.

    It was suggested not using mapped network drives but I think one share was hit without a mapping (still waiting for confirmation). But I think anywhere it finds it, ie., under Favorites, could be attacked.

    Suggestions please.

    Thank you!

    Thursday, May 29, 2014 9:29 PM

All replies