Ransomware is a type of malware (malicious software) that encrypts your files or locks your computer and requires payment in order for you to regain access. Once you’ve become infected, there is little you can do except pay the ransom.
If you use a PC or mobile device to access the Internet, you are at risk. While ransomware initially targeted individuals, it has grown in sophistication and has begun going after large organizations with growing ransom demands.
Ransomware is evolving rapidly and is increasingly targeting companies over consumers. And companies won’t get away with paying consumer rates.Jay Chaudhry, CEO, Zscaler
Because it’s so profitable, there are new strains arriving all the time, and off-the-shelf ransomware kits are readily available for would-be cybercriminals — no hacking skills required.
Ransom demands are carefully priced to make it easier to pay than fight — or risk permanent data loss. Recently, a California hospital was compelled to pay $17,000 in order to regain access to its electronic medical records. But the actual cost was far greater due to the time expended on the problem as well as losses in revenue (the hospital had to turn away patients) and productivity during the five days the records were locked. The ransom demands for businesses are dramatically higher than those of individuals. And so are the risks.
Unfortunately, traditional antivirus (AV) is not sufficient. Malware is constantly “morphing” to evade AV protections — and it often does. You need a combination of security measures that block malicious files and “sandbox” suspicious traffic.
To protect against ransomware, a single solution isn’t enough. You need multilayered security, with various tools working together to block malicious traffic.
Zscaler’s Cloud Security Platform is multilayered security, combining eight different security engines that allow you to quickly discover and block coordinated attacks. The Zscaler platform includes Intrusion Prevention Systems (IPS), antivirus, sandboxing, web filtering, IP reputation scoring, and SSL inspection. Inspecting SSL traffic is critical, because it’s expected to account for 60 percent of all web traffic by the end of 2016 and an increasing amount of malware is being hidden in encrypted traffic.
Attackers know that many organizations have critical gaps in their protection of remote offices, road warriors, mobile devices, and Internet-connected things. Zscaler’s cloud protects all of your users and all of your systems, wherever they happen to be. A user on a mobile device on a public Wi-Fi connection gets the same comprehensive protection as a user hardwired into the headquarters network.
The global Zscaler Cloud Security Platform handles 30 billion requests per day and detects and blocks over 100 million pieces of malware, including ransomware, every day. Any time a new threat is discovered for any one of Zscaler’s 15 million users worldwide, the cloud platform immediately protects everyone from that new threat.
No single solution can be relied upon to provide adequate protection against ransomware — unless that single solution is Zscaler.
The number of infection attempts in 2015 by a single strain of ransomware, called CryptoWall 3.0.Cyber Threat Alliance
New types of ransomware...are being developed daily, and it’s nearly impossible for anti-virus companies to account for every different style as they emerge.Digital Trends
The sum collected in the first three months of 2016, putting ransomware on pace to rake in a billion dollars this year.CNN
2016 will be the year ransomware holds America hostage.Institute for Critical Infrastructure Technology (ICIT)