We help IT Professionals succeed at work.

Rensome / malware protection

275 Views
Last Modified: 2017-03-28
What is the best way to protect an office (1-server ,7 computers)

from getting hit with rensome and other malware?

a device (firewall) that scans all incoming packets?

I'm looking for an automatic solution , I know there isn't 100% but close to that will be fine.
Comment
Watch Question

JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018

Commented:
Most of this comes via email and people opening emails from strangers.

The best defense for this is a really good Spam Filter.

Once opened you need top brand Anti Virus, but sometimes people clicking on strange email may still cause problems.

Train your users.
Erik i TuniNetwork Administrator

Commented:
John is right.

Also it's good to have Antivirus that has good web protection so that if someone opens a malicious link then it might get blocked.

Otherwise backup, backup and backup.
RaminTechnical Advisor
CERTIFIED EXPERT
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION

Author

Commented:
I have trend Micro and it got it.

I need something on the level of packet filtering. so even someone is trying to open a file it will block.

The virus/malware rensome got through the trend micro which is installed on every workstation and server.

When I ran malwarebyts it found lots of spyware. so the trend micro isn't very efficient.
RaminTechnical Advisor
CERTIFIED EXPERT

Commented:
Malwarebyts is very good but the most important thing is Backing UP the data on a regular basis.
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018

Commented:
Packet filtering is pretty much ineffective against normal email which is what ransomware uses. Spam filtering is much more effective
CERTIFIED EXPERT
Distinguished Expert 2019
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION
Rajul RajInformation Security Officer

Commented:
The best way to protect from these is

Proper user awareness training
CERTIFIED EXPERT
Distinguished Expert 2019

Commented:
Alonig1, with such a small crowd of computers, you should definitely look at application whitelisting:
https://technet.microsoft.com/en-us/library/hh831534(v=ws.11).aspx it stops viruses from being executed even when your virus scanner doesn't recognize it. If you have questions about the functionality, feel free to ask.