Avatar of alonig1
alonig1
 asked on

Rensome / malware protection

What is the best way to protect an office (1-server ,7 computers)

from getting hit with rensome and other malware?

a device (firewall) that scans all incoming packets?

I'm looking for an automatic solution , I know there isn't 100% but close to that will be fine.
Anti-Virus AppsCyber Security* data protectionOS SecuritySecurity

Avatar of undefined
Last Comment
McKnife

8/22/2022 - Mon
John

Most of this comes via email and people opening emails from strangers.

The best defense for this is a really good Spam Filter.

Once opened you need top brand Anti Virus, but sometimes people clicking on strange email may still cause problems.

Train your users.
Erik i Tuni

John is right.

Also it's good to have Antivirus that has good web protection so that if someone opens a malicious link then it might get blocked.

Otherwise backup, backup and backup.
SOLUTION
Ramin

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
alonig1

ASKER
I have trend Micro and it got it.

I need something on the level of packet filtering. so even someone is trying to open a file it will block.

The virus/malware rensome got through the trend micro which is installed on every workstation and server.

When I ran malwarebyts it found lots of spyware. so the trend micro isn't very efficient.
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
Ramin

Malwarebyts is very good but the most important thing is Backing UP the data on a regular basis.
John

Packet filtering is pretty much ineffective against normal email which is what ransomware uses. Spam filtering is much more effective
ASKER CERTIFIED SOLUTION
Log in to continue reading
Log In
Sign up - Free for 7 days
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
Rajul Raj

The best way to protect from these is

Proper user awareness training
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
McKnife

Alonig1, with such a small crowd of computers, you should definitely look at application whitelisting:
https://technet.microsoft.com/en-us/library/hh831534(v=ws.11).aspx it stops viruses from being executed even when your virus scanner doesn't recognize it. If you have questions about the functionality, feel free to ask.