Link to home
Create AccountLog in
Avatar of alonig1
alonig1

asked on

Rensome / malware protection

What is the best way to protect an office (1-server ,7 computers)

from getting hit with rensome and other malware?

a device (firewall) that scans all incoming packets?

I'm looking for an automatic solution , I know there isn't 100% but close to that will be fine.
Avatar of John
John
Flag of Canada image

Most of this comes via email and people opening emails from strangers.

The best defense for this is a really good Spam Filter.

Once opened you need top brand Anti Virus, but sometimes people clicking on strange email may still cause problems.

Train your users.
Avatar of Erik i Tuni
Erik i Tuni

John is right.

Also it's good to have Antivirus that has good web protection so that if someone opens a malicious link then it might get blocked.

Otherwise backup, backup and backup.
SOLUTION
Avatar of Ramin
Ramin

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of alonig1

ASKER

I have trend Micro and it got it.

I need something on the level of packet filtering. so even someone is trying to open a file it will block.

The virus/malware rensome got through the trend micro which is installed on every workstation and server.

When I ran malwarebyts it found lots of spyware. so the trend micro isn't very efficient.
Malwarebyts is very good but the most important thing is Backing UP the data on a regular basis.
Packet filtering is pretty much ineffective against normal email which is what ransomware uses. Spam filtering is much more effective
ASKER CERTIFIED SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
The best way to protect from these is

Proper user awareness training
Alonig1, with such a small crowd of computers, you should definitely look at application whitelisting:
https://technet.microsoft.com/en-us/library/hh831534(v=ws.11).aspx it stops viruses from being executed even when your virus scanner doesn't recognize it. If you have questions about the functionality, feel free to ask.