<div>
A folder that's currently "open" (as in, validated/authenticated, and now accessible to the user in Windows), is indeed in the same danger with cryptoware as any other regular folder. If users only incidentally open the folder, it's much safer.<br>But you're correct, backup backup backup...
</div>


Systems Admin

KzKrew

<div>
So are you saying that Folder Encryption offers little Data Breach protection if a user access's that folder with password credentials &nbsp;from a compromised system?<br><br>
</div>


<div>
If you are saying compromised access the system with protection of FFE, it can be still secure only for data. What it cannot stop is the malware infection spread to the system and encrypt the data. The layer of defence cannot be just the FFE as it don't stop infection spread effectively&nbsp;
</div>


<div>
Let me clarify -- (Data loss is outside the scope of this question)<br>If a bad actor is in my network. Does FFE offer protection from data theft / data dumps assuming company personnel / authenticated users are accessing FFE folders from a compromised system?<br><br><br><br><br><br><br>
</div>


<div>
Encrypted folders are available to the PC where the user "opened" the folder properly:<br>- Are available to that user, so if the users does a data dump, no it won't help<br>- Are available to that user, so if there's cryptoware AT THAT moment the folder is "open", they'll be lost.<br>- Are available to that user, so if there's cryptoware AT THAT moment the folder, so they CAN be uploaded to the malware owner's server<br>- they're not available to the compromised systems on the network.<br><br>Therefore, users should be instructed to open the folders ONLY when needed.
</div>


<div>
Yes and No.<br><br>Yes - as long as the files remain and are not left opened.<br><br>No - you mentioned ransomware from example which is why I said malware infection hits your server or client machine, and encrypt it. Likely the case as the network is already untrusted. So you longer can access the data since we are saying infection means ransomware will do their work. You are left to depend on your backup, as I don't recommend paying ransomware unless you willing to take the risk on trusting criminals.<br><br>
</div>


<div>
So based on the answers provided &nbsp;– I can ascertain<br>That IF a BAD ACTOR IS IN MY NETWORK &nbsp;via Malware / Ransomware<br><br>Folder Lock software provides little Data Breach Security knowing that valid authenticated users access Encrypted Folder Lock secured folders on a regular basis. <br>Let me know if I am reading your answers correctly <br>Thanks &nbsp;- Dan<br><br>
</div>


<div>
Yes if the file remain open or the malware can assume the login user and trigger open of the folder. the data will be decrypt on fly and let plain to grab by malware. Probably the saving grace is if the same machine is encrypted using separate keys and no decrypt on the fly, there is still chance not the whole file be able to be scrapped as it remains encrypted at rest.&nbsp;&nbsp;
</div>


<div>
<div class="content wysiwyg-content fr-view">
I have been exploring various Folder Lock software applications &nbsp;-- AxCrypt / CertainSafe / …<br>They all seem to be able to encrypt at folder level / file level – some allow for 2FA<br>My Question:<br>If our network is compromised &nbsp;- &nbsp;TeslaCrypt, CTB-Locker, …<br>Will folder encryption reduce our potential Rasomware Data Breach exposure?<br>The answer is of course yes but is that a false sense of security knowing that users could access protected folders &nbsp;by &nbsp;providing password credentials from a compromised system.<br><br>Assume we have a robust Backup program in place - including Air Gapped -- and that the reason for encryption is to minimize potential Ransomware Data Dumps<br><br>Thoughts?<br>Thanks – Dan<br><br><br>
</div>
</div>



I have been exploring various Folder Lock software applications  -- AxCrypt / CertainSafe / …
They all seem to be able to encrypt at folder level / file level – some allow for 2FA
My Question:
If our network is compromised  -  TeslaCrypt, CTB-Locker, …
Will folder encryption reduce our potential Rasomware Data Breach exposure?
The answer is of course yes but is that a false sense of security knowing that users could access protected folders  by  providing password credentials from a compromised system.
Assume we have a robust Backup program in place - including Air Gapped -- and that the reason for encryption is to minimize potential Ransomware Data Dumps
Thoughts?
Thanks – Dan

Folder Encryption Software

The cyber security specialization covers the fundamental concepts underlying the construction of secure systems, from the hardware to the software to the human-computer interface, with the use of cryptography to secure interactions. Cyber security refers to the protection of personal or organizational information or information resources from unauthorized access, attacks, theft, or data damage. This includes controlling physical access to the hardware, as well as protecting against the harm that may come via network access, data and code injection, and due to malpractice by operators, whether intentional, accidental, or due to them being tricked into deviating from secure procedures.