
When fighting ransomware, prevention is your first line of defense.
Because you know the value of prevention, you:
- Educate end users not to open emails or attachments from unknown senders or download software from torrent sites and to limit their browsing activities to approved websites and applications only
- Control administration rights to business critical data
- Keep operating systems regularly patched and updated
- Deploy next-generation firewalls and email security tools to block phishing attacks
- Install and enable signature-based antivirus or next-gen AV software

But what if prevention fails?
Even with state-of-the-art prevention methods, some attacks do infiltrate.The damage these viruses can cause to businesses goes beyond data loss, which in and of itself can be devastating. Companies can experience revenue and productivity loss as well as damage to reputation.
- 77% of organizations infected with ransomware were running up-to-date endpoint protection1
- The average cost per ransomware attack to businesses was $133,000 in 20171
- 54% of organizations do not have specific anti-ransomware protection in place2
1 https://news.sophos.com/en-us/2018/02/01/understanding-ransomware-and-the-impact-of-repeated-attacks/
2 https://www.sophos.com/en-us/medialibrary/Gated-Assets/white-papers/endpoint-survey-report.pdf

Last line of defense
As a last line of defense, companies must leverage backup and recovery processes with well-defined frequency, as well as storage features like Continuous Data Protection, which takes immutable snapshots of the complete data set.
Should a ransomware attack occur, encrypting the data and corrupting the primary file system, the snapshots are completely unaffected, immune from any modification or deletion. Recovery is quick, either from snapshots or backup images.
Businesses must also include a disaster recovery plan with a cloud or offsite replication with periodic testing of your recovery plan.


"The StorageCraft Cloud gives us peace of mind. If you lose data, you’re done. That’s why our number one priority is making sure it’s protected—it’s the only thing you can’t really get back or re-create. We feel protected now.”


"To be honest with you, I did [consider paying the ransom]. On the first day, absolutely. I really could not afford to be without those files."