Ransomware Protection

As we write this, many Customers all over the World have become victims of “WannaCrypt” software. You can find more in depth information on this infection by reading this blog.

To get more information on Ransomware, read this blog.

Who can be affected?

1) Customers running Windows 10 are not affected.
2) In March 2017, Microsoft had released a security update. Those who have Windows Update are protected. If not , we suggest you immediately deploy the patch Microsoft Security Bulletin MS17-010 .
3) Customers who are running supported versions of the operating system (Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8.1, Windows Server 2012, Windows 10, Windows Server 2012 R2, Windows Server 2016) will have received the security update MS17-010 in March. If customers have automatic updates enabled or have installed the update, they are protected. For other customers, we encourage them to install the update as soon as possible.
4) Unsupported systems running Windows XP, Windows Server 2003 did not get any Security Update in March 2017. So, there is every likelihood of the systems getting affected. While Microsoft has a Public Policy of not supporting very old systems, it has however made an exception this time and released Security Patch even for unsupported OS. Please check further resources below to get the required resources

Recommended plan of action:

1) For Windows 10 users, your systems are protected as long as you apply patches. We recommend you enable MAPS in Windows Defender.
2) For supported Operating Systems, please apply the patch if not applied so far.
3) If you are a user of EMS , then your systems are safe as EMS ensures that systems are patched . Customers not using EMS can consider using EMS.
4) If you are using Office 365 , there are 2 things to be done. One is that you store all your files in One Drive or SharePoint . This will ensure that they are protected and will have multiple versions. Second is that you enable a Transport Rule in Email using Exchange Online Admin which will drop malicious attachments. We can help you in creating such rule.
5) If you are using unsupported Operating System like Windows XP, then on immediate basis, apply the patch available under “further resources”. But note that this is a short-term solution. A more permanent Solution is to upgrade to Windows 10. It is the Most Secure OS, giving you complete peace of mind. In addition to Security, you also get bundle of Productivity features which will help you to enhance your Productivity substantially. Read about the Windows 10 Productivity features here . As a multiple Worldwide award, winning Gold Certified Partner, we can help you migrate to Windows 10 in smooth manner. So in case you do decide to migrate to Windows 10, there is a Special Promo price available for you. Visit our Promotions for details.
6) If you are using unsupported Windows Server OS like Server 2003, then apply the requisite patch using the link under “further resources”. This is for the short term. For long term, you need to upgrade to latest Windows Server 2016. There is absolutely no option to that except maybe Azure .
7) At the PC level, ensure that all users have least privilege . If Admin rights are given to users on PC, remove them.
8) Ask your Service Provider to help you in using Microsoft Security Compliance Manager .
9) Make sure that you have a working Offline Data backup .
10) In cases where you have to spend lot of time to take the above steps, it may be an option to close port 445 and disable SMBv1.

To need any assistance in ensuring that your Work Environment remains Malware free kindly,