Ransomware Attacks

Any business that deals with data – and the insurance industry handles a considerable amount – is ripe for attack by cyber criminals. The increase in people working from home during the pandemic has expanded the number of entry points to company systems, exposing companies to more risk of attack.

Ransomware attacks are a growing threat. These attacks occur when an outside force hacks a company’s computer network and prevents users from accessing the system. The hackers demand payment, or a ransom, to regain access and control of data.

A common point of entry is through a malicious email with an attachment that, when opened, kicks off the malware. Another name for this is phishing spam. The email can seem ordinary, even appearing as though it is from a person or business the user trusts.

Once the attachment is opened, any number of malware types can be activated:

  • Scareware – A pop up message claims the computer is infected, requiring a fee for tech support.
  • Doxware – Threatens to publish your stolen information unless a ransom is paid.
  • Screen lockers – The entire screen locks up and displays an official-looking message from the FBI or other government entity, claiming illegal activity has been detected on the computer.
  • Encrypting ransomware – Creating the most damage, this malware grabs your files and encrypts them, demanding payment to unencrypt. Even with payment, your files may not be returned and have already been compromised.

Recent surveys suggest that small to mid-size businesses and local governments are more susceptible to attack.  Key targets include:

  • Companies that are perceived to have smaller security teams, for example, universities.
  • Companies/organizations that can and will pay quickly, such as government agencies and banks.
  • Firms with sensitive data, such as law firms and hospitals.
  • Businesses in western markets – UK, US and Canada, with the ability to pay ransom.

Law enforcement advises not to pay the ransom as that encourages hackers to create more ransomware, but the Wall Street Journal reported in June 2020 that more than 42% of companies would consider paying the ransom.

The best way to protect against ransomware is to prevent it from happening in the first place. A good place to start – implement best practice for cyber hygiene. Below are some tips from the tech team at NetRate, followed by the number one thing you can do to protect your business from ransomware:

  • Ensure routers and firewalls are installed and properly configured, so that all computer networks are physically segmented.
  • Review and regularly monitor both lists of authorized users and unauthorized users.
  • Enforce compartmentalized (“need to know”) user permissions for authorized users.
  • Ensure that all anti-virus (AV), spyware, and other anti-malware protection software is properly installed and configured on all computers, especially when employees are using their own devices.
  • Keep software updated – make sure all Operating Systems (OS), application software, web browsers and firmware are updated with the latest security patches.
  • Enforce strong password rules and 2-Factor/Multi-Factor Authorization procedures. Use password management applications if necessary.

The number one thing you can do to protect your business from ransomware and other malware attacks is to train your users. End users are often the weakest link. Train your employees to watch for suspicious emails, verify that they know the sender, and not to open any unexpected attachment, whether a PDF, Word doc, video or link.

As part of the insurance community, securing customer data and financial information is likely a top priority. You should also take an additional step to verify that all your third-party vendors have plans in place to secure their systems.

Following the guidelines laid out in the New York State Department of Financial Services (NYDFS) cyber security requirements, NetRate has a robust cyber security program to protect the confidentiality, availability and integrity of its data and its customers’ data. Read more about our efforts and access a checklist to review cyber security risks with your other business partners here.

NetRate values the relationships we build with our customers and believes a strong security program fosters trust. If you have any questions about our Cyber Security or Business Continuity policies and programs, please give us a call at (877) 790-1114 or contact us here and ask to speak with our Security Project Manager.

Leave a Comment

Your email address will not be published. Required fields are marked *