Your all-in-one free business support hub
Advice on cyber-attack for businesses from the Department for Business, Energy & Industrial Strategy
Government Update: Since the global coordinated ransomware attack on thousands of private and public sector organisations across dozens of countries on Friday, there have been no sustained new attacks of that kind. But it is important to understand that the way these attacks work means that compromises of machines and networks that have already occurred may not yet have been detected, and that existing infections from the malware can spread within networks.
This means that as a new working week begins it is likely, in the UK and elsewhere, that further cases of ransomware may come to light, possibly at a significant scale.
There have been attempts to attack organisations beyond the National Health Service. It is essential that any organisation that believes they may be affected follows and implements the following guidance. BEIS has set out two pieces of guidance: one for organisations and one for private individuals and SMEs which can be applicable regardless of the age of the software in question. Updates will also be released via @ncsc on Twitter.
There are a number of easy-to-implement defences against ransomware that considerably reduce the risk of attack and the impact of successful attacks. These simple steps to protect against ransomware are not being applied by either the public or organisations as thoroughly as they should be.
Three simple steps for companies to undertake, which are also set out on the following website (https://www.ncsc.gov.uk/guidance/protecting-your-organisation-ransomware) can be summarised as follows:
Home users and small businesses can take the following steps to protect themselves: