PROFESSIONAL GUIDE

ON WHAT TO DO IF
YOU'VE BEEN HIT BY
RANSOMWARE
www.securze.com securze

info@securze.com securze_com

+91 84510 73938 Securze

 PROFESSIONAL GUIDE ON WHAT TO DO IF
YOU'VE BEEN HIT BY RANSOMWARE
02

Ransomware is a malicious software that encrypts a user's files or locks them out
of their computer, demanding a ransom payment (usually in cryptocurrency) for the
files to be restored or access to the computer to be regained. Victims are often
threatened with permanent data deletion or exposure. Ransomware attacks can
affect individuals, businesses, and organizations, causing data loss, financial
damage, and operational disruptions.

EXAMPLE OF A RANSOMWARE ATTACK

RANSOMWARE ATTACK MESSAGE

ALL FILES ARE ENCRYPTED ON THE SYSTEM

www.securze.com
 PROFESSIONAL GUIDE ON WHAT TO DO IF
YOU'VE BEEN HIT BY RANSOMWARE
03

1. Isolate the Infected System:

Disconnect the infected computer from the network immediately. This prevents the
ransomware from spreading to other devices on your network.

2. Assess the Situation:

Determine the type of ransomware you're dealing with. Some ransomware variants have
decryption tools available, and identifying the specific ransomware can help you find out if
decryption is possible.

3. Do Not Pay the Ransom:

It's generally not recommended to pay the ransom. There's no guarantee that paying will
result in the safe return of your files, and it encourages criminal activity. Law enforcement
agencies also advise against paying ransoms.

4. Report the Incident:

Report the attack to your local law enforcement agency. They may not be able to
immediately solve your situation, but it's important for them to be aware of the incident.

5. Restore from Backup:

If you have a recent backup of your files that is not connected to the infected system,
restore your files from that backup. Regular backups are one of the most effective ways to
recover from a ransomware attack.

6. Check for Decryption Tools:

Some cybersecurity companies and law enforcement agencies release free decryption
tools for certain types of ransomware. Check online resources like No More Ransom
(https://www.nomoreransom.org/) to see if a decryption tool for your ransomware variant is
available.

7. Consult with Cybersecurity Professionals:

If you're unable to decrypt your files or restore them from backup, consider seeking help
from a reputable cybersecurity firm or professional. They might be able to assist you in
recovering your data or provide guidance on the situation.

8. Wipe and Reinstall:

If you don't have a backup and cannot decrypt your files, the safest way to ensure the
ransomware is completely removed is to format the infected system and reinstall the
operating system and software from scratch.

9. Enhance Security Measures:

After the incident is resolved, enhance your cybersecurity measures. Update all software,
install reputable antivirus and anti-malware programs, and educate employees or family
members about phishing and safe online practices.

www.securze.com
 PROFESSIONAL GUIDE ON WHAT TO DO IF
YOU'VE BEEN HIT BY RANSOMWARE
04

How Securze can help?

✅We help companies identify all possible ways their
critical data can be breached, they can get hacked
or their customers might face security issues and
further provide with proper remediations to these
critical security issues. This is Vulnerability
Assessment and Penetration Testing (VAPT).

✅We provide Cyber Security Training to Corporates

and also conduct Cyber Security Awareness
Program with different communities and our
partners.

✅We also provide different Cyber Security Products

and Installation Service.

Click the icon to join our WhatsApp Channel for latest updates.

WE ARE PROUD TO SERVE

www.securze.com
For business inquiries,
contact us.

www.securze.com securze

info@securze.com securze_com

+91 84510 73938 Securze