The Cryptolocker virus has made headlines this week following a global police operation to seize control of two networks belonging to a Russian cybercriminal believed to be behind an aggressive campaign to infect computers across the world, stealing millions from PC users compromised by the virus in the process.
Cryptolocker is a type of malicious software known as ransomware, and is easily spread through infected email attachments or as a secondary infection via computers that have already fallen prey to the virus.
Its appearance serves as a timely reminder that while the internet is a vast resource which offers a huge amount to both individuals and businesses, online security is more important than ever now that our work and personal lives are becoming increasingly reliant on technologies vulnerable to this type of attack.
To mitigate the risk and stay more secure, simple steps need to be taken, such as ensuring your computing platform and its security mechanisms stay up to date, and ensuring that you check emails with links and attachments before clicking on them, even if they come from people who you would normally trust as they may be unknowingly infected themselves. This applies regardless of where you access the internet, be it from a tablet, phone or PC.
A key point is to maintain a focus and vigilance to avoid getting caught out as technology develops. To draw an analogy to a car, 30 years ago people felt that a seat belt was sufficient protection while driving, now we have air bags, stability systems and anti-lock brakes. Information technology also continues to develop as to do the security controls needed to remain safe online.
Most businesses have employee security awareness programmes and policies which provide a solid, basic level of understanding in how to spot security risks and issues in IT systems, and much of this also translates into the type of knowledge an individual can then use at home to stay more secure online.
For businesses, it’s more about understanding, managing and mitigating the risk to ensure your protection is commensurate with your objectives. Broad controls can supplement this approach by ensuring that systems are kept up-to-date, and that appropriate filtering and detection mechanisms are in place to remove threats.
While Cryptolocker's return to the headlines has reminded us that our security measures need to be adjusted when a major threat appears, simple controls and up-to-date systems together with a sensible and pragmatic approach to security will keep most people safe.
