Malware

How to prevent malware

• Security software: Keep all firewalls and security software regularly updated, consider using antivirus protection and run regular scans on all devices
• Keep devices updated: Install the latest updates for your internet browsers and keep both internet browsers and mobile devices updated to the latest operating systems (OS) 
• Trustworthy sources: Only download files and software from trustworthy sources
• Mobile apps: Ensure any mobile apps you download have positive ratings and only use official marketplaces like the Google Store or the App Store
• Emails and texts: Ensure all emails or texts you receive are from legitimate sources before opening any links or attachments, especially if they are pressuring you into taking urgent action
• Passwords: Use complex passwords and multi-factor authentication to make it harder for criminals to access your accounts
• Employee education: Educate employees on how to identify phishing emails and texts and what to do if they receive any
• Disaster recovery plan: Test and rehearse your disaster recovery plan to ensure your business is prepared for an attack.

What to do if you're a victim

• Act immediately: If your computer or device becomes infected by malware take immediate steps to limit the risk of infection and seek professional assistance. Unplug any network cables and de-activate Wi-Fi and Bluetooth connections
• Keep your device on: Do not shut down your device as you may not be able to access it again
• Report: Report the incident immediately to the NCSC¹ and Action Fraud² 
• Save evidence: Preserve any evidence in coordination with the NCSC, Action Fraud and any other authorities investigating the attack
• Reset credentials: When safe to do so, reset your credentials, including passwords, but ensure not to lock yourself out of systems that are needed for recovery
• Seek advice: Consult the NCSC (National Cyber Security Centre) for advice on how to remove malware³. The No More Ransom Project⁴ also provides a collection of decryption tools and other anti-malware resources. 

disables system access until a ransom is paid.⁸

secretly monitors devices for user activity data.⁹

malware hidden in desirable software.¹⁰

gives hackers remote control over infected devices.¹¹

monitor keystrokes for sensitive data and credentials.¹²