Cyber criminals are presently attempting to keep for ransom sensitive data accumulated in staff records of HR departments.

This year when reports of the Thor ransomware hit, security experts started to worry. The ransom amounts were usually ranging from $100 to $300. Ransomware viruses were mostly targeting individual computer users. Right now you can find warning signs that ransomware authors are hunting for much bigger victims and way more dollars. A research report introduced by Symantec recently discovered that the typical ransomware sum jumped to $680. Some companies pay thousands. Like the Hollywood Hospital that paid $17,000.

In addition, rather than encrypting a single device, the bad guys are targeting all of the company’s PII database and try to penetrate the network. The last thing an HR head wishes to realize is the fact that all of the company’s PII is being encrypted and kept for ransom.

Listed below are several tips to help you reduce the chance of ransomware penetrating human resource departments and business computer networks on the whole:

Cover the fundamentals

Organizations have to set up solid and strong web filters, spam guards, and firewalls. Most critically, maintain regular data files backup schedule wherein the offline and offsite backup storage is not linked to the company’s network.

Employee training

Remember that the largest percentage of ransomware infections occurs because of staff mistakes. Workers need better recommendations on what they are allowed to click or download. Spread detailed instructions on what is forbidden. If possible, create a whitelist of documents, messages, and web links that are OK to click and open.

Detection and reaction

Constantly, keep close track of viruses and suspicious network behavior. In the case of the breach, remediate as soon as possible to minimize the likelihood of malware infecting the whole network. Endpoint instruments like behavioral analyses and sandboxes make it easier to identify an invasion, quarantine it, and shut it down.

Network segmentation

Keep the company’s most important data files on an isolated network section. With the help of user privileges, strictly limit access to that area and information.

Set up a special computer

To safeguard the human resources division, ask the IT team to allocate a separate PC to for the sole goal of checking out resumes. A lot of incidents show that cyber-crooks spread ransomware with the help of malicious macros in MS Word docs. The IT team must check that computer regularly and in more detail compared to other devices in your organization.