{"id":26958,"date":"2023-05-31T14:22:43","date_gmt":"2023-05-31T18:22:43","guid":{"rendered":"https:\/\/michigan.it.umich.edu\/news\/?p=26958"},"modified":"2024-07-08T06:04:17","modified_gmt":"2024-07-08T10:04:17","slug":"stay-alert-to-protect-against-ransomware-tactics","status":"publish","type":"post","link":"https:\/\/michigan.it.umich.edu\/news\/2023\/05\/31\/stay-alert-to-protect-against-ransomware-tactics\/","title":{"rendered":"Stay alert to protect against ransomware tactics"},"content":{"rendered":"\n

A recent alert<\/a> from the Joint Ransomware Task Force (JRTF)<\/a> warns about the accelerated growth of tactics used by ransomware actors. Founded in 2022, the JRTF acts as an interagency collaborative effort to reduce the prevalence and impact of ransomware attacks and is comprised of members from the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC).<\/p>\n\n\n\n

You can do your part to protect yourself and the university by being aware of ransomware and taking steps to secure yourself. Ransomware attempts often begin with a phishing email. When a recipient opens an attachment or shared document or visits a malicious website, ransomware or other malware is installed on their device. It can then infect and encrypt files on their device or connected systems. In other cases, attackers gain access to install ransomware on a system that is exposed to the internet or through vulnerabilities in software that is not kept up-to-date. <\/p>\n\n\n\n

Once systems are compromised, the threat actor demands a ransom (usually to be paid through cryptocurrency) to restore access. They may also threaten to publish or delete the data if the ransom is not paid. <\/p>\n\n\n\n

You can help stop ransomware by doing the following:<\/p>\n\n\n\n