5 Seemingly Innocent Download Habits Your Employees Must Stop Now to Avoid a Ransomware Attack

Once upon a time, you could install antivirus software and go about your merry way online and in your email, opening, clicking and downloading files without much concern.

Today, antivirus alone cannot and will not protect you, especially if you INVITE the hack by downloading a file that is infected with a piece of code designed to circumvent your security protocols. I frequently tell people when I do live cybersecurity training: “I can put all the technical layers of security in the world in place to protect you, but what I can’t do is grab your wrist and prevent you from clicking on something you shouldn’t…”. Whether it’s a personal computer, phone or a laptop you use for business, here are 5 things you need to STOP doing now to ensure you don’t get hacked.

  1. STOP downloading apps from unknown sources. There are thousands of free apps available online that are very tempting to download. Hackers are masters at curiosity and “clickbait” designed to nail you in a moment of weakness. To prevent rogue apps and programs from installing, configure your devices to disallow the installation of programs from unauthorized sources. On your phone, ONLY download apps from your device’s respective app store that are tested and forced to meet the store’s security and privacy requirements. Business owners: while I’m sure all of your employees are trusting souls, it IS possible (and recommended) to have business machines locked down, preventing your employees from downloading any applications (or files) that could harm you and compromise your security.
  2. STOP surfing the web unprotected, particularly when accessing downloads. This is particularly true if you are on public WiFi. Starbucks is not going to guarantee your Internet connection is safe, nor is any other business, restaurant or location offering free Internet access. Talk to us at TECHLINQ about installing more than just antivirus, but more comprehensive endpoint protection solutions, like a VPN, that can help “hide” you from cybercriminals and filter out nefarious websites and attacks…
  3. STOP opening and downloading files e-mailed to you without extreme caution. Phishing attacks via e-mail are still the #1 way hackers gain access to a network. It’s very common for an attacker to hack into someone’s e-mail and get their list of friends, colleagues, coworkers and their boss to send e-mails that appear legitimate on “their” behalf, even using their actual e-mail – these are are highly sophisticated phishing attacks. So, before you open or download ANY file e-mailed to you, make sure it was one you were expecting. It’s far safer to use IT-managed file sharing like OneDrive, SharePoint or Citrix ShareFile to send attachments. But bottom line, if ANY file “feels” wrong or suspicious about a file download, including a weird extension or suspicious file name, CALL the person who sent it to verify. If it’s important, they can send it again.
  4. STOP downloading “bloatware.” It’s common for legitimate, reputable apps to sneak in other applications or toolbars you don’t need. They sell this as a sponsorship to make more money every time one of their users downloads an app. The best way to spot these is to look for checkboxes when installing that automatically opt you into services by default. So, before you hit “Next” and keep rolling to get your app installed, take a second to really read and review what you’re agreeing to when installing that new app.
  5. STOP downloading music, software, games, movies and the like from websites like BitTorrent, RARBG, 1337x and similar peer-to-peer file-sharing sites. It’s very common for file-sharing networks to be breeding grounds for hackers who post files infected with malicious software for people to download. Some of the ads on these sites are malicious as well. Don’t feel “safe” just because you have antivirus – because you’re not.

Business owners NOT protected by TECHLINQ Total Support: after showing this to your team for both their work and personal devices, contact us to schedule a quick 10-minute call to find out how we can implement security protocols that will give you stronger protections against hackers and against employees who accidentally click on or download a malicious file.

Subscribe to Our Newsletter

This field is required.
Techlinq Building

TECHLINQ

3 South Corporate Drive
Riverdale, NJ 07457
Tel: 973-835-3300
Fax: 973-831-2526

Our goal is to not just meet, but to exceed your expectations with our innovative, proactive service.  When you become a TECHLINQ Total Support client, you’ve taken the most important step in the management, maintenance, and overall health of your technology infrastructure. Sign up today!