I work with some folks who are so ridiculously venerable to malware that it is scary. Many of these folks don't run backups and most have no idea what malware is or how to recover from an attack.
I am in the IT field and understand what these things can do to your system and ultimately, your data. It simply amazes me how many folks rely solely on anti-virus or anti-malware software instead of using image-based backup to recover from an attack that can slip past anti-virus and anti-malware software.
Rather than spend a lot of time trying to "clean" an infected system, I prefer to recover a clean image image over-top of an infected volume and be done with it. With this method, it's like stepping back in time to before the infection happened.
If you are not already utilizing image backup as a safety net to recover from such an attack, do yourself a favor and look into it. Also, keep in mind that it's not enough to simply create backups. You have to remember that with many viruses, anything attached to your system or network can be venerable. When planning for recovery with this method, you MUST backup to media that can be ejected (think tape or hot-swap drive) or disconnected (think external hard drive or USB drive).
I worked with a client a while back who had a firewall, had anti-virus and was good about creating backups, and multiple backups at that, but wrote them to a networked storage... They were infected with ransomware and the virus made its way to the backups before it was realized, rendering them useless.
So, my question to you is, what is your plan to recover from virus, malware or worst- of-all, ransomware?
Edited by hamluis, 13 June 2018 - 06:22 PM.
Moved from Backup/Imaging to General Security - Hamluis.