You’ve probably heard about the ransomware attack that hit numerous computers earlier this month, with hospitals in the U.K. being some of the major victims. When computers became infected with the malware, their files were locked unless a ransom was paid to unlock them.
While this specific attack probably didn’t affect you, it’s a good reminder that you can take an organized approach to protecting yourself from future attacks by following a couple simple strategies. These won’t protect you from all malicious attacks, but they are critical parts any strategy for keeping your computer files safe.
Keep your software up to date
The computers that got infected this time were those that had not installed the relevant security update from Microsoft, which was released two months prior to the attack. And some of computers were running Windows XP, a version so out of date that patches weren’t even being released unless special support contracts were in place. (Microsoft later made the necessary patch available to everyone.)
Whether or not you enable automatic updates of your computer’s software, it’s important to install any security patches promptly. This is not a time to procrastinate! Besides the operating system (Windows, OS X, macOS, etc.) you may need to install security updates to software such as your web browser — I just did an update to Safari. Adobe Flash Player is another bit of software that gets frequent security updates.
While updates can be complicated in corporate and industrial settings — think about operating systems embedded in things like MRI machines — in most cases it’s much simpler for those of us with our personal computers.
Keep your smartphone updated, too
Smartphones and tablets can also need software updates for security purposes, so don’t overlook those. The phones that get security updates the fastest are Apple’s iPhones and the Android phones that come directly from Google rather than from a third party vendor. As Kate Conger explained on the TechCrunch website back in March:
Google has spent the past year working with third-party manufacturers and phone carriers to improve its update system for Android, which is often criticized for not being fast enough to protect users from known vulnerabilities. And while Google says it has made some progress in this area — Android issued security updates to 735 million devices from more than 200 manufacturers in 2016 — about half of Android users still aren’t receiving important security patches. ….
While Google-manufactured Pixel and Nexus phones and tablets receive automatic updates, hundreds of manufacturers that run Android on their devices don’t push security updates to their customers immediately. This practice can leave customers waiting for months to get updates, and their devices are vulnerable in the meantime.
Also be aware that some older phones may no longer have guaranteed security updates, so you may need to replace your phone to keep it secure. As Google notes for Nexus phones (with a similar statement for Pixel phones):
Nexus devices get security updates for at least 3 years from when the device first became available on the Google Store, or at least 18 months from when the Google Store last sold the device, whichever is longer. After that, we can’t guarantee additional updates.
Do your backups
We’ve written about the importance of backups here on Unclutterer in the past, and ransomware attacks are just one more reason these matter so much. Backups won’t protect your computer from being infected with malware — but if you have good backups in place, you could use them to recover from any such attack.