We have become aware that one of our churches was hit with a ransomware attack. Ransomware is a type of malware that attackers use to infect computers and encrypt computer files until a ransom is paid. After the initial infection, ransomware will attempt to spread to connected systems, including shared storage drives and other accessible computers. In the case of this church, the attack was able to infect files on individual computers, as well as systems and files across the church’s network.
Ransomware is commonly delivered through phishing emails. Phishing emails often appear as though they have been sent from a legitimate organization, or someone known to the victim, and entice the user to click on a malicious link or open a malicious attachment.
To help prevent the spread of ransomware and other malicious code:
- Be cautious about incoming emails asking you to click to a page to log in, download software, or supply a password
- Keep your computer and applications updated with the latest updates
- Ensure your computer has antivirus software installed and is regularly receiving virus definition updates
- Enable multifactor authentication on as many accounts as possible, particularly those with sensitive data
- Do not save your passwords to documents on your computer or cloud storage
- Never share passwords with others
You can find additional resource related to securing your computer, network, and accounts below: