How to solve the 202 1 ransomware?

Emergency treatment methods of ransomware:

1, disconnect the network to prevent ransomware infection from spreading in the intranet and causing greater losses.

2. Find the information about the sample and blackmail, and confirm which ransomware family the sample belongs to.

3. After confirming the ransomware family, see if there is any corresponding decryption tool to decrypt it.

4. Carry out traceability analysis, confirm the way of infection and plug related security loopholes.

5, completes the corresponding safety protection, in case of infection again. Find a professional network security provider to help you plan network security and evaluate network risks. Clean up other computers in the intranet that have been poisoned but have not been attacked. Intercept the possibility of infection that may reappear outside.

Blackmail viruses often use some operating system vulnerabilities to carry out attacks, which is also one of its important characteristics. Most security software judges whether the target program is malicious or not by static code analysis.

However, there is a problem. Once ransomware takes advantage of new vulnerabilities not covered by newly discovered security software, it can break into the target system almost unimpeded. In other words, conventional security software can defend against existing ransomware, but it is difficult to defend against new ransomware that exploits new vulnerabilities.