Ransomware Prevention
Ransomware is malicious software that infects your servers, encrypts your files, and demands a ransom in order for your files to be decrypted. You can use HSS to defend against ransomware before, during, and after server intrusion and protect your business.
Ransomware prevention is a trial function in the current version. To use stronger functions, purchase HSS (New).
How HSS Prevents Ransomware
HSS monitors critical files stored on your servers and prevents unauthorized applications from encrypting or modifying the files, protecting your servers from ransomware. HSS can also put bait files on your servers to trap and kill ransomware. To better protect your services, you can use Cloud Server Backup Service (CSBS) to back up your server data, and recover the data to avoid service interruption in the case of an intrusion.
Functions
You can create a ransomware protection policy. The policy will learn and analyze operations on servers, identify trusted applications, and remember how trusted processes modify your files. After the learning completes, HSS automatically applies the policy to the servers you specified, and reports alarms on untrusted applications.
- Linux ransomware prevention
- If you enable bait protection in a Linux protection policy, HSS will put a bait file on each protected server. Ransomware attempting to encrypt bait files will trigger alarms immediately.
- Bait files are marked by HSS. While you handle suspicious files, be careful not to delete the bait files by mistake.
- Bait files will neither affect your services nor trigger malicious behaviors. If the bait files are deleted, HSS will be unable to trap and kill ransomware.
- If you create a Linux protection policy, HSS will learn how trusted processes modify files on protected servers, and report alarms on the ransomware not trapped by bait files.
- If you enable bait protection in a Linux protection policy, HSS will put a bait file on each protected server. Ransomware attempting to encrypt bait files will trigger alarms immediately.
- Windows ransomware prevention
If you create a Windows protection policy, HSS will learn how trusted processes modify files on protected servers, and report alarms on modifications made by untrusted processes.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot