Help Center> Host Security Service (New)> User Guide> Prevention> Ransomware Prevention> Enabling Ransomware Prevention
Updated on 2024-03-28 GMT+08:00
View PDF

Enabling Ransomware Prevention

Ransomware is one of the biggest cybersecurity threats today. Ransomware can intrude a server, encrypt data, and ask for ransom, causing service interruption, data leakage, or data loss. Attackers may not unlock the data even after receiving the ransom. HSS provides static and dynamic ransomware prevention. You can periodically back up server data to reduce potential losses.

If the version of the agent installed on the Linux server is 3.2.10 or later or the version of the agent installed on the Windows server is 4.0.22 or later, ransomware prevention is automatically enabled with the HSS premium, WTP, or container edition. Deploy bait files on servers and automatically isolate suspicious encryption processes (there is a low probability that processes are incorrectly isolated). You are also advised to enable backup so that you can restore data in the case of a ransomware attack to minimize losses. For details, see Enabling Ransomware Backup.

If the version of the agent installed on the server is not one of the preceding versions or the ransomware protection function is disabled, you can perform the operations in this section to enable ransomware protection.

Prerequisites

  • You have enabled HSS premium, WTP, or container edition.
  • A protection policy has been created. For details, see Creating a Policy.

Constraints

  • Ransomware backup only supports Huawei Cloud servers.
  • Only premium, WTP, and container editions support ransomware protection.

Procedure

  1. Log in to the management console.
  2. In the upper left corner of the page, select a region, click , and choose Security & Compliance > HSS.
  3. Choose Prevention > Ransomware Prevention.
  4. Click the Protected Servers tab.
  5. In the Ransomware Prevention Status column of a server, click Enable.

    You can also select multiple servers and click Enable Ransomware Prevention above the server list.

  6. In the Enable Ransomware Prevention dialog box, confirm the server information and select a protection policy.
  7. Click OK.

    If the Ransomware Prevention Status of the server changes to Enabled, ransomware protection is enabled successfully.

Parent Topic: Ransomware Prevention