Cryptors, ransomware, cryptomalware – these are the three different names for today’s cybersecurity scourge. Prevention and self-protection algorithms are well-known: “cold” backup, antiphishing tools, signature malware blocking, and sandboxing.
Cryptomalware can infiltrate and encrypt an entire network – including its backups – within minutes. In fact everything within the corporate network requires technical means to prevent ransomware from encrypting data, but file servers are the “weakest spot”, in the sense that if they are attacked by ransomware, businesses experience heavy interruption, down to termination of all processes.
Kaspersky Lab has unveiled a new version of Kaspersky Security for Windows Server application, developed specifically for high performance corporate servers. It is enhanced with new Anti-Cryptor technology.
To help protect businesses from unknown and advanced threats, Kaspersky Security for Windows Server includes Application Startup Control: using configured rules IT staff can allow or block the startup of executable files, scripts, and installation packages, or the loading of program modules onto servers.
Then there is Anti-Cryptor technology based on Kaspersky Lab’s own algorithm: behaviour analysis is used here to detect and protect shared folders from encryption activity.
And if, for some reason, this encryption starts, there is a malicious host blocker: if any malicious activity is detected through Real-Time File Protection or Anti-Cryptor activities, access to shared network folders is immediately restricted to a secure server, protecting files from damage by any malicious third parties.