We are seeing an increase in the number of attacks that hold clients to ransom by encrypting their data and asking for money to unencrypt, these sorts of attacks can come in via email or generally by just been sent to a malicious website. Even though we employ SPAM filtering software and antivirus software things still get through, traditional methods of detection involve the antivirus or SPAM provider detecting the virus, updating their definition files and then distributing it to their clients, all this can take hours or even days in some cases.
The next evolution in protecting ourselves from these threats are upon us, we have trial Sophos Intercept X at a number of clients. The software works by looking for abnormal activity on a users machine, if the software detects something unusual then it stops it in its tracks. This software does need to be configured to work with your software so that it doesn’t stop people from doing their day to day tasks.