Malicious software that is created and deployed with the intent of damaging and disrupting critical business functions. The most frequent example, Ransomware, is used by cyber criminals to cryptographically lock and hold files and/or access to computer resources for a monetary ransom. Additional forms of disruptive malware include cryptojacking or using an unauthorised computer to mine cryptocurrency, and any unauthorised software that enables unauthorised control, degradation, or loss of service to a system or computing resource. Disruptive Malware can have a long and lasting effect on business operations.
Malware is often delivered to host systems via web and email. Leveraging threat intelligence to help identify malicious websites via DNS lookups provides a basic security hygiene approach to ensuring your web traffic is not directed to sites that could contain malware. Email security technology will also help protect against receiving email from malicious domains and with weaponised attachments.
If the controls you had in place were not able to prevent the malicious payload from reaching the end system, it is important to have the users/operators of that system trained to help identify suspicious websites, email and attachments and subsequently educated to not open, click, or install anything that may be suspicious.
The endpoint or host can provide the next level of protection against installation of disruptive malware by employing an endpoint agent that is capable of detecting when malware installation has been invoked and will identify the behaviour, stop the installation, and report the necessary activities to the IT security team for further processing and recovery actions.
The biggest challenge in cyber security today is that no solution is 100% effective at preventing cyber-attacks. In the event critical data sets or systems have been encrypted and rendered unusable by malicious software, it is important to invoke a response process that will help identify and contain the malware outbreak and restore normal business operations.