Awareness of Ransomware Threats | Penny Appeal USA Support

Ransomware is a type of malicious software (malware) that locks or encrypts your files, making them inaccessible.
Attackers demand payment (a "ransom") to restore access, often with no guarantee they will do so after payment.

Phishing Emails:
- Ransomware often spreads through fake emails with malicious attachments or links.
Infected Websites:
- Clicking on unsafe links or downloading files from unverified websites can install ransomware.
Malicious Attachments:
- Files such as PDFs, ZIPs, or documents containing macros may execute ransomware when opened.
USB Drives:
- Using an infected USB drive can transfer ransomware to your device.
Unpatched Software:
- Attackers exploit outdated software with vulnerabilities to install ransomware.
Remote Desktop Protocol (RDP):
- Weak or compromised RDP credentials can allow attackers to install ransomware remotely.

Inspect the Sender's Email Address:
- Hover over the sender's email address to ensure it matches the official domain.
  Example: support@company.com is legitimate, but support@companny-secure.com is not.
Look for Warning Signs:
- Spelling mistakes, generic greetings like “Dear User,” or urgent language (“Act Now!”) are red flags.
Do Not Open Suspicious Attachments:
- Avoid opening attachments such as ZIP files, PDFs, or documents unless you trust the sender.
Verify Attachments:
- If unsure, contact the sender using a trusted phone number or email, not by replying directly.

Hover Over Links:
- Hover your mouse over the link to preview the URL without clicking.
- Ensure the domain matches the organization’s website (e.g., www.paypal.com).
Go Directly to the Website:
- Instead of clicking a link, manually type the organization’s website into your browser.

Use Verified Websites:
- Download software only from official websites or app stores like Microsoft Store or Mac App Store.
  - Example: For Zoom, go to zoom.us/download, not a third-party website.
Avoid Free or Cracked Software:
- Free downloads from unknown sites often contain malware.
Check for HTTPS in the URL:
- Ensure the website is secure by checking for HTTPS and a padlock icon in the browser.

For Windows Users:
- Open Word or Excel and go to File > Options > Trust Center > Trust Center Settings.
- Select Disable All Macros with Notification.
For Mac Users:
- Open Word or Excel and go to Preferences > Security & Privacy.
- Check Disable All Macros with Notification.

For Windows Users:
- Go to Settings > Update & Security > Windows Update.
- Click Check for Updates and install any available updates.
For Mac Users:
- Go to System Settings > General > Software Update.
- Install any updates to keep your macOS and apps secure.

For Windows Users:
- Open Windows Security > Virus & Threat Protection.
- Ensure real-time protection is enabled.
For Mac Users:
- Use a trusted antivirus like Webroot, Norton, or Sophos, and ensure it’s running in the background.

Use a VPN for Public Wi-Fi:
- A VPN encrypts your internet traffic and prevents attackers from intercepting your data.
- Examples of VPNs: NordVPN, ExpressVPN.
Disable File Sharing:
- On Windows, go to Control Panel > Network and Sharing Center > Change Advanced Sharing Settings.
- On Mac, go to System Settings > Sharing and turn off unnecessary sharing options.

Disconnect from the Internet:
- Unplug the network cable or turn off Wi-Fi immediately to prevent the ransomware from spreading.
Do Not Pay the Ransom:
- There’s no guarantee you’ll regain access to your files even if you pay.
Report the Incident:
- Notify your IT department or supervisor immediately.
Use Backups:
- If you have a recent backup, you can restore your system after removing the ransomware.
Run a Full Virus Scan:
- For Windows, use Windows Security.
- For Mac, use your antivirus software.