What to report
If you are a victim of ransomware, you should contact your local FBI office or file a complaint at www.IC3.gov. Include all of the following details that apply:
- The date of the infection.
- Ransomware Variant - this will be identified on the ransom page or by the encrypted file extension.
- Victim company information - industry type, business size, etc.
- How the infection occurred - browsing the internet, clicking a link in an email, etc.
- Requested ransom amount.
- The Bitcoin Wallet address of the attacker - this could be listed on the ransom page.
- Ransom amount paid - if you paid the ransom, how much did you pay?
- Overall losses - how much the infection cost, including the amount of ransom paid and any other losses associated with the attack.
- Victim impact statement.
The FBI is also recommending safety measures to prevent ransomware attacks. Here are some of their recommendations:
- Back up data regularly - this could be the best way to recover your critical data if you are infected.
- Make sure your backups are secure - do not connect your backups to computers or networks that they are backing up.
- Never open risky links in emails - don't open attachments from unsolicited emails.
- Download only trusted software - make sure the software you download comes from trusted sites.