Cyber Security Center Outlines Prevention Steps as Ransomware Attacks Increase in Nepal

Kathmandu. Amid a rise in ransomware attacks targeting information technology systems, the government has issued a security advisory urging the public to remain cautious against malicious software. The National Cyber Security Center under the Ministry of Communication and Information Technology issued the advisory on Monday, warning people to take preventive measures to protect their digital systems and data.

What is ransomware, and what does it do?

Ransomware is a type of malicious software that encrypts or locks files stored on computers, mobile phones, or other digital devices, making them inaccessible to users. Once infected, victims are unable to access their own data unless they comply with attackers’demands. 

Cyber attackers typically demand a ransom in exchange for restoring access to the encrypted files. According to the center, such attacks can result in the theft of sensitive information, disruption of institutional services, and significant financial losses, along with serious risks to data confidentiality.

How do ransomware attacks occur?

According to the National Cyber Security Center, ransomware typically spreads for the following reasons:

• Opening suspicious email attachments such as PDF, Word, or ZIP files.

• Clicking on fake or malicious links shared via social media, SMS, or email.  

• Using pirated or cracked software that may contain hidden malware.  

• Failing to regularly update operating systems and installed software.

• Connecting to unsecured networks or using unscanned USB devices.

Precautions to Stay Safe from Ransomware

The Cyber Security Center has issued a six-point advisory outlining key measures to prevent ransomware attacks. It has urged users not to open emails, attachments, or links from unknown or suspicious sources, and to download applications only from official platforms like Google Play Store or Apple App Store

The center has also advised users to regularly back up important data and store it securely in cloud services or offline storage systems. In addition, it recommends the use of updated antivirus software and the maintenance of strong network security practices ti reduce the risk of cyber threats.

What to do if a ransomware attack occurs?

If there is suspicion of a ransomware attack, the center advises users to immediately disconnect the affected device from the internet or any intranet to prevent further spread. It also recommends changing all email and system login passwords without delay.

The center strongly warns victims not to pay any ransom under any circumstances, noting that payment does not guarantee data recovery and may further encourage attackers, increasing the likelihood of future incidents.

Users are further advised to immediately report the incident to the Nepal Police Cyber Bureau and the National Cyber Security Center, providing detailed information while preserving all relevant evidence such as screen messages, system logs, or other digital traces.

पछिल्लो अध्यावधिक: बैशाख ८, २०८३ १४:४६

टिप्पणीहरू