Protecting against ransomware

Mitigate ransomware for your organization with AWS

What is ransomware?

Ransomware refers to a business model and a wide range of associated technologies that bad actors use to extort money from entities. Whether you’re just getting started or already building on AWS, we have resources dedicated to help you protect your critical systems and sensitive data against ransomware. You can use these resources to prepare your organization against an incident, test and build out a strategy to respond during an event, and recover more quickly from an event. You can also learn more about proactively protecting against ransomware as well as how AWS and the AWS Partner Network can help you reduce the risk of a ransom event.

Featured resources

Read this blog to learn about the AWS Blueprint for Ransomware Defense, a new resource that both enterprise and public sector organizations can use to implement preventative measures to protect data from ransomware events.

Learn more »

Security teams tasked with protecting critical infrastructure, healthcare organizations, manufacturing, educational institutions, as well as state and local governments are ramping up measures to prevent and mitigate the effects of a ransom event. This ebook includes the top 10 best practices for ransomware protection.

Learn more »

Join AWS expert, Megan O’Neil as she discusses the top 10 best practices for ransomware protection. You will learn how to gain unparalleled visibility into your AWS environment, as well as the ability to update and patch efficiently, to seamlessly and cost-effectively backup your data, to templatize your environment, and how to rapidly return to a known good state.

Learn more »

Framework for protecting against ransomware events

Identify and protect

Identifying your systems, critical data, and applications will help you baseline normal user activity as well as the integrity of systems and potential vulnerabilities. By rapidly identifying and patching vulnerabilities, organizations can reduce their exposure to ransomware events by limiting the ways it can get in.

Detect and respond

Threat detection can continuously monitor your AWS accounts and workloads for malicious activity and deliver detailed security findings for visibility and remediation. Early detection of anomalous network activity is a key to mitigating ransomware threats and its impact.

Recover

Organizations that identify critical data up front can back up that data to create an immutable recovery copy. Data can be recovered to a specific point in time and rapidly restored reducing an incident's impact. With AWS services, you can centralize and automate data backups, simplify backup management, and protect your application data across AWS and on-premises environments.

Security and compliance resources

Learn more about ransomware protection on AWS with blueprints, reference architectures, and other key assets.