A hand inputs a PIN into an IronKey VP80ES on a desk next to a laptop & notebook with manila folder.

How to Protect Your SMB from Ransomware

Dec 2023

Blog Home

Did you know that over three in four organizations were targeted by ransomware in 2022? Data disasters are not an everyday issue, which is why they so often take people by surprise. Every small and medium-sized business should have a plan for dealing with ransomware, since more than any organization, they can’t afford to lose their data. Kingston IronKey offers hardware-based encryption options to securely back up your company’s critical data. The line offers data protection against numerous varieties of cyber-attacks and can provide a means of circumventing ransomware demands.

What does ransomware do?

The FBI calls ransomware a type of malware that prevents computer users from accessing their files, systems, or networks until a ransom is paid. It finds its way onto computers via email attachments, by clicking on ads, following links, or just visiting a site infested with malware. It is rarely apparent right away. The first sign of ransomware on your computer is usually when you can no longer access your data and a message demanding a ransom payment flash. Often, your data files are encrypted with no way to overcome the encryption.

The FBI recommends that ransomware victims do not pay their attackers to recover their data. As well as encouraging further ransomware attacks (80% of ransomware victims suffer repeat attacks), there is no guarantee that access to your data will be returned. Payments are often demanded in Bitcoin, which is untraceable and cannot be recovered if your data is left inaccessible.

Why do cybercriminals attack SMBs?

A computer monitor with out-of-focus blue code on black background. A visible pop-up: ACCESS DENIED

The common belief among cybercriminals appears to be that small and mid-sized businesses are less capable of protecting themselves from ransomware than large corporations or government agencies. While the payout might be smaller, they are easier prey, with only 14% of targeted SMBs equipped to handle cyberattacks. This is why SMBs make up nearly 43% of cybercriminal targets. Three in four SMBs would grind to a halt if hit with ransomware, making them extremely likely to pay out rather than risk permanent closure.

How Kingston IronKey can help

Kingston IronKey offers an alternative to flinging small fortunes in Bitcoin at cybercriminals in the vague hope of reciprocity. Using an external encrypted SSD like the Kingston IronKey Vault Privacy 80 External SSD as a backup ensures that there are terabytes of firmly gated, air-gapped data that cybercriminals cannot access. Air-gapped backups ensure that your data is not connected to the internet.

You can use the backup drive to revert your primary system back to a point before the ransomware was installed. As the VP80ES is XTS-AES 256-bit hardware-encrypted, it is near-impossible for a hacker to break the encryption on the drive. This means it makes a better backup than Cloud solutions, as it is more secure. Cloud backups can be affected by breaches as well, and a Cloud breach sometimes results in the Cloud service being inaccessible as the Cloud server security issues are addressed, resulting in potential delays in accessing critical backup data when needed.

Of course, when it comes to data security, redundancy is important. The best practice is to use the 3-2-1 strategy, recommended by the Cybersecurity and Infrastructure Security Agency.

The 3-2-1 strategy is as follows:

Keep 3 copies of the data – the original as well as two copies
Use different drives and do not store multiple backups on just one drive
Keep 1 copy offsite so you have options in the event of a disaster (such as flooding, hurricanes, or blizzards) that destroy one or both of your active backup drives or renders them inaccessible.

An addition to the 3-2-1 strategy for Flash-based storage is to ensure that all backups are refreshed no less than once per year, so backup drives do not develop issues that are not detected until too late, resulting in data loss.

Backing up your data

A futuristic, dimly-lit server room with a glass ceiling and electric blue lighting. A sysadmin stands at the end of the room, checking a laptop.

While hardware is replaceable, data isn’t. Regular backups are the most responsible thing you can do with your SMB’s data. Here are a few ways to leverage Windows or macOS systems to back up your data onto an external encrypted SSD:

Backing up on Windows

Windows 11

Go to "Control Panel" then "System and Security" and then "Backup and Restore"
Click "Set up backup" under "Backup"
Click "Backup Drive" then click "Next"
Click "Let Windows Choose" → click "Next"
Click "Save settings and run backup"

Windows 10

Use File History to back up to an external drive or network location.

Select: Start-> Settings (Gear Icon) -> Update & Security -> Backup-> Add a drive, and then choose the encrypted external SSD to be your backup destination.

Backing up on macOS

Connect the encrypted external SSD drive to Mac via USB-C cable.
Use hub adapter if necessary for older Macs.
Click on Apple menu and access System Settings.
Navigate to ‘General’ in the sidebar, then click on ‘Time Machine’.
Link the drive to Time Machine by selecting Add Backup Disk… Follow on-screen instructions for setup.
The Initial backup will take a long time as it duplicates the entire sysem's hard drive. Future backups will take less time.
Connect VP80ES drive to Mac via USB-C cable.

Tip: If you have a backup drive twice the size of your Mac’s capacity, you can do rolling backups, which makes the process more efficient.

How to Implement the 3-2-1 Strategy

With the 3-2-1 strategy, backup your system onto 3 VP80ES units the first time. Then, store one VP80ES offsite. Then, periodically (daily/weekly), alternate between the two drives to back up your system.

Then, weekly, or as needed, swap one of the two active backup drives with the offsite one and backup your computer on the offsite drive, which is now part of your regular backup set.

This swapping of one of the regular backup drives with the offsite backup drive continues a regular basis, so that if the two regular backup drives are lost or unusable, the offsite backup drive is available and will reduce your data loss impact without materially affecting your business.

With your SMB’s vital data protected by an encrypted drive (or preferably multiple encrypted drives in different locations), you will restore your systems back to a pre-ransomware state in the event of a disaster. As well as minimizing your company’s downtime, you will also signal to bad actors that your SMB is inoculated against cybercrime, making it less likely that you will be targeted again. Only 17% of small businesses encrypt their data, but by doing so, you are making yourself much less of a target. The average amount a business saves through robust encryption and well-enforced cybersecurity measures is $1.4 million–not total, but per attack.

#KingstonIsWithYou #KingstonIronKey

Was this helpful?

- Encrypted USB
- Data Security
What is Encryption and how does it work?

Looking for improved data security & need to know what is encryption? Kingston covers the basics.
How to Securely Password Protect Files and Drives

Hardware, not software-based password protection, is the best way to protect files and drives.
How Does Hardware-Based SSD Encryption Work? Software vs Hardware, AES 256-bit and TCG Opal 2.0

Secure important personal and private information on a PC with a hardware encrypted SSD.
Healthcare Data Breaches: A Persistent Threat Despite Cost Reductions

Breaches remain a major threat. Explore the need of comprehensive cybersecurity measures.
How to Choose the Right Drive For Your Data

Here is a list of USB security features to consider for data protection.
The 3-2-1 Data Backup Method: Your Best Defense Against Ransomware Attacks

Learn what the 3-2-1 data backup method is and why it is your best defense against ransomware.
Expert Best Practices for Safeguarding Your Information

Learn data security best practices with Dr. Vynckier, and the importance of offline backups.
Defense in Depth: Expert Insights on Building a Multi-layered Cybersecurity Strategy

David Clarke covers encryption, superuser safeguards, vulnerability management, and training.
How EgoMind Secured Hybrid Work Data with Kingston IronKey

Learn how Kingston IronKey's solutions helped EgoMind enhance their data security hygiene.
The Difference Between Enterprise & Client SSD

The differences between SSD classes lies in two components; the processor and the NAND memory.
NIS2, DORA and the Significant Role of Encrypted Storage—Expert Insights

We discuss NIS2 and DORA, and how organizations can turn compliance into an opportunity.
Changing Behaviors Toward Encrypted Storage – Expert Insights

We discuss the shifts in how organizations are storing and encrypting sensitive data.
Emailed Password-Protected Documents: The New and Silent Breach

Kingston examines how to secure sensitive files with the increasing vulnerability of email.
The NIS2 Directive: Strengthening Cybersecurity Against Cybercrime

Learn how Kingston IronKey hardware-encrypted solutions supports NIS2 Directive compliance.
Enhance Small Business Cybersecurity with Kingston Ironkey

Kingston IronKey has hardware options to protect small and medium businesses against cybercrime.
Why You Need to Upgrade to FIPS 140-3 Level 3, Military-Grade Mobile Data Protection

FIPS 140-3 Level 3 is certified by the world-leading agency NIST as the apex of encryption.
Find the Best SSD for Your Data Center

Questions to ask when seeking the right SSD for your organization’s data center.
- Data Security
- Encrypted USB
What is the difference between software and hardware-based encryption?

Our infographic showcases the differences between software and hardware-based encryption.
2024: Technology Experts' Predictions

2023 has been a year full of challenges and innovations. But what will 2024 bring?
How to Allow USB Drive Access Without Compromising Endpoint Security

In this whitepaper, we explain how to enforce a DLP strategy, while allowing USB drive use.
Enterprise-Grade versus Military-Grade Security: What’s the Difference?

Enterprise-grade and military-grade digital security: two high standards with different requirements.
A Secure Cloud In Your Pocket: Hardware-Encrypted Drives for Traveling Lawyers

Learn how hardware encryption can protect a travelling lawyer’s confidentiality with secure file storage.
The Benefits of Penetration Testing for Hardware-Encrypted Drives

How is pen testing ensuring Kingston IronKey USB drives lead the way in trusted data security?
25% Rise in Lost Devices Reveals a Data Security Threat for Commuters

Hardware-encrypted Kingston IronKey drives protects organizations’ data on the move.
Bring Your Own Device: Security Measures for Personal Devices in the Workplace

Bring Your Own Device (BYOD) policy is tricky for employers. How to balance security & convenience?
Encrypted Drives in Finance – A Must for Cybersecurity and Compliance

How do encrypted drives improve cybersecurity and compliance for finance companies? Kingston explains.
What is Data Loss Prevention (DLP)?

DLP offers tools for network admins to protect sensitive data from cybercrime and negligence.
The Hard Truth of Proper Security for Healthcare Data

A look at how the requirement of data encryption can be key to any organization's security strategy.
- Encrypted USB
- Data Security
Staying Secure When Remote or Traveling

How can we bolster network security with remote working and international travel so common now?
Encrypted USB Flash Drives: Cheaper Than Attorney Fees

Invest in encrypted drives so that if they are lost or stolen you are not on the hook for legal fees which can be more expensive.
Why Is Kingston IronKey Trusted by National Cybersecurity Organizations?

Discover why national security agencies trust Kingston IronKey to protect their data.
Hybrid Working Environments Will Mean Increased Data Vulnerability

A company’s IT specialists should be expected to add data security to the PCs of remote workers.
What You Need to Know When Building Your Data Loss Prevention Strategy

Kingston’s three key practices for a robust DLP for businesses handling sensitive data.
Using an Encrypted USB Flash Drive with an iPhone or iPad

You can read and write to an encrypted USB flash drive with an iPad or iPhone with the right adaptor. Here’s how.
Safeguard Your Law Firm’s Sensitive Data with Hardware-Encrypted Drives, not Software

Learn why hardware encryption beats software encryption for law firm data protection.
- Encrypted USB
- Data Security
The Benefits of Passphrases

Passphrases are superior to complex passwords for keeping data secure, with many powerful benefits.
- Data Security
- Encrypted USB
What is Data Security Software?

A brief explaining the purpose and types of data security software available.
- Data Security
- Encrypted USB
Secure Data in Transit

HIPAA requires healthcare organizations to always keep patient data safe, including in transit.
NYDFS 23 NYCRR 500 Cybersecurity Requirements

This requires encryption of sensitive data, appointing a Security Officer, cyber security programs and policy adoption.
Security for All Sizes – Proactive Protection from SME to Enterprise!

Kingston IronKey encrypted USBs are a security consideration for organizations of all sizes.
USB Storage: Does Hardware Encryption Prevent Risks?

We compare unencrypted and encrypted USB drives and explain how to keep data secure!
How an Energy Specialist Protected Their Partner's IP with Kingston IronKey

Learn how Kingston IronKey is protecting the intellectual property with customization.
How Does Kingston IronKey Protect Global Financial Services?

Discover why Kingston IronKey is the go-to solution for protecting financial services data.
Why Does the Military Rely On Kingston IronKey?

Learn how Kingston IronKey is securing the military operations’ data.
Using and Promoting Encrypted USB Flash Drives in Your Organization

How can you get your organization to use encrypted drives and make them part of your security policy? Here are some tips.
Prevent Telecoms Data Leaks in the Field with Kingston IronKey

Learn how Kingston IronKey is protecting the telecoms industry's data using encryption.
Encrypted Storage for Creatives

Encryption is an incredibly helpful option for creatives to protect their clients’ important files.
How Kingston IronKey Can Be a Strategic Performer

Kingston IronKey encrypted USBs: a small but important part of any organization’s security strategy.
Post-Pandemic Commuters are 22% More Likely to Lose their Devices

Kingston IronKey can help mitigate data loss resulting from the rise in lost electronic devices.
Why Are USB Drives Still Relevant Today?

In this eBook, we explore how encrypted USB drives have become a key tool in keeping data secure.
Setting Up Kingston IronKey^™ Vault Privacy 80 External SSD

How to use your IronKey Vault Privacy 80 External SSD: set password, connecting to a PC and more.
Protect Private Mobile Data in Healthcare

Organizations are considering data security options to protect against private mobile data breaches.
Finance Industry: Keeping Sensitive Data Safe with Kingston IronKey

Discover how Kingston IronKey is protecting the sensitive data of the finance sector.
Protecting Critical Data in The Energy Sector with Kingston IronKey Encrypted Drives

Here is how Kingston IronKey helped protect the sensitive data of the Energy industry.
Cybersecurity – How to Stay Ahead in 2022

We explore our KingstonCognate experts’ thoughts on cyberthreats and cybersecurity challenges.
Software Encryption and Regulatory Compliance: Less Expensive Solution with Major Security Risks

Software based encryption can be disabled by the user. This can lead to fines and legal fees if the drive is lost.
How to Stay Secure in a Digitized World

We explore Tomasz Surdyk's thoughts on how all entities can stay secure in the digitized world.
FBI Warns Hackers are Mailing Malware on USB Drives to their Targets

Don’t plug any USB drives into your computer if you don’t know exactly where they came from.
Transporting and Protecting Data Outside Your Firewall

Protection data on the move with superior hardware-based Advanced Encryption Standard (AES) 256.
- Data Security
- Work from Home
- Client
- Cloud
- SSD
- Encrypted USB
What Businesses Need in their Work-from-Home Enablement

What we learned from Kingston’s experts and tech influencers on work-from-home enablement Twitter chat.
Is Encrypted Storage Needed If You Use the Cloud?

There are benefits to using both cloud storage and hardware-based encryption.
Top 12 Tips SMEs Can Take to Enhance Cybersecurity

We explore the top 12 tips small and medium size enterprises can take to enhance cybersecurity.
Kingston’s 3 Predictions for the Data Center and Enterprise IT in 2022

We’ve examined several factors using unique research to identify what may impact markets globally in 2022.
2022: Technology Expert Predictions

2021 has been a year full of challenges and innovations. But what will 2022 bring?
How to Close the Security Gap for Small and Medium-Size Enterprises

Prof. Sally Eaves shares her thoughts on the SME cybersecurity landscape and the need for education & support.
Sustained Commitment Required for Cybersecurity

Bill Mew shares his thoughts how the largest security challenges need commitment from the boardroom.
Are You Close to the Edge? Why Edge Computing Needs Security

Rob May shares his thoughts on how close we are to edge computing and the security it requires.
21st Century Private Diary

Write your diary digitally with a password protected, cloud backup solution.
The Critical Roles of Data Centers During COVID-19

The pandemic has increased internet traffic which has placed importance on the role of data centers.
Data Loss Prevention in Our Remote Working World

The use of DLP software, VPNs, encrypted SSDs, and USBs will help mitigate some risks of remote working.
Should I Make the Switch to NVMe?

Cameron Crandall of Kingston helps you self-evaluate the need to move to your server storage solution to NVMe.
What is the difference between hardware vs software-based encryption for secure USB flash drives? - Kingston Technology

There are many advantages to using a dedicated hardware encryption processor in USB flash drives.
Influencer Tech Insights for 2021

What will 2021 bring in tech and trends? What do our KingstonCognate members and industry experts predict for the future?
Who Is Responsible for Cyber Security and Privacy?

Cyber security and data privacy are everyone’s responsibility. What are the key considerations?
Kingston SSDs are the best hardware choice for software-defined storage solutions

Learn why the future of business depends on SSD-enabled SDS, and how SSD fits into software-defined storage solutions.
Optimal Endpoint Security Explained and Explored in Partnership with Matrix42

Kingston & Matrix42 partnered to give optimal endpoint security solution in multiple sectors to mitigate risks.
C-Suites Need to Stop Taking Unnecessary Risks

Organizations must consider revenue, profit, and risk equally in order to mitigate data security & cyber security risks. In this article, industry expert Bill Mew provides an insight into this topic.
Twitter Chat: Security Experts and Privacy Discuss GDPR in 2020

What do industry experts think has changed since the introduction of GDPR?
Rip and Replace vs Predictability: Why SSDs with Predictable Latency Matters

Data centers should be using server SSDs. There are many benefits over client drives and costs have come down.
The Benefits of NVMe in Enterprise

NVMe is now the standard protocol for SSDs to empower data centers and enterprise environments.
Case Study: Accelerating virtual machines with Kingston DC500M SSDs

Find out how Hardwareluxx were able to manage the growth of their web traffic using Kingston's DC500M SSD.
Is Now the Time for SDS (Software Defined Storage)?

SDS hasn’t lived up to its hype but now that NVMe is more affordable the commodity hardware is ready to deliver.
The Right Solid-State Drive (SSD) Matters

Choosing the right SSD for your server is important since server SSDs are optimized to perform at a predictable latency level while client (desktop/laptop) SSDs are not. These difference result in better uptime and less lag for critical apps and services.
4 Things Data Center Managers Can Learn from HPC

Cloud and on-premise data center managers can learn a lot from supercomputing.
Work From Home Tips and Tricks

To work from home you need a good workspace for your PC, the right conferencing gear, and a secure connection.
Data Protection and Cyber Security in a Post-GDPR Landscape - Kingston Technology

What strategies can organizations use to best secure customer data in a post-GDPR world with the ever-evolving nature of cyber security threats? Kingston pooled the knowledge of some of the UK’s most experienced commentators in cyber security to discuss how data protection has changed since the introduction of GDPR.
Improve SQL Server Performance with DC500M Enterprise SSDs

This whitepaper demonstrates how using Kingston Technology’s Data Centre DC500 SSDs can reduce your overall capital and licence costs by 39%.
Quality of Service (QoS)

Data Center 500 Series SSDs (DC500R / DC500M) – Consistency, predictability of Latency (response time) and IOPS (I/Os Per Second) performance.
Understanding The Security Challenges of a Mobile Workforce

You already know that remote working is a business enabler. But the challenges posed to your network security and compliance with GDPR are too big to ignore.
- Data Security
Enabling and Disabling BitLocker with eDrive to Utilize Hardware Encryption

How to enable and disable Microsoft’s BitLocker eDrive feature to leverage hardware encryption on your Kingston SSD
Protecting and Securing your Network, Data, Computers and Company

The recent WannaCry ransomware made global headlines infecting and alerting everyone from government, healthcare, communication providers, automotive companies to corporations and the general public of their vulnerabilities.
Kingston / Ironkey Encrypted USB - Advantage Over BitLocker

Overall, Kingston / IronKey Encrypted USB Drives prove to be the best solution in reliability, compatibility and security for portable data protection solutions.
ECC and Spare Blocks help to keep Kingston SSD data protected from errors

End-to-End Data Protection protects customer’s data as soon as it is transferred by the host system to the SSD, and then from the SSD to the host computer. All Kingston SSDs incorporate this protection.
- Data Security
Secure USB Flash Drive Industry Alliances - Kingston Technology

Some of Kingston and IronKey's Secure USB Flash drives are powered by partners, licensed technology, or services.
A Closer Look At SSD Power Loss Protection

Firmware/hardware PFAIL protection is an highly effective method for preventing data loss in enterprise SSD.
SSDs for High-Performance Computing (HPC)

HPC can require massive amounts of data. SSDs consume a fraction of the power of their spinning disk.
SSDs for Online Transaction Processing (OLTP)

Kingston datacenter SSDs provide excellent resiliency to protect sensitive data in OLTP workloads.
- Data Security
Secure Customization Program

This program offers the options most frequently requested by customers, including serial numbering, dual password and custom logos. With a minimum order of 50 pieces, the program delivers precisely what your organization needs.
- Data Security
- Data Security
AES-XTS Block Cipher Mode is used in Kingston's best encrypted USB Flash Drives

256-bit AES hardware-based XTS block cipher mode encryption is used in DT 4000G2 and DTVP 3.0.
- Data Security
Kingston's FIPS Compliance for Encrypted Storage

Most IronKey and Kingston secure USB flash drives are FIPS 140-2 Certified.
Major Recent Example of an Unencrypted USB breach

Case in point, Heathrow Airport in London (October 30, 2017) uses Unencrypted USB Drives for its non-cloud storage. Unfortunately, they were not standardized on Encrypted USB drives. Their lack of implementing proper standards in data security / data loss protection with encrypted USB storage has now cost the EU a major breach of confidential and restricted information.
Linus introduces the DataTraveler 3.0

Linus breaks down hardware encryption making sure your files are safe and secure, especially when you're on the go. Make sure your portable storage is also safe and encrypted with Kingston Encrypted USB drives.
SSDs for Virtual Desktop Infrastructure

Storage can be the most challenging component for VDI performance.
Solid-State Drive Testing 101

Testing is a cornerstone of our commitment to deliver the most reliable products on the market. We perform rigorous tests on all of our products during each stage of production. These tests ensure quality control throughout the entire manufacturing process.
- SSD
- Data Security
Understanding NVMe and SSD Technology

NVMe (Non-Volatile Memory Express) is a communications interface and driver that defines a command set and feature set for PCIe-based SSDs with the goals of increased and efficient performance and interoperability on a broad range of enterprise and client systems.