Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Enabling Ransomware Protection features in Worry-Free Business Security 9.0 (WFBS) Service Pack (SP) 3

    • Updated:
    • 2 Sep 2016
    • Product/Version:
    • Worry-Free Business Security Standard/Advanced 9.0
    • Platform:
    • Windows 2003 Enterprise
    • Windows 2003 Small Business Server
    • Windows 2003 Standard
    • Windows 2008 Enterprise
    • Windows 2008 Essential Business Server
    • Windows 2008 Small Business Server
    • Windows 2008 Standard
    • Windows 2011 Small Business Server Essentials
    • Windows 2011 Small Business Server Standard
    • Windows 7 32-bit
    • Windows 7 64-bit
    • Windows Vista 32-bit
    • Windows Vista 64-bit
Summary

Ransomware is a form of malware that encrypts files until and ask the victim for a “ransom” to decrypt the files. This threat is on the rise and Trend Micro is stepping up its protection and detection. Worry Free Business Security's new approach is to look for ransomware behavior. It does not depend exclusively on signatures or a specific removal tool. It monitors any suspicious file encryption activities at the endpoint and stops them by terminating or putting the process in quarantine.

Typical ransomware searches for system files with specific file extensions and encrypts them through normal file operation.

ransomware attack

Details
Public

Installing WFBS 9.0 SP3 will automatically turn on ransomware protection unless Behavior Monitoring and Web Reputation have been turned off. Trend Micro suggests that customers enable all of the following to have best protection from ransomware.

The Ransomware visibility dashboard was added recently to increase the awareness of our customers if there are some ransomware being detected on their machines.

For existing WFBS SP 1 or SP 2, you may download and install WFBS Service Pack 3 Repack 4 here.

For new customers or fresh install, you may download and install the full installer of WFBS Service Pack 3 here.

Ransomware Visibility

You may also refer to Ransomware: Solutions, Best Practice Configuration and Prevention using Trend Micro products KB article for more information.

  1. Log on to the WFBS console.
  2. Choose the Security Settings tab.
  3. Select the group where you want to apply the setting.
  4. Click Configure Settings > Behavior Monitoring.

    Under Ransomware Protection, make sure that Behavior Monitoring is already enabled. Select the following options:

    • Protect documents against unauthorized encryption or modification.
    • Auto backup files changed by suspicious programs.
    • Enable blocking of process commonly associated with malware.
    • Enable program inspection to detect and block compromised executable.

      Behavior Monitoring 
  5. Click Save.
  1. Log on to the WFBS console.
  2. Go to Security Settings > Desktop (Default).
  3. Choose Configure Settings.
  4. Click Web Reputation and make sure that it is is enabled.
  5. Enable Browser Exploit Prevention.
    Browser Exploit Prevention 
  6. Choose Save.

For more information about Ransomware prevention and tools please click here.

Premium
Internal
Rating:
Category:
Configure; Install
Solution Id:
1111707
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.