With the recent WannaCry attack, ransomware is back in the news. Around 200,000 systems were hit by this malware, which blocked doctors from gaining access to patient files and forced emergency rooms to send people away. Unpatched Windows XP and Server 2003 systems were the culprit of this mass ransomware worm, which spread around the world via a few email link clicks. As a refresher, ransomware is a form of malware that targets critical data and systems for the purpose of extortion. It's frequently delivered through phishing emails. After the user has been locked out of the data or system, the cyber attacker demands a ransom payment in order for the user to (supposedly) re-gain access. Securing your network starts with user education and training – this way, your staff can be the first line of defense. Here are some of the preventative measures the U.S. Government (USG) recommends to protect computer networks from a ransomware infection: Health and Human Services' Office of Civil Rights requires healthcare organizations to report a health data breach of 500 records or more within 60 days of discovery. Should your preventive measures fail, here are some of the steps the USG recommends that organizations take: