What is malware?
Cyber criminals use malware (short for ‘malicious software’) to disrupt computer systems and access confidential information. Malware can easily be installed on your computer or mobile device by clicking a link or opening an email attachment. It can even be hidden inside other files such as software downloads.
How to prevent malware
- Security software: Keep all firewalls and security software regularly updated, consider using antivirus protection and run regular scans on all devices
- Keep devices updated: Install the latest updates for your internet browsers and keep both internet browsers and mobile devices updated to the latest operating systems (OS)
- Trustworthy sources: Only download files and software from trustworthy sources
- Mobile apps: Ensure any mobile apps you download have positive ratings and only use official marketplaces like the Google Store or the App Store
- Emails and texts: Ensure all emails or texts you receive are from legitimate sources before opening any links or attachments, especially if they are pressuring you into taking urgent action
- Passwords: Use complex passwords and multi-factor authentication to make it harder for criminals to access your accounts
- Employee education: Educate employees on how to identify phishing emails and texts and what to do if they receive any
- Disaster recovery plan: Test and rehearse your disaster recovery plan to ensure your business is prepared for an attack.
What to do if you're a victim
- Act immediately: If your computer or device becomes infected by malware take immediate steps to limit the risk of infection and seek professional assistance. Unplug any network cables and de-activate Wi-Fi and Bluetooth connections
- Keep your device on: Do not shut down your device as you may not be able to access it again
- Report: Report the incident immediately to the NCSC1 and Action Fraud2
- Save evidence: Preserve any evidence in coordination with the NCSC, Action Fraud and any other authorities investigating the attack
- Reset credentials: When safe to do so, reset your credentials, including passwords, but ensure not to lock yourself out of systems that are needed for recovery
- Seek advice: Consult the NCSC (National Cyber Security Centre) for advice on how to remove malware3. The No More Ransom Project4 also provides a collection of decryption tools and other anti-malware resources.
Wake up to the reality of malware
5 types of malware
disables system access until a ransom is paid.8
secretly monitors devices for user activity data.9
malware hidden in desirable software.10
gives hackers remote control over infected devices.11
monitor keystrokes for sensitive data and credentials.12
Your next steps
To report any fraudulent activity, or attempts, contact Barclays corporate fraud on 0330 156 0155*.
If you receive a suspicious email, send it as an attachment to firstname.lastname@example.org and delete the email immediately.
Are you protected?
To keep yourself, and your organisation protected from criminals, ensure you keep up to date with our latest resources and advice.
Fraud and Scam Toolkit