Certified Ethical Hacker (CEH v10) — Question 13

Which of the following is the best countermeasure to encrypting ransomwares?

Answer options

• A. Use multiple antivirus softwares
• B. Keep some generation of off-line backup
• C. Analyze the ransomware to get decryption key of encrypted data
• D. Pay a ransom

Correct answer: B

Explanation

The best countermeasure against encrypting ransomware is to keep some generation of off-line backup, as it allows recovery of files without paying the ransom. Using multiple antivirus software (A) may not provide complete protection, and analyzing ransomware for a decryption key (C) is often impractical and not guaranteed to work. Paying a ransom (D) is not advisable as it does not ensure data recovery and encourages further attacks.