{"id":253901,"date":"2026-07-08T12:52:12","date_gmt":"2026-07-08T10:52:12","guid":{"rendered":"https:\/\/www.itta.net\/?p=253901"},"modified":"2026-07-08T12:58:51","modified_gmt":"2026-07-08T10:58:51","slug":"ransomware-protect-your-business","status":"publish","type":"post","link":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/","title":{"rendered":"Ransomware: 5 Measures to Protect your Business in 2026"},"content":{"rendered":"<p><em><strong>One morning, your files are encrypted and a ransom note appears.<\/strong> Ransomware no longer spares Swiss SMEs. On the contrary, they have become prime targets, because they are less well defended than large corporations. A ransomware attack can paralyse your business within hours. The good news: a handful of concrete measures dramatically reduce the risk.<\/em><\/p>\n<!-- quiz_ia: invalid JSON in quiz_ia_data -->\n<h2 id=\"sommaire\">Table of Contents<\/h2>\n<ul>\n<li><a href=\"#comment-fonctionne\">How a ransomware attack works<\/a><\/li>\n<li><a href=\"#pme-suisses-cibles\">Why Swiss SMEs are targets<\/a><\/li>\n<li><a href=\"#sauvegardes-321\">Measure 1: 3-2-1 offline backups<\/a><\/li>\n<li><a href=\"#mfa-partout\">Measure 2: MFA everywhere<\/a><\/li>\n<li><a href=\"#patching\">Measure 3: patch management<\/a><\/li>\n<li><a href=\"#edr-segmentation\">Measure 4: EDR and network segmentation<\/a><\/li>\n<li><a href=\"#sensibilisation\">Measure 5: employee awareness<\/a><\/li>\n<li><a href=\"#en-cas-attaque\">What to do during an attack<\/a><\/li>\n<li><a href=\"#conclusion\">Conclusion<\/a><\/li>\n<li><a href=\"#faq\">FAQ<\/a><\/li>\n<\/ul>\n<p><img decoding=\"async\" src=\"https:\/\/www.itta.net\/wp-content\/uploads\/2026\/07\/ransomware-proteger-entreprise-pme-1.webp\" alt=\"security monitoring screen for corporate ransomware protection\" loading=\"lazy\" style=\"width:100%;height:auto;border-radius:8px;margin:2.75rem 0\" \/><\/p>\n<h2 id=\"comment-fonctionne\">How a ransomware attack works<\/h2>\n<p>Ransomware is malicious software that encrypts your data. Then criminals demand a ransom to restore access. Moreover, most current groups also steal your data before encrypting it. As a result, they threaten to publish it if you refuse to pay. This tactic is known as double extortion.<\/p>\n<p>A ransomware attack never happens by chance. Indeed, it almost always follows the same script. First, the attacker finds a way in. Then they move quietly across the network. Finally, they trigger the encryption at the worst possible moment, often at night or over the weekend.<\/p>\n<p>Three entry vectors dominate today:<\/p>\n<ul>\n<li><strong>Phishing.<\/strong> A booby-trapped email pushes an employee to click or open an attachment. This is the most common vector.<\/li>\n<li><strong>Exposed RDP access.<\/strong> A remote desktop service open to the internet, without MFA, becomes an easy brute-force target.<\/li>\n<li><strong>Unpatched flaws.<\/strong> An outdated VPN, firewall or server offers a known, exploitable gap.<\/li>\n<\/ul>\n<p>Consequently, understanding these vectors directly shapes your defence. Each measure below closes one of these doors. The following table summarises the link between entry vector and concrete countermeasure.<\/p>\n<div style=\"overflow-x:auto;-webkit-overflow-scrolling:touch;max-width:100%;width:100%;margin:1rem 0 0.5rem 0\">\n<table style=\"width:100%\">\n<thead>\n<tr>\n<th style=\"text-align:left\">Entry vector<\/th>\n<th style=\"text-align:left\">How it is exploited<\/th>\n<th style=\"text-align:left\">Main countermeasure<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>Phishing<\/td>\n<td>Booby-trapped email, attachment or malicious link<\/td>\n<td>Awareness and message filtering<\/td>\n<\/tr>\n<tr>\n<td>Exposed RDP access<\/td>\n<td>Brute force on an open remote desktop<\/td>\n<td>MFA and closing unused services<\/td>\n<\/tr>\n<tr>\n<td>Unpatched flaws<\/td>\n<td>Exploitation of a known vulnerability<\/td>\n<td>Rigorous patch management<\/td>\n<\/tr>\n<tr>\n<td>Stolen account<\/td>\n<td>Reused or leaked credentials<\/td>\n<td>MFA and password rotation<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<p>In short, no door closes on its own. Each row of this table matches a specific action you can start this very week.<\/p>\n<h2 id=\"pme-suisses-cibles\">Why Swiss SMEs are targets<\/h2>\n<p>Many business owners believe they are too small to interest cybercriminals. This is a dangerous mistake. In reality, SMEs concentrate several attractive weaknesses. They hold sensitive data, yet rarely have a dedicated security team.<\/p>\n<p>According to the Swiss Federal Office for Cybersecurity (NCSC), ransomware remains a serious threat in Switzerland. During the second half of 2025, <a href=\"https:\/\/www.ncsc.admin.ch\/ncsc\/en\/home\/aktuell\/im-fokus\/2026\/ncsc-hjb-2025-2.html\" target=\"_blank\" rel=\"noopener noreferrer\">57 ransomware cases were reported to the NCSC<\/a>. This figure only reflects the incidents that were reported. The reality is therefore probably broader, since many companies never disclose their attacks.<\/p>\n<p>Furthermore, attackers automate their campaigns. They continuously scan the internet for vulnerable systems. A Swiss SME is therefore just as valuable as any other target in their eyes. However, a well-prepared SME becomes far less profitable to attack. That is exactly why prevention changes everything.<\/p>\n<p>Another factor makes the situation worse. Indeed, many Swiss SMEs outsource their IT to an external provider. This dependency creates a blind spot. You assume everything is handled, while backups or MFA may not be in place. Therefore, ask your provider precise questions. Ask where your backups are, whether they are tested, and who responds during an incident on a Sunday night. These answers are worth their weight in gold the day an attack strikes.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.itta.net\/wp-content\/uploads\/2026\/07\/ransomware-proteger-entreprise-pme-2.webp\" alt=\"offline data backup to protect against a ransomware attack\" loading=\"lazy\" style=\"width:100%;height:auto;border-radius:8px;margin:2.75rem 0\" \/><\/p>\n<h2 id=\"sauvegardes-321\">Measure 1: 3-2-1 offline backups<\/h2>\n<p>Backups are your last line of defence. Indeed, if your data stays recoverable, the ransom loses all its power. However, a backup permanently connected to the network will be encrypted too. It therefore offers no protection.<\/p>\n<p>The 3-2-1 rule is the global reference, recommended notably by the US agency CISA. It rests on three simple principles:<\/p>\n<ul>\n<li><strong>3 copies<\/strong> of your data in total.<\/li>\n<li><strong>2 different media<\/strong>, for instance a disk and the cloud.<\/li>\n<li><strong>1 offsite copy<\/strong>, ideally offline or immutable.<\/li>\n<\/ul>\n<p>The key word here is <strong>offline<\/strong>. A copy disconnected from the network, or an immutable backup that cannot be altered or deleted, resists ransomware. Moreover, test your restores regularly. A backup you never test is a false sense of security. Therefore, schedule a restore test at least every quarter.<\/p>\n<p>Also think about how long a full recovery would take. Restoring several terabytes of data can take days, not minutes. Consequently, define a realistic recovery time and communicate it to management. This planning turns a chaotic crisis into a controlled procedure. In addition, document the steps so any team member can follow them under pressure.<\/p>\n<h2 id=\"mfa-partout\">Measure 2: MFA everywhere<\/h2>\n<p>Multi-factor authentication, or MFA, adds proof of identity on top of the password. As a result, even if a password is stolen, the attacker stays locked out. It is one of the most effective measures against intrusions.<\/p>\n<p>CISA recommends phishing-resistant MFA for as many services as possible. In practice, enable it first on:<\/p>\n<ul>\n<li>Business email and Microsoft 365.<\/li>\n<li>VPN and remote desktop access.<\/li>\n<li>Administrator accounts and backup consoles.<\/li>\n<\/ul>\n<p>However, not all MFA methods are equal. An SMS code is better than nothing, but an authenticator app or a physical key offers far stronger protection. Furthermore, never leave a privileged account without MFA. That is precisely what attackers look for first.<\/p>\n<p>Beware of one modern trap as well: MFA fatigue. Attackers spam a user with repeated approval requests until someone taps accept out of frustration. Therefore, train your teams to reject any unexpected prompt. Moreover, prefer methods with number matching, which require the user to confirm a specific code. This small friction stops a whole category of attacks.<\/p>\n<div style=\"background:linear-gradient(135deg,#f8fcfc 0%,#f0fafa 100%);border-radius:12px;padding:36px 40px;margin:40px 0;font-family:Montserrat,Arial,sans-serif;color:#111;border-left:6px solid #00B0AE;position:relative\">\n<p style=\"font-size:1.1vw;font-weight:600;margin:0 0 6px;color:#00B0AE;line-height:1.3;text-transform:uppercase;letter-spacing:1px\">Recommended training<\/p>\n<p style=\"font-size:1.6vw;font-weight:700;margin:0 0 4px;color:#1a1a2e;line-height:1.3\">CISSP &#8211; Certified Information Systems Security Professional<\/p>\n<p style=\"font-size:0.9vw;font-weight:600;margin:0 0 14px;color:#888;line-height:1.3\">Ref. ISC-CISSP<\/p>\n<p style=\"font-size:1vw;margin:0 0 16px;color:#444;line-height:1.6\">Master information security end to end and build a solid defence against ransomware. The benchmark certification for cybersecurity professionals.<\/p>\n<div style=\"display:flex;flex-wrap:wrap;gap:8px 24px;margin:0 0 20px\">\n<span style=\"font-size:0.95vw;color:#444\"><strong style=\"color:#00B0AE\">Duration:<\/strong> 5 days<\/span><br \/>\n<span style=\"font-size:0.95vw;color:#444\"><strong style=\"color:#00B0AE\">Level:<\/strong> Advanced<\/span><br \/>\n<span style=\"font-size:0.95vw;color:#444\"><strong style=\"color:#00B0AE\">Location:<\/strong> Geneva \/ Lausanne \/ Remote<\/span>\n<\/div>\n<p><a href=\"https:\/\/www.itta.net\/en\/trainings\/it-pro\/audit-and-cybersecurity\/certified-information-systems-security-professional-cissp\/\" target=\"_blank\" rel=\"noopener\" style=\"display:inline-block;background:#00B0AE;color:#fff;padding:14px 32px;border-radius:8px;font-size:1.05vw;font-weight:700;text-decoration:none;font-family:Montserrat,Arial,sans-serif\">Discover the course \u2192<\/a>\n<\/div>\n<h2 id=\"patching\">Measure 3: patch management<\/h2>\n<p>Every piece of software contains flaws. Regularly, vendors release patches to fix them. However, an outdated system stays wide open. And attackers exploit known flaws within days, sometimes within hours.<\/p>\n<p>Patch management means applying these updates quickly and systematically. For an SME, the approach comes down to a few reflexes:<\/p>\n<ul>\n<li>Inventory your exposed systems: VPN, firewall, servers, workstations.<\/li>\n<li>Prioritise critical patches, especially those exposed to the internet.<\/li>\n<li>Automate updates wherever possible.<\/li>\n<li>Set a maximum deadline for applying critical patches.<\/li>\n<\/ul>\n<p>Moreover, beware of forgotten equipment. An old server or an end-of-life firewall quickly becomes a weak link. Therefore, replace or isolate any hardware that no longer receives security updates.<\/p>\n<p>Finally, do not forget third-party software. Browsers, PDF readers and business plugins are all potential doorways. As a result, apply the same update discipline across your entire estate. A single neglected application can undo all your other efforts.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.itta.net\/wp-content\/uploads\/2026\/07\/ransomware-proteger-entreprise-pme-3.webp\" alt=\"SOC team monitoring a ransomware attack on supervision screens\" loading=\"lazy\" style=\"width:100%;height:auto;border-radius:8px;margin:2.75rem 0\" \/><\/p>\n<h2 id=\"edr-segmentation\">Measure 4: EDR and network segmentation<\/h2>\n<p>A traditional antivirus is no longer enough. Modern ransomware easily evades classic signatures. It uses legitimate system tools to blend in. That is why defences must evolve.<\/p>\n<h3 id=\"edr\">EDR to detect and respond<\/h3>\n<p>An EDR (Endpoint Detection and Response) monitors the behaviour of workstations and servers. As a result, it spots suspicious actions, such as mass file encryption. Then it can automatically isolate a compromised machine. This responsiveness often makes the difference between a contained incident and a full-blown disaster.<\/p>\n<h3 id=\"segmentation\">Segmentation to limit spread<\/h3>\n<p>Network segmentation divides your infrastructure into isolated zones. Consequently, an infected machine does not contaminate the entire network. In particular, separate critical servers, office workstations and backup systems. Moreover, restrict access rights to the strict minimum. In short, an attacker who gets in somewhere must not be able to reach everywhere.<\/p>\n<p>For a small structure, this does not require a costly overhaul. Indeed, a few well-placed rules on your existing firewall already help. For instance, block direct access from ordinary workstations to your backup server. As a result, even a compromised laptop cannot reach your most valuable copies. This layered approach buys you precious time to react.<\/p>\n<h2 id=\"sensibilisation\">Measure 5: employee awareness<\/h2>\n<p>Technology cannot do everything. Indeed, phishing remains the number one attack vector, and it targets your employees. A well-crafted email can fool anyone on a tired day. Therefore, human vigilance is a defence layer in its own right.<\/p>\n<p>Effective awareness rests on concrete habits, repeated over time:<\/p>\n<ul>\n<li>Check the sender before clicking a link or opening an attachment.<\/li>\n<li>Be wary of urgent messages that demand immediate action.<\/li>\n<li>Never share credentials by email or phone.<\/li>\n<li>Report any suspicious message to the IT team, without fear.<\/li>\n<\/ul>\n<p>Furthermore, run simulated phishing campaigns. They measure the real level of vigilance and build lasting reflexes. However, focus on education, never on punishment. An employee who reports a mistake is worth more than one who hides it.<\/p>\n<p>Consistency matters more than intensity here. A single yearly training session fades quickly from memory. Therefore, favour short and regular reminders throughout the year. In addition, involve management visibly, because example drives culture. When leaders take security seriously, teams follow. As a result, vigilance becomes a shared habit rather than an imposed constraint.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.itta.net\/wp-content\/uploads\/2026\/07\/ransomware-proteger-entreprise-pme-4.webp\" alt=\"employee trained in vigilance against a phishing-based ransomware attack\" loading=\"lazy\" style=\"width:100%;height:auto;border-radius:8px;margin:2.75rem 0\" \/><\/p>\n<h2 id=\"en-cas-attaque\">What to do during an attack<\/h2>\n<p>Despite every precaution, zero risk does not exist. If the attack strikes, every minute counts. However, panic is your worst enemy. Follow a clear plan and keep a cool head.<\/p>\n<p>Here are the priorities recommended by the Swiss Federal Office for Cybersecurity:<\/p>\n<ul>\n<li><strong>Isolate immediately.<\/strong> Disconnect infected systems from the network. The NCSC advises physically pulling out the network cable to stop the spread.<\/li>\n<li><strong>Do not pay the ransom.<\/strong> The NCSC formally advises against payment. Indeed, nothing guarantees data recovery, and paying funds future attacks.<\/li>\n<li><strong>Notify the NCSC.<\/strong> Report the incident to the Federal Office for Cybersecurity and file a complaint with the cantonal police.<\/li>\n<\/ul>\n<p>Concretely, you can report an attack through the <a href=\"https:\/\/www.report.ncsc.admin.ch\/en\/\" target=\"_blank\" rel=\"noopener noreferrer\">NCSC reporting portal<\/a>. You will find the detailed steps on the official page <a href=\"https:\/\/www.ncsc.admin.ch\/ncsc\/en\/home\/infos-fuer\/infos-unternehmen\/vorfall-was-nun\/ransomware.html\" target=\"_blank\" rel=\"noopener noreferrer\">Ransomware, what to do<\/a>. Moreover, restore your systems from clean backups, never from a system that may still be infected. Finally, preserve the evidence, as it will help the investigation and your insurer.<\/p>\n<div style=\"background:linear-gradient(135deg,#f8fcfc 0%,#f0fafa 100%);border-radius:12px;padding:36px 40px;margin:40px 0;font-family:Montserrat,Arial,sans-serif;color:#111;border-left:6px solid #00B0AE;position:relative\">\n<p style=\"font-size:1.1vw;font-weight:600;margin:0 0 6px;color:#00B0AE;line-height:1.3;text-transform:uppercase;letter-spacing:1px\">Recommended training<\/p>\n<p style=\"font-size:1.6vw;font-weight:700;margin:0 0 4px;color:#1a1a2e;line-height:1.3\">CISSP &#8211; Certified Information Systems Security Professional<\/p>\n<p style=\"font-size:0.9vw;font-weight:600;margin:0 0 14px;color:#888;line-height:1.3\">Ref. ISC-CISSP<\/p>\n<p style=\"font-size:1vw;margin:0 0 16px;color:#444;line-height:1.6\">Move from theory to a complete cyber-defence strategy. A benchmark course to anticipate ransomware and protect your business for the long term.<\/p>\n<div style=\"display:flex;flex-wrap:wrap;gap:8px 24px;margin:0 0 20px\">\n<span style=\"font-size:0.95vw;color:#444\"><strong style=\"color:#00B0AE\">Duration:<\/strong> 5 days<\/span><br \/>\n<span style=\"font-size:0.95vw;color:#444\"><strong style=\"color:#00B0AE\">Level:<\/strong> Advanced<\/span><br \/>\n<span style=\"font-size:0.95vw;color:#444\"><strong style=\"color:#00B0AE\">Location:<\/strong> Geneva \/ Lausanne \/ Remote<\/span>\n<\/div>\n<p><a href=\"https:\/\/www.itta.net\/en\/trainings\/it-pro\/audit-and-cybersecurity\/certified-information-systems-security-professional-cissp\/\" target=\"_blank\" rel=\"noopener\" style=\"display:inline-block;background:#00B0AE;color:#fff;padding:14px 32px;border-radius:8px;font-size:1.05vw;font-weight:700;text-decoration:none;font-family:Montserrat,Arial,sans-serif\">Discover the course \u2192<\/a>\n<\/div>\n<h2 id=\"conclusion\">Conclusion<\/h2>\n<p>Ransomware is no longer a threat reserved for large corporations. Swiss SMEs are now on the front line, precisely because they are seen as more vulnerable. However, this vulnerability is anything but inevitable. The five measures presented here close the doors that attackers exploit.<\/p>\n<p>Let us recap the essentials. 3-2-1 offline backups guarantee your survival. MFA and patching block the majority of intrusions. EDR and segmentation limit the damage. Finally, aware employees defeat phishing. Together, these layers form a solid and realistic defence, even with limited resources.<\/p>\n<p>In short, ransomware protection is an ongoing project, not a box to tick. To go further and structure your strategy, a certifying course such as the <a href=\"https:\/\/www.itta.net\/en\/trainings\/it-pro\/audit-and-cybersecurity\/certified-information-systems-security-professional-cissp\/\" target=\"_blank\" rel=\"noopener noreferrer\">CISSP<\/a> gives your teams the skills they need. Because in cybersecurity, the best defence remains anticipation.<\/p>\n<h2 id=\"faq\">FAQ<\/h2>\n<p><strong>What exactly is ransomware?<\/strong><br \/>Ransomware is malicious software that encrypts your files. Criminals then demand a ransom to restore access. Most also steal your data and threaten to publish it.<\/p>\n<p><strong>Should you pay the ransom during an attack?<\/strong><br \/>No. The Swiss Federal Office for Cybersecurity formally advises against paying. Nothing guarantees data recovery, and payment funds new attacks. Isolate, report and restore from your backups.<\/p>\n<p><strong>How do you protect effectively against a ransomware attack?<\/strong><br \/>Combine five measures: 3-2-1 offline backups, MFA everywhere, patches applied quickly, EDR with network segmentation, and employee awareness. No single measure is enough, but together they are highly effective.<\/p>\n<p><strong>Why are Swiss SMEs targeted?<\/strong><br \/>SMEs hold sensitive data but rarely have a dedicated security team. Moreover, attackers automate their campaigns and continuously scan the internet. A poorly protected SME therefore becomes an easy and profitable target.<\/p>\n<p><strong>Who should you report a ransomware attack to in Switzerland?<\/strong><br \/>Report the incident to the Federal Office for Cybersecurity through its online portal. Also file a complaint with your cantonal police. Reporting supports the investigation and helps protect other companies.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>One morning, your files are encrypted and a ransom note appears. Ransomware no longer spares Swiss SMEs. On the contrary, they have become prime targets, because they are less well defended than large corporations. A ransomware attack can paralyse your business within hours. The good news: a handful of concrete measures dramatically reduce the risk. [&hellip;]<\/p>\n","protected":false},"author":112,"featured_media":253898,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","footnotes":""},"categories":[2938,2944],"tags":[],"class_list":["post-253901","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-informatique","category-it-pro"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.5 (Yoast SEO v27.5) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Ransomware: 5 Measures to Protect your SME<\/title>\n<meta name=\"description\" content=\"Ransomware in Switzerland: how an attack works and 5 concrete measures to protect your SME. Backups, MFA, patching, EDR.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Damien Crocq\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"12 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":[\"Article\",\"BlogPosting\"],\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/\"},\"author\":{\"name\":\"Damien Crocq\",\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/#\\\/schema\\\/person\\\/ca875e6c61a8f6f224901d4b48e1494f\"},\"headline\":\"Ransomware: 5 Measures to Protect your Business in 2026\",\"datePublished\":\"2026-07-08T10:52:12+00:00\",\"dateModified\":\"2026-07-08T10:58:51+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/\"},\"wordCount\":2010,\"publisher\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.itta.net\\\/wp-content\\\/uploads\\\/2026\\\/07\\\/ransomware-proteger-entreprise-pme-featured.webp\",\"articleSection\":[\"Informatique\",\"IT Pro\"],\"inLanguage\":\"en-GB\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/\",\"url\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/\",\"name\":\"Ransomware: 5 Measures to Protect your SME\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.itta.net\\\/wp-content\\\/uploads\\\/2026\\\/07\\\/ransomware-proteger-entreprise-pme-featured.webp\",\"datePublished\":\"2026-07-08T10:52:12+00:00\",\"dateModified\":\"2026-07-08T10:58:51+00:00\",\"description\":\"Ransomware in Switzerland: how an attack works and 5 concrete measures to protect your SME. Backups, MFA, patching, EDR.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.itta.net\\\/wp-content\\\/uploads\\\/2026\\\/07\\\/ransomware-proteger-entreprise-pme-featured.webp\",\"contentUrl\":\"https:\\\/\\\/www.itta.net\\\/wp-content\\\/uploads\\\/2026\\\/07\\\/ransomware-proteger-entreprise-pme-featured.webp\",\"width\":1376,\"height\":768,\"caption\":\"ransomware\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/blog\\\/ransomware-protect-your-business\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.itta.net\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Ransomware: 5 Measures to Protect your Business in 2026\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/#website\",\"url\":\"https:\\\/\\\/www.itta.net\\\/en\\\/\",\"name\":\"ITTA\",\"description\":\"Formations &amp; Certifications en Suisse Romande\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.itta.net\\\/en\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":[\"Organization\",\"EducationalOrganization\"],\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/#organization\",\"name\":\"ITTA\",\"alternateName\":\"IT TRAINING ACADEMY SA\",\"url\":\"https:\\\/\\\/www.itta.net\\\/en\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.itta.net\\\/wp-content\\\/uploads\\\/2023\\\/02\\\/Logo-transparent.png\",\"contentUrl\":\"https:\\\/\\\/www.itta.net\\\/wp-content\\\/uploads\\\/2023\\\/02\\\/Logo-transparent.png\",\"width\":1500,\"height\":623,\"caption\":\"ITTA\"},\"image\":{\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/people\\\/ITTA\\\/100063747262936\\\/\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/1001738\",\"https:\\\/\\\/www.instagram.com\\\/itta_suisse\\\/\"],\"contactPoint\":{\"@type\":\"ContactPoint\",\"telephone\":\"+41 58 307 73 00\",\"contactType\":\"customer service\",\"availableLanguage\":[\"French\",\"English\"],\"areaServed\":[{\"@type\":\"Country\",\"name\":\"Switzerland\"},{\"@type\":\"Country\",\"name\":\"France\"}]},\"location\":[{\"@type\":\"Place\",\"name\":\"ITTA Geneve\",\"address\":{\"@type\":\"PostalAddress\",\"streetAddress\":\"Route des Jeunes 35\",\"addressLocality\":\"Carouge\",\"postalCode\":\"1227\",\"addressRegion\":\"GE\",\"addressCountry\":\"CH\"},\"geo\":{\"@type\":\"GeoCoordinates\",\"latitude\":46.18274,\"longitude\":6.12922}},{\"@type\":\"Place\",\"name\":\"ITTA Lausanne\",\"address\":{\"@type\":\"PostalAddress\",\"streetAddress\":\"Rue des Cotes-de-Montbenon 16\",\"addressLocality\":\"Lausanne\",\"postalCode\":\"1003\",\"addressRegion\":\"VD\",\"addressCountry\":\"CH\"},\"geo\":{\"@type\":\"GeoCoordinates\",\"latitude\":46.52111,\"longitude\":6.62734}}]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.itta.net\\\/en\\\/#\\\/schema\\\/person\\\/ca875e6c61a8f6f224901d4b48e1494f\",\"name\":\"Damien Crocq\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.itta.net\\\/wp-content\\\/uploads\\\/2024\\\/04\\\/damien-bio-1-100x100.jpg\",\"url\":\"https:\\\/\\\/www.itta.net\\\/wp-content\\\/uploads\\\/2024\\\/04\\\/damien-bio-1-100x100.jpg\",\"contentUrl\":\"https:\\\/\\\/www.itta.net\\\/wp-content\\\/uploads\\\/2024\\\/04\\\/damien-bio-1-100x100.jpg\",\"caption\":\"Damien Crocq\"},\"description\":\"Damien est un professionnel dynamique, passionn\u00e9 par le marketing digital et le r\u00e9f\u00e9rencement naturel. Dipl\u00f4m\u00e9 d'un master en Web Marketing, il a acquis une solide exp\u00e9rience en e-commerce et a enseign\u00e9 sur des th\u00e9matiques de marketing digital. Aujourd'hui, il occupe le poste de sp\u00e9cialiste en marketing digital chez ITTA. Toujours curieux et innovant, Damien reste avant tout un passionn\u00e9 des technologies \u00e9mergentes, de l'informatique, de l'IA et du r\u00e9f\u00e9rencement naturel.\",\"sameAs\":[\"https:\\\/\\\/www.itta.net\",\"https:\\\/\\\/www.linkedin.com\\\/in\\\/damien-crocq\\\/?originalSubdomain=fr\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Ransomware: 5 Measures to Protect your SME","description":"Ransomware in Switzerland: how an attack works and 5 concrete measures to protect your SME. Backups, MFA, patching, EDR.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/","twitter_misc":{"Written by":"Damien Crocq","Estimated reading time":"12 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":["Article","BlogPosting"],"@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/#article","isPartOf":{"@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/"},"author":{"name":"Damien Crocq","@id":"https:\/\/www.itta.net\/en\/#\/schema\/person\/ca875e6c61a8f6f224901d4b48e1494f"},"headline":"Ransomware: 5 Measures to Protect your Business in 2026","datePublished":"2026-07-08T10:52:12+00:00","dateModified":"2026-07-08T10:58:51+00:00","mainEntityOfPage":{"@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/"},"wordCount":2010,"publisher":{"@id":"https:\/\/www.itta.net\/en\/#organization"},"image":{"@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/#primaryimage"},"thumbnailUrl":"https:\/\/www.itta.net\/wp-content\/uploads\/2026\/07\/ransomware-proteger-entreprise-pme-featured.webp","articleSection":["Informatique","IT Pro"],"inLanguage":"en-GB"},{"@type":"WebPage","@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/","url":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/","name":"Ransomware: 5 Measures to Protect your SME","isPartOf":{"@id":"https:\/\/www.itta.net\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/#primaryimage"},"image":{"@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/#primaryimage"},"thumbnailUrl":"https:\/\/www.itta.net\/wp-content\/uploads\/2026\/07\/ransomware-proteger-entreprise-pme-featured.webp","datePublished":"2026-07-08T10:52:12+00:00","dateModified":"2026-07-08T10:58:51+00:00","description":"Ransomware in Switzerland: how an attack works and 5 concrete measures to protect your SME. Backups, MFA, patching, EDR.","breadcrumb":{"@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/#primaryimage","url":"https:\/\/www.itta.net\/wp-content\/uploads\/2026\/07\/ransomware-proteger-entreprise-pme-featured.webp","contentUrl":"https:\/\/www.itta.net\/wp-content\/uploads\/2026\/07\/ransomware-proteger-entreprise-pme-featured.webp","width":1376,"height":768,"caption":"ransomware"},{"@type":"BreadcrumbList","@id":"https:\/\/www.itta.net\/en\/blog\/ransomware-protect-your-business\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.itta.net\/en\/"},{"@type":"ListItem","position":2,"name":"Ransomware: 5 Measures to Protect your Business in 2026"}]},{"@type":"WebSite","@id":"https:\/\/www.itta.net\/en\/#website","url":"https:\/\/www.itta.net\/en\/","name":"ITTA","description":"Formations &amp; Certifications en Suisse Romande","publisher":{"@id":"https:\/\/www.itta.net\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.itta.net\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":["Organization","EducationalOrganization"],"@id":"https:\/\/www.itta.net\/en\/#organization","name":"ITTA","alternateName":"IT TRAINING ACADEMY SA","url":"https:\/\/www.itta.net\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.itta.net\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.itta.net\/wp-content\/uploads\/2023\/02\/Logo-transparent.png","contentUrl":"https:\/\/www.itta.net\/wp-content\/uploads\/2023\/02\/Logo-transparent.png","width":1500,"height":623,"caption":"ITTA"},"image":{"@id":"https:\/\/www.itta.net\/en\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/people\/ITTA\/100063747262936\/","https:\/\/www.linkedin.com\/company\/1001738","https:\/\/www.instagram.com\/itta_suisse\/"],"contactPoint":{"@type":"ContactPoint","telephone":"+41 58 307 73 00","contactType":"customer service","availableLanguage":["French","English"],"areaServed":[{"@type":"Country","name":"Switzerland"},{"@type":"Country","name":"France"}]},"location":[{"@type":"Place","name":"ITTA Geneve","address":{"@type":"PostalAddress","streetAddress":"Route des Jeunes 35","addressLocality":"Carouge","postalCode":"1227","addressRegion":"GE","addressCountry":"CH"},"geo":{"@type":"GeoCoordinates","latitude":46.18274,"longitude":6.12922}},{"@type":"Place","name":"ITTA Lausanne","address":{"@type":"PostalAddress","streetAddress":"Rue des Cotes-de-Montbenon 16","addressLocality":"Lausanne","postalCode":"1003","addressRegion":"VD","addressCountry":"CH"},"geo":{"@type":"GeoCoordinates","latitude":46.52111,"longitude":6.62734}}]},{"@type":"Person","@id":"https:\/\/www.itta.net\/en\/#\/schema\/person\/ca875e6c61a8f6f224901d4b48e1494f","name":"Damien Crocq","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.itta.net\/wp-content\/uploads\/2024\/04\/damien-bio-1-100x100.jpg","url":"https:\/\/www.itta.net\/wp-content\/uploads\/2024\/04\/damien-bio-1-100x100.jpg","contentUrl":"https:\/\/www.itta.net\/wp-content\/uploads\/2024\/04\/damien-bio-1-100x100.jpg","caption":"Damien Crocq"},"description":"Damien est un professionnel dynamique, passionn\u00e9 par le marketing digital et le r\u00e9f\u00e9rencement naturel. Dipl\u00f4m\u00e9 d'un master en Web Marketing, il a acquis une solide exp\u00e9rience en e-commerce et a enseign\u00e9 sur des th\u00e9matiques de marketing digital. Aujourd'hui, il occupe le poste de sp\u00e9cialiste en marketing digital chez ITTA. Toujours curieux et innovant, Damien reste avant tout un passionn\u00e9 des technologies \u00e9mergentes, de l'informatique, de l'IA et du r\u00e9f\u00e9rencement naturel.","sameAs":["https:\/\/www.itta.net","https:\/\/www.linkedin.com\/in\/damien-crocq\/?originalSubdomain=fr"]}]}},"_links":{"self":[{"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/posts\/253901","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/users\/112"}],"replies":[{"embeddable":true,"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/comments?post=253901"}],"version-history":[{"count":4,"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/posts\/253901\/revisions"}],"predecessor-version":[{"id":253949,"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/posts\/253901\/revisions\/253949"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/media\/253898"}],"wp:attachment":[{"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/media?parent=253901"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/categories?post=253901"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.itta.net\/en\/wp-json\/wp\/v2\/tags?post=253901"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}