A practice bye cyber criminals is see: <paragraph snipped from: https://www.theglobeandmail.com/bus...g-risk-of-ransomware-hackers-has-governments/> "Before perpetrators encrypt a company’s data, they siphon it off and threaten to post it online, giving the victim more incentive to pay up. They maintain websites on the dark web where they dump the stolen data, usually posting a small sample of the purloined material as proof before a full leak." Why not encrypt all company data, then if attacked, criminals retrieve 'encrypted' useless to them! Encrypt now when clean, so 'if & when' attacked useless data obtained Key protection seems to be the weak point! Can you encrypt, & have randomized Keys to 'unlock on' say daily?
@itman Thanks! Suppose one had the "full" drive encrypted, yes the machine can still be hacked, but the thieves, would only get encrypted useless to them data. Being hacked by ransomware, does not de-crypt the companies 'encrypted' data. Zero incentive to pay ransom, as company data (in the hands of thieves) would still be encrypted. What am I missing?
