This content has been updated since the original publication. You can find all of our updated protection techniques in our Ransomware Prevention Kit. http://www.thirdtier.net/ransomware-prevention-kit/
Reader Mitchell Milligan has created a script to automate the deployment of the Cryptolocker Prevention group policies. Do note that Mitchell’s script is putting the policies at the root of the domain rather than at the OU level. This means it will be applied to ALL Machines in the domain. Often times this will be fine but if not then you might want to deploy the policies individually to the OU’s you want.
I built a powershell script to create/import/link to domain root for these policies. This automates the process of having to manually create and import these policies. We have decided to just place these restrictions on the entire domain, rather than a specific OU, so this script serves that purpose.
Mitchell requests: The terms I request with the script is that anyone who uses it may do so for free, however they may not modify the contents of the package and then sell it to others. Some info about the script: the script requires PowerShell v3 in it’s current state and contains a Readme file with specifics on what the script does.
Be sure to read everything that we’ve published about these Crypto viruses. Read all about it http://www.thirdtier.net/?s=crypto They are very common and devastating. Test this script and our policies on yourself in a test environment before you deploy to your clients. Be safe!
Not a Third Tier customer yet? Let me introduce: We’re Third Tier. We provide advanced Third Tier support for IT Professionals and MicroStaffing for IT consulting firms. Come on over, create an account (no charge) and follow our social media locations.