Last Updated on June 14, 2018 by Next Century
There are 3 things you can do to ensure Acronis Active Protection prevents ransomware from encrypting your backups saved locally on your computer.
Normally you do not need to check them, as they are configured automatically during installation, but if you want to double-check, review the following:
ACTIVE PROTECTION TAB
The toggle on the Active Protection tab should be ON, saying Active Protection is on
ACTIVE PROTECTION SETTINGS
When you click Active Protection settings in the right bottom corner, the Protect Acronis True Image files from ransomware check box should be marked
ACTIVE PROTECTION WARNING MESSAGE
Do not delete, move, or rename .TIB files manually through Windows Explorer.
By default, Acronis blocks the operation, but shows a pop-up notification with an Allow for one hour option.
If the user clicks Allow for one hour, protection of local backups is turned off for one hour, allowing manipulations with .TIB files, but exposing them to a potential ransomware attack.
Please note that Acronis Active Protection protects only internal and external disks (e.g. USB, Thunderbolt, FireWire) of the computer where Acronis True Image is installed.
Folders in local network are not protected. E.g. if the backups were stored on a NAS and the ransomware was not detected and not blocked, it could have gained access to the NAS and encrypt them.
In future updates, we are planning to introduce network folders protection.