.png){kind=logo}
Google Drive has introduced a new set of AI-driven security features aimed at detecting and stopping ransomware attacks in real time. The update strengthens Drive’s desktop application. This new feature is now an active defense layer rather than a passive storage tool.
The move reflects growing concern over ransomware threats that target cloud-synced files and encrypt data at scale.
The new system detects threats based on behavioral analysis. The system does not use the usual signature-based detection method. The system detects abnormal activities, which include sudden bulk modifications to files and sudden encryption patterns.
The method can detect new variants of ransomware, which standard anti-virus software cannot.
The system terminates the synchronization of files between the device and the cloud in case of a detected attack. This ensures that Drive does not lose clean files, as infected files will not overwrite them.
The system sends notifications to affected users, which can help them respond to the attack immediately. The system sends notifications to administrators about Enterprise user activities.
Google has also included a feature that enables a streamlined recovery system. This allows users to restore their files to a previous state. This enables them to roll back multiple files, thus limiting the impact of a ransomware attack without paying a ransom.
The recovery period can be up to a few weeks, giving users more time to react.
Ransomware attacks have increased in terms of scale and sophistication, where attackers aim to maximize damage to a synchronized environment. This update from Google, therefore, marks a move toward real-time recovery and not prevention.
This feature focuses on limiting the impact of a ransomware attack, a move that is being embraced in various cybersecurity systems.
Also Read: Makop Ransomware Puts India in Cybercrime Crosshairs
The protection currently works best through the desktop version of Drive and does not replace endpoint security tools. Users still need antivirus software and safe browsing practices to minimize risks.
The rollout marks a step forward, though experts view it as an additional layer rather than a complete safeguard.
