Ransomware Prevention – The Economic Times


27% of malware incidents reported in 2020 can be attributed to ransomware. Ransomware – cyber extortion that occurs when malicious software infiltrates computer systems and encrypts data, holding it hostage until the victim pays a ransom – can have a bigger impact on an organisation than a data breach. The likelihood of ransomware attacks can be reduced using a mitigation plan covering these actions:

Conduct risk assessments and penetration tests to determine the attack surface and current state of security resilience and preparedness in terms of tools, processes and skills.

Establish processes and compliance procedures that involve key decision makers in the organisation, even before preparing for the technical response to a ransomware attack.

Conduct frequent exercises and drills to ensure that systems are always able to detect ransomware attacks. Back up not only the data but also every non-standard application and its supporting IT infrastructure. Maintain frequent and reliable backup and recovery capabilities. If online backups are used, ensure they cannot become encrypted by ransomware.

Restrict permissions and deny unauthorised access to devices. Remove local administrator rights from end users and block application installation by standard users, replacing this with a centrally managed software distribution facility.

Research government and regional authorities that have provided guidelines on how organisations can fortify their IT infrastructure against ransomware.

From ‘6 Ways to Defend Against a Ransomware Attack’, Gartner



Source link