Q1 is now in the rear-view mirror and April (and Easter!) is upon us. In this month’s newsletter we look at procedures to help defend against ransomware attacks and some useful reminders for laptop security whilst out of the office.
Defending against ransomware
Protecting against ransomware isn’t simply about installing anti-malware. Below we outline techniques to help prevent attacks as well as underscoring the importance of a rigorous back up process:
- Phishing-resistant sign-ins – enforce strong MFA across all accounts and eliminate legacy authentication methods that could weaken your security whilst implementing conditional access rules to flag new devices or unusual locations
- “Least privilege” and separation – only give accounts the access needed for their job and nothing more. Make sure admin privileges are separated from everyday user activity by only providing such access to specific people and devices that genuinely need it
- Close known holes – set clear patch guidelines to make sure critical vulnerabilities are addressed immediately. Prioritise internet-facing systems and remote access infrastructure and make sure 3rd party apps are covered
- Early detection – include endpoint monitoring to flag suspicious behaviour quickly and instigate clear rules for swift escalation and review
- Secure, tested back ups – backing up regularly is essential to ensuring your business can quickly get back on its feet should the worst happen. However, it’s vital to ensure that these back ups are secure and inaccessible by attackers. Remember the 3-2-1 rule and make sure at least one back up copy is isolated from the main environment, run restore drills regularly and make sure you have defined recovery priorities in terms of what is restored first and then what follows
Securing company laptops at home
With hybrid and remote working now firmly part of many of our lives, when your laptop is at home, it can be easy to forget security basics. The following checklist provides guidance to help ensure confidentiality and cyber security:
- Lock the screen every time you step away
- Store work laptops securely when not in use
- Never share work laptops with family members or guests
- Use strong sign-ins and MFA on work accounts – make sure no exceptions for admins
- Ensure software patches are swiftly installed by enabling automatic updates and restart whenever prompted
- Keep your home Wi-Fi router up to date (or ensure it is managed by your ISP)
- Keep security tools switched on such as firewall and endpoint protection
- Keep work data in approved work storage, not your personal cloud
