Latest News
Cyber Signals: three strategies for protection against ransomware
Leading on from the ransomware attack on software supplier ‘Advanced’, Vasu Jakkal, Corporate Vice President for Security, Compliance, Identity, Management and Privacy at Microsoft Security, has written a blog on three strategies your organisation can follow to protect your environment from ransomware attacks.
The first strategy being to ‘prepare to defend and recover’, which involves organisations taking a zero trust approach, always fully authenticating, authorising, and encrypting every access request before granting access. This strategy also involves taking measures to secure your backups and protect your data.
Leading on from this, Vasu advises organisations to ‘protect identities from compromise’, which can be achieved by safeguarding network credentials and preventing the lateral movement used by attackers to evade detection, while moving through your organisation in search of assets to exfiltrate or destroy.
With the final strategy being to ‘prevent, detect, and respond to threats’ by understanding typical attack vectors, like remote access, email and collaboration, endpoints, and accounts, and taking steps to prevent attackers from getting in. And ensuring that along with outside-in protection you are also doing inside-out protection focused on data security, information protection, and insider risk management.
