Page 41 - Cyber Defense eMagazine - November 2017
P. 41
Prevention tips:
Educate your users – Schedule a meeting to discuss what threats look like, and what to avoid.
How to store passwords and media. How to disconnect their machine safely from the network
and who to contact if infected.
Scanning and filtering – Antispam/anti-phishing in place. Filter file attachments in email (.ece,
.scr, .com, etc.). Show file name extensions in Windows, and disable macros (MS Office).
Patch early and patch often – Ensure that all server and workstation operating system are up
to date with regular patch maintenance.
Configure intrusion prevention – Business grade antivirus and firewall protection, with
advanced filtering, centrally managed with alerting capability.
Test your backup solution – Ensure that you have the ability to restore in the event that
prevention methods fail. Follow the 3-2-1 backup rule (3 backups, 2 different types of media, 1
offsite). Test restorability monthly.
With a cold, you can take every preventative measure in the world, and it can still get the better
of you.
The same goes for ransomware. These attackers are continually changing their techniques and
their code evolving to be smarter and trickier. All it takes is one person letting their guard down
to create a break in your cyber defense security chain.
So if you do get hit with ransomware – follow these steps:
• Immediately disconnect infected systems from the network
• Disconnect from the internet until situation is resolved
• Lock the source user accounts / Delete profile
• Identify source of infection to warn other users
For a healthier winter season, be sure to take your vitamin C and talk to your system
administrator about implementing a ransomware prevention checklist that your organization can
live by. Here’s to you and your critical corporate data’s health… Gesundheit!
About the Author
Mike Andrews (https://www.linkedin.com/in/mikeandrews), is a 20-year
veteran of the data-protection and security software industry and
serves as Managing Director of NovaStor Corporation. NovaStor®
(http://www.novastor.com) represents “Backup for the Rest of Us” by
empowering overwhelmed and underfunded IT administrator’s with all-
inclusive, fast, highly scalable, budget sensitive data backup solutions
for both physical and virtual environments. NovaStor’s disruptive
approach redefines service by including personalized local, expert level
professional services as part of every solution - helping ease the
enormous expectation being placed on maintaining a working,
compliant backup under even the strictest of budgets.
41 Cyber Defense eMagazine – November 2017 Edition
Copyright © 2017, Cyber Defense Magazine, All rights reserved worldwide.