Shulou(Shulou.com)06/03 Report--

These 10 things can protect you and your organization from blackmail software.

Develop a backup and recovery plan. Back up your system frequently and store backup files offline to stand-alone devices.

Using professional email and web security tools, you can analyze email attachments, web pages, or files for malware and isolate potentially destructive advertising and social media sites that have no business relevance. These tools should have sandboxie functions so that new or unrecognized files can be executed and analyzed in a secure environment.

Keep patching and updating operating systems, devices, and software.

Make sure that your device and network anti-virus, * protection systems, and anti-malware tools have been upgraded to the latest version.

Where possible, use the application whitelist to prevent illegal applications from downloading or running.

Isolate your network to a safe zone to ensure that infection in one area does not easily spread to other areas.

Establish and implement a system of privileges and privileges that make it possible for a very small number of users to infect critical applications, data, or services.

Establish and implement BYOD security policies, check and isolate devices that do not meet security standards (no clients or anti-malware are installed, antivirus files are out of date, operating systems require critical patches, etc.).

Deploy identification and analysis tools to confirm after *: a) where the infection comes from; b) how long the infection has been lurking in your environment; c) you have removed the infected files from all devices; d) you can ensure that the infected files will not be returned.

The point is: don't count on your employees to keep you safe. It is also important to strengthen user awareness training by warning employees not to download files, click on email attachments, or click on web links from unknown sources; people are the weakest link in the security chain and need to be planned around them.

This is why it is easy to be poisoned: second, because for many of your employees, clicking on the attachment and doing a web search is part of their job. It is difficult to maintain a moderate level of skepticism. Second, fishing is very effective. Targeted fishing methods are customized using things like online data and social media files. Third, it is only human nature to click on unexpected invoices or important information from banks. Finally, many surveys show that users believe that security is the responsibility of others and has nothing to do with them.

Conclusion

Ransomware is nothing new. But its recent methods are more sophisticated and its mode of communication is more covert, indicating that it is more and more inclined to exploit individuals and units running online in unexpected new ways.

More than ever before, security is not some kind of work added to your business. Security and business operation are a whole. Make sure your partner is a security expert and understands that security is more than just a device. Security is a highly integrated and collaborative technology system, which combines effective strategies with preparation, protection, detection, response, and learning methods throughout the life cycle.

Security solutions need to share threat intelligence in order to effectively detect and respond to threats in your distributed environment. Security measures need to be integrated into your network structure to provide seamless protection for the evolution and expansion of your network environment. Security measures must be able to dynamically adapt to newly discovered threats. And security measures must not interfere with your business activities and ways of doing business.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.