Did you know ransomware attacks continued in 2022, up more than 20% since 2020? Attackers introduced more pain by encrypting data and stealing it to extort more. Cybercriminal enterprises developed ransomware kits, encouraging more ransomware attacks.
These attackers aren’t only after the big fish. Small and medium business attacks quadrupled in the last few years. The costs for a smaller business can be immense, lost time, money, and possibly customers.
How can a small business defend against an attack? According to the Institute for Security and Technology (IST) report, Blueprint for Ransomware Defense, several actions will help protect your business.
First up is identifying what’s on your network by inventorying and keeping the records up to date. That includes assets, software, data, and accounts. Make sure all your widely used software is supported.
To protect what’s on your network, ensure a secure infrastructure configuration procedure and bulletproof process for granting and revoking access. Set up a vigilance program around security and keep revisiting it. It should include training all employees on the latest phishing scams and using strong passwords.
Use multi-factor authentication or MFA for remote access, applications with external access, and administrator access. Dormant accounts are a liability. Nix them. Update your anti-malware software frequently.
Tracking incidents and assigning specific employees to manage them is essential. An audit log management system can alert you to unusual goings on within your network. Your cloud provider may offer this service. It’s a good idea to take advantage of it or find a provider.
Author: Kris Keppeler, a writer who finds technology fascinating and loves humor. She writes on Medium.com, Channillo, and Women of Wisdom. Award-winning podcast producer who enjoys telling funny stories. Follow her @KrisKKAria on Twitter or on LinkedIn.