Ransomware: What To Do If You Don’t Have a Plan

Ransomware: What To Do If You Don’t Have a Plan

Posted May 18, 2021

Ransomware: What To Do If You Don’t Have a Plan

  • Nothing vaults ransomware into the IT discussion like a $5 million payout accompanied by a crippling gas shortage and $7-per-gallon gas gouging.
  • Here’s a checklist on what to do and plan:
    • Enforce MFA
    • Stop with the common password issue
    • Use authentication…correctly
    • Protect Identities
    • Get a privileged access baseline in place
    • Make a list of mission-critical apps
    • Update/replace out of date OSes
    • Patches/Updates
    • Stop recycling service accounts
    • End user accounts shouldn’t be used as admin accounts
    • Server admin account should not have admin rights on workstation
    • Produce a clear line of leadership
    • Create a risk assessment of your recourses
    • Inventory resources and assessments
    • Organize an incident event log

– Dave Ramel | May 18, 2021