11.07.2019 We provide our top 10 tips to ensure your company is best protected from cyber attack.
- Patch, patch and patch. There are very few ‘true’ exploitable zero-day vulnerabilities out there. The majority of breaches are a direct result of poor patch discipline.
- Ensure Threat Prevention technologies (IPS, AV, APT, etc..) are set to prevent. If you do not trust your technology to block, then it’s time to find a new one!
- Migrate to a next-gen AV provider which enforces decisions based on machine-learning/AI and attack techniques. Traditional signature-based AV is no longer up to the job.
- Deploy a security technology stack which can be driven automatically and independently to achieve instant response/remediation.
- Don’t be bullied into enabling unsecure business processes; unvetted inbound access, unsecure communication protocols, domain admin group inclusion – to name a few.
- Deploy MFA. Now! Compromised credentials are still the most common vector. Weak passwords or password reuse is still definitely one of the biggest sins.
- Monitor all infrastructure for anomalies (24/7/365), but ensure you do not fall victim to event fatigue.
- Train your users! People are still the weakest link in the chain.
- Have regular red -team penetration tests, in fact they should be instructed as an ongoing engagement.
- Apply the same level of security controls to 3rd party suppliers and software – there is no such thing as a trusted partner.