Page 63 - Cyber Defense eMagazine June 2020 Edition
P. 63
With all of this doom and gloom from ransomware, is there anything we can do? Luckily, the security
basics still apply. Layered security is still important. Companies should secure their gateways with next-
gen antivirus, intrusion prevention, DNS and URL filtering, and deep packet inspection. Credentials
should be secured with multifactor authentication and endpoints should have up to date EPP and EDR
solutions and be fully patched. To address ransomware directly, EPP or EDR solutions should have
capabilities targeted at preventing ransomware, and organizations should also back up their critical files
frequent. Lastly, the scare of having your data actually stolen, while nothing new, should be addresses.
An old but effective solution, if you have the infrastructure to support it, is Data Loss Protection (DLP). If
you have gateway or endpoint security solutions that support DLP, you might consider activating them to
prevent your precious PII from being transmitted to the criminals.
About the Author
Ricardo Arroyo is the senior technical product manager and
ThreatSync guru at WatchGuard Technologies, where is
responsible for guiding the design and implementation of threat
detection and response. Following a 15-year career at the NSA,
where he worked as an analyst and cyber operator, Ricardo now
uses his extensive offensive cyber security experience to solve
complex security problems and develop the latest defenses for
small and midsized enterprises. Ricardo can be reached online at
https://www.linkedin.com/in/arroyoricardo/ and at our company
website http://www.watchguard.com/
Cyber Defense eMagazine –June 2020 Edition 63
Copyright © 2020, Cyber Defense Magazine. All rights reserved worldwide.
