Are You Protected from Ransomware
There have been many organizations that have become victims of ransomware over the years. Occasionally we hear about some high-profile cases in the news. Most every case I’ve read about could have been easily prevented, while a few were much more sophisticated in nature.
What are some steps that you or your organization can take to protect against this threat?
- Strict authentication and access controls.
- Patching and staying up to date with SQL Server and the Operating System.
- Reduce your SQL Server surface area. – Only install the components you need and use. If you aren’t using SSRS, SSIS, SSAS, etc, don’t install them on the server. Go with a minimalist approach.
- Lock down network access to SQL Servers, only allow access as needed, if you don’t need to speak directly to the SQL Server, then you shouldn’t have it.
- Are you using backup encryption? Who has access to your database backup files? Always have a secure backup strategy.
- Educate everyone on security best practices. Don’t open attachments from people you don’t know, don’t click on links from phishy looking emails, report phishing attempts to information security. One of the top ways that corporations are breached is from employees getting computers infected with malware from clicking links or attachments. Education is key!
- Vulnerability scans – many organizations have vulnerability scanning in place. Even smaller shops should not skip this very important step. Patching the OS and SQL is not enough, there are tons of add-on components that can also have vulnerabilities that you might otherwise miss.
- Penetration test – hiring a third-party company to test your security protocols is always a good idea and for many organizations, it is a requirement for compliance.
Leave a Reply