#GartnerSEC: How Midsized Enterprises Can Recover from Ransomware

Sep 17, 2020 10:00 am Cyber Security 182

#GartnerSEC: How Midsized Enterprises Can Recover from Ransomware

A ransomware attack need not be tragic for midsized enterprises.





That is according to Paul Furtado, senior director, midsized enterprise security at Gartner, speaking  at the Gartner Security and Risk Virtual Summit. He said a midsized enterprise is defined as a company with up to 1001 employees, with revenues of $50m to $1bn. Furtado said these businesses typically have an IT budget of less than $20m, and under three people working in IT with no cybersecurity leader.





Furtado explained the issue of ransomware is continuing to be a problem as costs go up, and ransomware can sit dormant on your network for around three days and often executes outside of working hours. In terms of what businesses can do, Furtado said ransomware can be handled in the same way as malware, as it comes into the network in the same way, propagates in the same “and we can defend against it in the same way.”





Looking at steps for ransomware response, Furtado recommended the following:





Isolate the System(s) – Unplug but do not power it down, as you may need the device, but make sure it cannot connect to other devices on the network
Identify Port of Entry – Identify how it got in, and close that method, so it is not moving around
Prepare a New Device From Image – Do a restore from a gold standard image, you don’t want to risk something sitting on the system that you may miss
Scan Backups to Ensure No Infection – Scan backups so ransomware is not part of the backup set
Restore Files to a Time Prior to Infection
Investi ..

Support the originator by clicking the read the rest link below.
gartnersec midsized enterprises recover ransomware
Read The Rest from the original source
infosecurity-magazine.com

Related News

Be in Touch

All Rights Reserved #1 Source for Cyber Security News, Reports and Threat Intelligence
Powered By The Internet!!!!