Sophos Research Found That Ransomware Is Not Going Away

Date : 6-Aug-2020
Location: Kuala Lumpur


Sophos, a global leader in next-generation cybersecurity.

Key Takeaways:


Chester Wisniewski, principal research scientist, Sophos,said,ransomware is not going away and is growing in terms of sophistication. Human intelligence and response are critical security components to detect and neutralize early indicators that an attack is underway.  


Best Practices:

  • Shut down internet-facing remote desktop protocol (RDP) to deny cybercriminals access to networks
  • If you need access to RDP, put it behind a VPN connection.
  • Use layered security to prevent, protect and detect cyberattacks, including endpoint detection and response (EDR) capabilities and managed response teams who watch networks 24/7
  • Be aware of the five early indicators an attacker is present to stop ransomware attacks.

Editor's comments:

  • RDP cannot be totally disabled, otherwise,remote workforce couldn't happen. RDP should be restricted to internal network and administrators only.
  • Apps must be adopt cloud as first priority,leveraging on best practice such as token-based authentication instead of session-based authentication which consists of login and password.