How Organizations can Protect Themselves from RaaS Attacks

Share post:

In its Cyber Signals Report of August 2022, entitled Extortion Economics, Microsoft outlines steps that organizations can take to protect their systems from Ransomware-as-a-service attacks. As ready-made RaaS kits are available, launching an attack no longer requires technical know-how and organizations must prepare for possible attacks.

Security measures that organizations can take include preventing initial access, segmenting networks, auditing account credentials, reducing the attack surface, enforcing multi-factor authentication, checking for blind spots in security, hardening internet facing assets, hardening cloud assets, and updating systems.

While it is important for organizations to manage macros and scripts, it is also vital that they segment networks based on account privileges in order to prevent lateral movements by attackers.

Organizations are recommended to review the exposure of account credentials and ensure that their staff and security services work together to reduce the level of administrative privilege and understand where they are most at risk.

There is also the need to establish rules to reduce the attack surface used in ransomware incidents.

The sources for this piece include an article in TechRepublic.


Related articles

London hospitals cancel over 800 operations after ransomware attack

NHS England disclosed today that a recent ransomware attack on Synnovis has led to the cancellation of hundreds...

Microsoft cancels universal Recall release in favor of Windows Insider preview

Microsoft has decided to cancel the wide release of Recall, the controversial tool for Copilot+ PCs, and instead...

Cyber Security Today, Week in Review for week ending Friday, June 14, 2024

Welcome to Cyber Security Today. This is the Week in Review for the week ending Friday, June 14th,...

Cyber Security Today, June 14, 2024 – Employee downloaded a file that led to hospital chain’s ransomware attack

An employee downloaded a file that led to hospital chain's ransomware attack Welcome to Cyber Security Today. It's Friday...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways