Originally published in 2016
Quote from article
Cybersecurity experts say hospitals and other organizations that have fallen victim are not immune to future ransomware attacks.
“‘What are the chances of this happening again?’ should be high on the list of concerns,” said Daniel Lance with Archer Security Group.
“Anytime you go from zero-defense architecture to active defense, you will be tempted to overlook the basic problems that got you in trouble in the first place,” he added.
Smith recommends not just backups, but also a close look at who has access to what.
“Ransomware is only able to encrypt data it has access to, so it’s important to have a clear understanding of which employees have access to the organization’s critical data,” he said.
“Attack vectors such as ransomware make a clear justification of the principle of ‘least privilege,’ giving employees the minimum amount of access required to complete their jobs,” said Smith.