Did you know that in the last 12 months alone 39% of UK businesses have spotted an attempt to breach their systems? And there will many more which are entirely unaware, given that networks have become so stretched over the pandemic. A scary thought.
Cybercrime is increasingly becoming a growing threat across Wales, with many smaller businesses seeing it as being a complicated or expensive risk to manage. And without the right help, that’s quite possibly true.
The Cyber Resilience Centre for Wales (WCRC) has been set up to help businesses and charities across the region avoid the average annual loss of over £8,000 suffered by organisations when taking a financial hit from a successful cyber-attack. The centre offers core membership is completely free of charge and includes a welcome pack with resources and tools that walk members through some really practical cyber security basics.
Two key areas of guidance from the National Cyber Security Centre (NCSC) on Ransomware
Backups are key in the fight against Ransomware. How will your organisation cope with losing all its files, how will you get back up and running?
The NCSC recommend using offline backups, this will enable a quick restoration of business functions. A safe backup means getting back to business quicker with less long-term impact. This will allow encrypted devices to be wiped and then restored.
Offline backups (cloud or disconnected physical media) are when the data can be protected from accidental or malicious deletion. If you lose access to your files due to ransomware, ensure you use a backup version that was completed prior to the attack.
To learn more about offline backups from the NCSC click here.
Does your organisation use the Remote Desktop Protocol (RDP)?
RDP as it is known is a way to access and control a computer over a network. In simple terms it means that users can operate their office desktop computer away from the office, and what many of us have relied upon whilst home working during the pandemic.
The NCSC is warning that the source of 50% of ransomware attacks are because of the RDP being compromised. It therefore advises to turn it off if you’re not using it.
How do you know if you if you have it? NCSC’s early warning service will help you know and provide other benefits.
If you have to use RDP the NCSC recommend that use Multi-Factor Authentication MFA Guidance. Also, put in place the principles of Privileged Access Management PAM Blog and make your passwords are unique.
Learn more here.