-
Latin America
-
Central & Eastern Europe
-
Middle East & Africa
-
Asia
Cybersecurity actions you can’t delay
Since October 2022 Softline has been operating under the brand name Noventiq.
Moving business transactions and operations online gave enormous flexibility and countless opportunities to many companies. However, it ultimately came with increased exposure to cyberthreats, and this aspect cannot be overlooked even for a day.
The benefits of security measures spread far beyond protecting data. Nowadays, it can mean the survival of any organization after a security incident. Microsoft identified three levels of actions based on urgency that are indispensable in a cybersecurity plan.
Phase one: immediate actions
Procedures that should be implemented within the next 24 to 48 hours in any company. Steps include enabling multifactor authentication, defining emergency access accounts, patching systems with known exploited vulnerabilities and ensuring that all the alerts sent by cloud provider and national CERT (Computer Emergency Response Team) are acted upon.
Phase two: extended action plan
Once your company has implemented the measures above, over the following days, focus on other actions to further reduce security risks. Steps include raising the awareness of your employees, randomizing the local admin passwords, securing and managing systems with up-to-date patching, implementing antimalware and workload protection tools, increasing monitoring and preparing your databases for Disaster Recovery.
Phase three: security in the long term
Important measures that should be investigated and prioritized according to your company’s assessment. The list contains advanced protection against phishing attacks, applying least privilege access, using endpoint/server-based technology to reduce the attack surface. Verifying your cyber incident response plans and ensuring your Business Continuity Plans are up to date are also crucial.
The power of tailor-made solutions
The main steps might be similar for any company, but the level of cyber maturity and readiness often requires different approaches. That’s why it’s worth examining where your organization is starting with a thorough assessment. Then it should be followed by determining the exact steps required specially for your company. To understand the challenges of your business environment, in-depth knowledge and industry experience is required.
Contact us so we can support you with proven solutions and tailor-made services in cybersecurity.
OSOBNO SAVJETOVANJE
-
31.10.2023The target of cyberattacks compromising business emails - Microsoft Cyber Signal Report summary -
11.10.2023Proactive Security with the Help of Zero Trust -
05.10.2023Securing the Modern Attack Surface: Safeguarding Six Critical Organizational Domains -
08.12.2021Obrambena područja sigurnosnog modela nultog povjerenja (Zero Trust)
In recent years, the alarming surge in email scams has been fueled by the emergence of malicious email campaign platforms, such as BulletProftLink, causing significant damage and financial loss. The threat landscape continues to evolve, with cybercriminals harnessing new technologies, including utilising localised IP addresses. In this article, we summarize the findings of the Microsoft Cyber Signal Report, shedding light on the escalating cyberattacks compromising business emails and exploring strategies to combat email fraud.
The Zero Trust framework helps businesses modernize their security technologies and processes effectively, maximizing protection against the current threat landscape. In the following summary, we focus on the first two pillars of the Zero Trust framework, identities and endpoints—and provide hands-on guidance on how to keep them secure.
In the era of digital transformation and the rise of hybrid work models, cybersecurity's significance has surged. With cybercriminals evolving and exploiting every vulnerability, organizations must prioritize security. According to Microsoft, 98% of cyberattacks can be prevented by an adequately defended system. Read the summary of a Microsoft article which explores six core domains demanding attention: email, identity, endpoint, Internet of Things (IoT), cloud, external.
Identitet, krajnje točke, aplikacije, mreža, infrastruktura i podaci važne su poveznice u cjelokupnom lancu sigurnosnog modela nultog povjerenja (Zero Trust). Microsoft podržava sigurnost nultog povjerenja (Zero Trust) kroz višestruke slojeve obrane. Pogledajte šest sigurnosnih slojeva modela nultog povjerenja (Zero Trust) i kako ih obraniti.
