Igennem rådgivning af mere end 200 små og store danske virksomheder har ADmires sikkerhedskonsulenter samlet en bruttoliste af de 9 typiske elementer i en virksomheds sikkerhedsstack, som man overser, eller negligerer, som gør det nemmere for de IT-kriminelle at gennemføre et Ransomware angreb.
Nedenfor har vi samlet et kort overblik over de forskellige elementer. Hvis du ønsker at dykke endnu mere ned i de forskellige elementer, der skal til for at holde de IT-kriminelle for døren, kan du downloade en kort rapport, der samler ’best practice’ til jeres IT-sikkerhed.
Det er en rigtig god idé, at så få som muligt har lokale administrator rettigheder for at holde hackerne for døren.
Det er vigtigt at brugerne skal godkende med 2FA, f.eks. ved at blive promted med en SMS, når de skal åbne deres email på en ny PC eller lignende.
Patching er en vigtig del af virksomhedens værktøjer mod de IT-kriminelle, og det er derfor ekstremt vigtigt, at der bliver fokuseret på at sikkerhedsopdatere tredjepartssoftware som f.eks. Chrome og Adobe.
Vi oplever ofte, at folk glemmer at Microsoft ikke yder backup af deres O365 miljø – og derfor vil ens sharepoint, exchange, onedrive være i risiko for at blive mistet i forbindelse med et ransomware angreb.
Hvis uheldet er ude, og i er ramt af Ransomware, er der så etableret en fast procedure for at genetablere driften?
Det er vigtigt, at I har systemer, der alarmerer IT-afdelingen, hvis en brugers PC ændrer adfærd. F.eks. benyttes powershell til dump af user credentials.
Sårbarheder på internetvendte services, bliver indekseret og scannet af kriminelle, hvorfor det er vigtigt at I løbende foretager sårbarhedsscanninger.
Hvis det ikke er strengt nødvendigt for en bruger at have adgang, bør brugeren ikke have adgang. Det er grundstenen i “Least-privilege”-princippet.
Hver gang der kommer en IOC (Indicator of compromise), bør der være en procedure, der sikrer en struktureret gennemgang.
Vi stiller vores IT-sikkerhedsrådgivere til rådighed for en første samtale á ca. 60 min. varighed, hvor du har mulighed for at få rådgivning og vejledning i forhold til dine nuværende løsninger.
Dette giver også indikation af, hvordan du er sikret mod de nuværende trusler, der truer danske virksomheder.
Fakta om udviklingen fra MDM over EMM til UEM We may request cookies to be set on your device. We use cookies to let us know when you visit our websites, how you interact with us, to enrich your user experience, and to customize your relationship with our website.
Click on the different category headings to find out more. You can also change some of your preferences. Note that blocking some types of cookies may impact your experience on our websites and the services we are able to offer.
These cookies are strictly necessary to provide you with services available through our website and to use some of its features.
Because these cookies are strictly necessary to deliver the website, refuseing them will have impact how our site functions. You always can block or delete cookies by changing your browser settings and force blocking all cookies on this website. But this will always prompt you to accept/refuse cookies when revisiting our site.
We fully respect if you want to refuse cookies but to avoid asking you again and again kindly allow us to store a cookie for that. You are free to opt out any time or opt in for other cookies to get a better experience. If you refuse cookies we will remove all set cookies in our domain.
We provide you with a list of stored cookies on your computer in our domain so you can check what we stored. Due to security reasons we are not able to show or modify cookies from other domains. You can check these in your browser security settings.
These cookies collect information that is used either in aggregate form to help us understand how our website is being used or how effective our marketing campaigns are, or to help us customize our website and application for you in order to enhance your experience.
If you do not want that we track your visit to our site you can disable tracking in your browser here:
We also use different external services like Google Webfonts, Google Maps, and external Video providers. Since these providers may collect personal data like your IP address we allow you to block them here. Please be aware that this might heavily reduce the functionality and appearance of our site. Changes will take effect once you reload the page.
Google Webfont Settings:
Google Map Settings:
Google reCaptcha Settings:
Vimeo and Youtube video embeds:
The following cookies are also needed - You can choose if you want to allow them:
You can read about our cookies and privacy settings in detail on our Privacy Policy Page.