- Participate in security awareness training to help better understand cyber threats, provide a strong line of defense, and identify red flags in potentially malicious communications.
- Use strong, unique passwords and enable MFA where available, choosing authentication apps or hardware tokens over SMS text-based codes.
- Keep systems up to date and apply patches after appropriate testing.
- Utilize network segmentation to isolate valuable assets and help prevent the spread of ransomware and malware.
- Enforce the Principle of Least Privilege, disable unused ports and services, and use web application firewalls (WAFs).
- Maintain robust and up-to-date endpoint detection tools on every endpoint.
- Consider leveraging behavior-based detection tools rather than signature-based tools.
- Encrypt sensitive data at rest and in transit.
- Establish a comprehensive data backup plan that includes performing scheduled backups regularly, keeping an updated copy offline in a separate and secure location, and testing regularly.
- Create and test continuity of operations plans (COOPs) and incident response plans.
- Review the Ransomware: Risk Mitigation Strategies NJCCIC Technical Guide for further recommendations.
- Employ tools such as haveibeenpwned.com to determine if your PII has been exposed via a public data breach.
- Review the Identity Theft and Compromised PII NJCCIC Informational Report if your PII has been compromised.
- Report ransomware and other malicious cyber activity to the FBI's IC3 and the NJCCIC.
