- Use strong, unique passwords and enable MFA where available, choosing authentication apps or hardware tokens over SMS text-based codes.
- Apply the Principle of Least Privilege.
- Keep systems up to date and apply patches after appropriate testing.
- Install endpoint security solutions to help protect against malware. · Employ a comprehensive data backup plan.
- Utilize monitoring and detection solutions to identify suspicious login attempts and user behavior.
- Ensure operational technology (OT) environments are segmented from the information technology (IT) environments.
