Quote:
Originally Posted by 3rd_gear_Ted
it starts with external & internal firewall hardware with COTS (commercial off the shelf software)
It also takes constant internal system spyware to check for ransomware being built onto your network system backbone. The DoD does this, Corporations don't
BTW the US Navy was formed due to ransom attacks on US business in early 1800's.
In the end, they were paying the US Navy to quit pounding them
Obviously the Navy isn't the answer, but nobody world wide knows what to do in any political party. Politics neuters the logical response of collateral damage for retribution because....
|
Our users don't like it but everything here not on a whitelist gets opened in a sandbox first and analyzed and if deemed non-threatening it is allowed to run. We have a lot of false positives and have to manually whitelist them, but that doesn't bother me. It still isn't 100%, but it sure helps with due diligence should something happen.
We also do lots and lots of training, but that has gotten us from an 18% click thru rate before training to a 1.08% after.
The only way to be 100% sure you will never get hit is to turn off USB/Flash drives, optical drives, disk drives and unplug from the internet and turn the machine off.