@Caute_cautim wrote:
Hi All
The Akira ransomware group is targeting small to medium-sized businesses (SMBs) - 80% of its victims, since March 2023, have been SMBs. According to Arctic Wolf, the groups ransom demand ranges between $200,000 USD to over $4 million USD.
If the organizations refuse to pay, the gang threatens to expose names and data. According to the same source, most intrusions leveraged compromise credentials to obtain initial access.
Akira is just one example of the growing security problem for SMBs. While breaches at enterprises may grab the headlines, 56% of SMBs had cyberattacks last year.
https://www.bleepingcomputer.com/news/BeBallPlayers/security/how-smbs-can-lower-their-risk-of-cyberattacks-and-data-breaches/
Regards
Caute_Cautim
Hello,
Cyberattacks and data breaches are serious threats to SMBs, as they can cause financial losses, reputational damage, legal liabilities, and operational disruptions. According to the web search results, there are some common steps that SMBs can take to lower their risk of cyberattacks and data breaches, such as:
Controlling who can access your network and data.
You should limit the access privileges of your employees, contractors, and vendors to only what they need to perform their tasks. You should also use strong passwords, multi-factor authentication, and encryption to protect your data from unauthorized access.
Having formal policies for use. You should establish and enforce clear policies for how your employees, contractors, and vendors should use your network and devices. You should also educate them on the best practices and the potential risks of cyberattacks and data breaches. You should also monitor and audit their compliance with your policies.
Using network firewalls with integrated security. You should install and update network firewalls that can block malicious traffic and prevent unauthorized access to your network. You should also use firewalls that have integrated security features, such as antivirus, anti-malware, anti-spam, and web filtering, to protect your network from various types of cyber threats.
Monitoring for unauthorized access. You should regularly scan your network and devices for any signs of unauthorized access, such as unusual activity, suspicious files, or unauthorized changes. You should also use tools that can alert you of any potential breaches or attacks in real time, so that you can respond quickly and effectively.
Backing up data regularly. You should backup your data frequently and securely, both on-site and off-site, to ensure that you can recover your data in case of a cyberattack or a data breach. You should also test your backups regularly to ensure that they are working properly and that you can restore your data when needed.
Creating plans for responding and recovering from attacks.
You should have a plan for how to respond and recover from a cyberattack or a data breach, including who is responsible, what actions to take, and how to communicate with your stakeholders. You should also review and update your plan regularly to reflect the changing threat landscape and your business needs.
These are some of the ways that SMBs can lower their risk of cyberattacks and data breaches.
I hope the information may helps you.
Best regards,
Latonyadodson
