.jpg)
Agency (CISA), and Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory regarding the ransomware cybercriminal group, BianLian.
Three main takeaways, quoted directly from the report:
- Strictly limit the use of RDP and other remote desktop services.
- Disable command-line and scripting activities and permissions.
- Restrict usage of PowerShell and update Windows PowerShell or PowerShell Core to the latest version.
BianLian, who recently targeted Murfreesboro Medical Center and caused a prolonged total operational stop, is one of the most advanced ransomware groups known. In fact, the FBI has recently announced a $10M reward for the capture of BianLian's alleged leader.
As the frequency and gravity of cyberattacks continue to rise, it is more important than ever to audit and secure corporate infrastructures.
Here are some steps business owners and leaders can take within your own organizations to significantly reduce the likelihood of a breach:
- Ensure sensitive data and systems are adequately firewalled and only accessible by authorized personnel, systems, and vendors.
- Ensure the use of multi-factor authentication for all critical systems.
- Employ the Principle of Least Privilege.
- Require complex passwords with regular expiration dates - vendor passwords and accesses included.
- Ensure remote staff are properly trained on systems access and cybersecurity best practices.
- Provide your people with continuing cybersecurity education, especially as technology continues to rapidly evolve.
- Create and maintain a culture of security.
- Ensure all systems are fully patched and protected with a managed antivirus solution.
As always, please contact Scalable Business Technologies at any time for assistance.