The HSE Data Breach:
What it teaches all of us
Siliconrepublic recently reported additional information about the recent HSE data breach. As part of the article, they ask: “Should other organisations be on alert for similar attacks? In a word, yes. The NCSC issued an advisory on the HSE cyber-attack, which offers guidance for other organisations to detect and prevent a similar attack.”
While it is alleged that the HSE’s IT system was underfunded, and while that system is apparently composed of over 20 separate systems that have been cobbled together over the years, perhaps offering weak links in its defensive armour, the successful Ransomware infiltration points out a simple fact: any organisation is vulnerable to concerted criminal attack. The HSE data breach reflects the growing danger which Ransomware and similar criminal activity poses to all businesses across Ireland and the world. No one wants to suffer as the HSE, its staff, and patients have suffered.
So what do you do to stop it?
All it takes is a single click of a mouse on an unassuming email link to shut down your organisation’s IT systems. IT systems security professionals offer many steps and techniques to defend against malware intrusion. Some of the basics include:
- Make all staff aware of the ongoing threat; of how Ransomware works; of how it gains entry. Block access to ‘foreign’ websites. Innocuous advertisements may contain the Malware. Remind your staff: “Always keep your guard up. Remember, it only takes one click…”
- Update older versions of Windows 7, Server 2008 R2, & Small Business Server 2011 immediately. These are no longer supported by Microsoft and provide an easy point of entry for criminal perpetrators
- Develop a business continuity plan, including backup and disaster recovery, now not later.
- Deploy reliable anti-virus software on ALL devices. Due to remote working, off-site employees may be accessing primary apps and data via laptops and other smart devices. Ensure that all devices, including employee devices, maintain up-to-date anti-virus software. Deploy 2-Factor Authentication
- Back up your data NOW. Ensure that any data backup is kept securely off-site and offline from your primary IT systems. Criminal gangs can quite easily infect backups should they be networked to those primary systems
As this article advises, these are only some of the steps organisations should take to protect data, applications, and infrastructure viability. Don’t lose the battle to these criminals. Take these steps now before it’s too late.
For more information
DB Computer Solutions offers a wide range of Backup and Recovery services. Contact us to learn more:
firstname.lastname@example.org 061 480980