“For decades, industries have traded security for convenience, efficiency, and productivity. And now we are paying the price for it.” – Tom Kirkham
In this episode, I interviewed Tom Kirkham, founder and CEO of IronTech Security and we talked about cybersecurity defense systems for engineers and how engineering firms can secure their businesses against ransomware attacks by establishing a security-first environment.
Here Are Some of the Key Points Discussed About How Engineering Firms Can Secure Their Businesses Against Ransomware Attacks:
- Antivirus software is not as effective anymore. High-end government software is available for download on the dark web and is being modified to be used against us daily. The greatest cyber defense that is available today is also available to all hackers. So, you can no longer rely on an antivirus signature file to detect a virus code. There is no virus to detect in a modern-day ransomware attack. It consists of a macro that calls the Windows disk encryption, which encrypts all the files. It means they bypass antivirus software undetected.
- Most ransomware attacks are for smaller amounts of money and are sent out in large numbers by automatic hacking attacks. It is done by large-scale automated bots and not hackers sitting behind their computers. Any security that you buy off the shelf is simply not good enough. You must have endpoint detection and response (EDR) that is backed up by infosec professionals constantly monitoring, responding, mediating, and mitigating threats.
- Cybersecurity does not form part of the IT department because they should be concentrating their efforts on increasing the firm’s productivity and efficiency, keeping them online, minimizing frustration, and help desk calls. A managed security services provider looks at what the risk is to the client and what technologies will be used against them. If you have a managed security provider that has a response time of four hours, then you are wasting your money. Four hours is an eternity when it comes to cybersecurity. Attacks must be dealt with immediately.
- Cybersecurity insurance underwriters require certain defense technologies to be in place or they will not underwrite your policy, or your premiums will be outrageously expensive.
- The Cyber Pandemic Survival Guide looks at the COVID pandemic and compares it to a pandemic cyberattack. COVID took months to spread across the world, where the cyberattack would spread through the entire world at almost the speed of light. The book is aimed at creating awareness that a pandemic cyberattack is real. It shows people how the smallest of incidents can escalate and spread over the world. If a pandemic cyberattack had to happen, it will make COVID look like a minor inconvenience.
5 Things You Must Do to Stop Ransomware Attacks
- Have a skilled security team monitoring, checking, and responding to threats.
- Multifactor authentication must be activated everywhere possible.
- Deploy an endpoint detection and response category of product that uses AI, or a neural network, to learn the behavior of existing and new technical threats, and responds within seconds to protect other computers around the world.
- Turn on disk encryption on all your devices.
- Have a way to stay up to date on new and evolving threats.