Tips to Reduce Ransomware Risk and More…

 

 

In this post we share tips to protect you from malware, Harris County’s new Covid-10 juror procedure video, the new Zoom language interpretation service, and a web page showing how Covid-19 aerosol dispersion works.

 

---

 

First, because our court and technology friends have suffered ransomware in the recent past, I am sharing the following from Brian Krebs On Security ( https://krebsonsecurity.com/ ) blog tips regarding ransomware.  I don’t think he will mind me repeating them below as it is easy for me to fully endorse subscribing to his newsletter to keep up on the latest threats and news?

 "Here are a few tips that can help reduce the likelihood that you or your organization will fall victim to a ransomware attack: 

-Patch, early and often: Many ransomware attacks leverage known security flaws in servers and desktops. 

-Disable RDP: Short for Remote Desktop Protocol, this feature of Windows allows a system to be remotely administered over the Internet. A ridiculous number of businesses — particularly healthcare providers — get hit with ransomware because they leave RDP open to the Internet and secured with easy-to-guess passwords. And there are a number of criminal services that sell access to brute-forced RDP installations. 

-Filter all email: Invest in security systems that can block executable files at the email gateway. 

-Isolate mission-critical systems and data: This can be harder than it sounds. It may be worth hiring a competent security firm to make sure this is done right. 

-Backup key files and databases: Bear in mind that ransomware can encrypt any network or cloud-based files or folders that are mapped and have been assigned a drive letter. Backing up to a secondary system that is not assigned a drive letter or is disconnected when it’s not backing up data is key. The old “3-2-1” backup rule comes into play here: Wherever possible, keep three backups of your data, on two different storage types, with at least one backup offsite. (Editor's note - this is the approach I have used for many years) 

-Disable macros in Microsoft Office: Block external content in Office files. Educate users that ransomware very often succeeds only when a user opens Office file attachment sent via email and manually enables Macros. 

-Enable controlled folder access: Create rules to disallow the running of executable files in Windows from local user profile folders (App Data, Local App Data, Program Data, Temp, etc.)"

 To add to those listed above, there are similar plus a couple others from Norton Security at:  https://us.norton.com/internetsecurity-malware-7-tips-to-prevent-ransomware.htm

 Last, we have found that Microsoft Azure Security Center for the cloud has been a great help in our projects.  It provides all manner of tips and settings to secure one’s cloud environment.  Read more at https://azure.microsoft.com/en-us/services/security-center/#security

 

Covid-19 Juror Procedure Video Guide

Harris County, Houston Texas has a terrific video they produced showing how their Covid-19 procedures work for jurors using their local basketball arena for the selection process. See it online at http://www.harriscountyjuryservice.com/video-guide/

Zoom Language Interpretation

Next, we learned that the NCSC has acquired the Language Interpretation option for Zoom Meetings and Webinars.  For more including a video introduction. Check it out at https://support.zoom.us/hc/en-us/articles/360034919791-Language-interpretation-in-meetings-and-webinars

Spain’s El Pais Newspaper Shows how Covid-19 Aerosol Transmission Works

See https://english.elpais.com/society/2020-10-28/a-room-a-bar-and-a-class-how-the-coronavirus-is-spread-through-the-air.html

Be safe out there.