CIS170 WK4 Assignment PDF

Preview

Summary

Assignment on Ransomware...

Description

Summer Ledbetter CIS170-065-1212 Ransomware Attack Checklist 02/03/2021

1. List and briefly describe the technological items to help your city prepare to withstand ransomware attacks.  Update your software: Those who want to use a ransomware attack, more times than most they attack out of date software and operating systems.  Anti-virus/Anti-malware software: If using a strong one, this can be the top defense against these attacks. Adsero Security says, “Make sure the automatic definition updates are enabled and that the machine is being protected with real-time protection or with daily scans.” (2, Security, 2021).  You should have firewalls set up, backed up data on a separate server.

1

2. List and briefly describe the personnel items to help your city prepare to withstand ransomware attacks.  Disaster Recovery Plan: According to, Adsero Security, having a disaster recovery plan can help avoid paying the ransom. Which once the attack is in motion, the chances of you having to pay the ransom, go up significantly. “A good rule of thumb is the 3-2-1 backup rule.” This includes having 3 copies, 2 of separate storage locations, and one should someplace else of the official property. (2, Security, 2021)  Patching Systems: Using an effective patching system can disable unneeded services and send out defenses to detect ransomware attacks. (3, Infosec) A patching system is aimed to help keep your systems up to. Date and bring attention to any security risks.

3. List and briefly explain the training requirements to help your city prepare to withstand ransomware attacks.  Training is extremely important to help a company or city withstand a ransomware attack. Without, training all people involved will be clueless on how to prevent it, or fight it.  Yearly or better yet, quarterly training meetings can help. Train all employees on how to keep their systems up to date, get the right anti-virus or malware systems. Make sure their systems are as secure as possible by teaching them the steps involved. Train them on the correct measures to avoid this attack. Train them on how to use the 3-2-1 system suggested in an earlier section. What and how to use

2

patching systems. How to recognize what is happening faster.

4. List and briefly describe the items you will do to mitigate the damage that already took place.  First step is getting the malware removed from your systems, if you have everything backed up properly, or on a separate system or server. Then the best option would be to start fresh and wipe the systems clear.  Report the incident to the authorities.  Time to set up anti-malware, firewalls, make sure all servers all secure and backed up on a separate server.  Recover all files, emails, and anything else you have backed up.  Provide more training with more in-depth details and materials.

5. Use at least three quality references for this assignment. Note: Wikipedia and similar websites do not qualify as quality resources. Reference 1: technical-document-ransomware-prevention-and-response.pdf | Department of Justice. (n.d.). Www.Justice.Gov/Criminal. https://www.justice.gov/criminalccips/file/872771

Reference 2: Security, A. (2021, January 8). How to Prevent Ransomware Attacks in Your City. Adsero Security. https://www.adserosecurity.com/security-learning-center/how-toprevent-ransomware-attacks-municipal-city-networks/

3

Reference 3: How to prepare for a ransomware attack. (2020, October 16). Infosec Resources. https://resources.infosecinstitute.com/topic/how-to-prepare-for-aransomware-attack/

Reference 4: C. (2021, January 22). Recover from a ransomware attack - Office 365. Microsoft Docs. https://docs.microsoft.com/en-us/microsoft-365/security/office-365security/recover-from-ransomware?view=o365-worldwide

4...