Software@Scale implores companies to bolster cybersecurity. Medium and large businesses should adopt a multi-layered approach incorporating regular risk assessments, strong access controls (including MFA), data encryption, and continuous employee cybersecurity training and awareness.
Network security should include firewalls, IDS/IPS, and network segmentation, while endpoint security should utilise antivirus/anti-malware, EDR/XDR, and application whitelisting.
Additionally, penetration testing, incident response planning, and Security monitoring can enhance resiliency and uplift the maturity of cyber security within the organisation.
CEO, Louis Droguett says: “The recent exposure of the APT40 group highlights the growing threat of state-sponsored cyber attacks and the importance of public awareness.”
Louis advises companies to:
- Adopt a cybersecurity awareness program
- Embrace zero trust security
- Implement strong access control
- Follow strong patch management practises
- Enable security information and event management services
- Conduct regular penetration testing activity
Droguett adds: “The Apple warning about spyware attacks underscores the need for vigilance against sophisticated threats.”
To protect your business from ransomware attacks, Software@Scale suggests:
- Implement Endpoint Detection and Response service
- Regular software updates and patches
- Implement strong access control
- Adopt strong email and web filtering services
- Implement a mature security awareness program
- Implement cyber monitoring services
Louis concludes: “The ACSC report emphasises the sophistication of blended attacks and the need for traditional cybersecurity measures combined with strategies to address state-level threats.”
