WannaCry has effectively died down according to Wikipedia < https://en.wikipedia.org/wiki/WannaCry_ransomware_attack>. However, if you do not WannaCry about some other malware, take some preventive actions now to make your systems less vulnerable to future attacks. If it is not easy to attack you or your computer systems, in most cases a thief will look for an easier target.
Organizations
- Keep system and application versions up to date and patched, especially critical patches
- If the organization still has to run computers running XP (or older operating systems), get them off the network
- Keep antivirus software current and scan daily
- Make regular, consistent backups (and test them to ensure files are recoverable)
- Create network zones
- Place public-facing web servers in DMZs
- Restrict administrator rights
- Change default passwords and enforce password rules on users
- Train users in security awareness, especially how to avoid clicking harmful links
- Take infected machines off the network and clean them up as soon as possible, so that the infection does not spread to other machines on the network
These actions alone will stop a considerable amount of malware and other attacks. They do not require expensive equipment or software, just the time to set them up. And these practices will help any organization better comply with regulatory requirements.
For instance, Microsoft came out with a critically rated security patch for Microsoft Windows SMB Server on March 14, 2017. This patch would have made Windows systems resistant to WannaCry. The WannaCry attack started on Friday, May 12, 2017, almost two months later. While I understand the need to test patches to ensure they will work in an environment, testing for a couple of weeks should be adequate, especially for critical updates.
Individual systems
Many of the same actions will keep your systems safe:
- Keep system and application versions up to date and patched; in fact, set updates to run automatically and schedule them for a convenient time frame
- If you are running an older operating system such as XP, take it off the Internet
- Uninstall applications that you no longer use from both your phones and computers
- Keep antivirus software current and scan daily
- Make regular, consistent backups (and test them to make sure files are recoverable)
- Do not run with administrator rights
- Change default passwords on routers and modems, and choose long, strong passwords for all your accounts
- Do not click harmful links in email, on Facebook, or other websites
Prevention is the key for physical theft also.
Our neighborhood has been experiencing a recent rash of car break-ins and theft of items on porches. Many of these thefts happened when someone forgot to lock their car.
Be a little paranoid! Assume that someone is always watching you. For instance, you might not realize the dog walker walking by your house was watching you put a computer case in the trunk or that the 16 year old who lives next to you tries car doors at one am because he is bored or has a drug problem. Leaving a laptop in the car is not ever a good idea, but if you have to leave valuables in your car, put them in your trunk before you get to your destination. Lock your house and car as soon as you shut the door. Do not leave extra keys on your property or stashed on the car. Do not leave the garage door opener in the car. When you are working on that report in a coffeehouse, take your laptop, phone, keys, and wallet with you when you go to the restroom. Do not leave your purse or phone in a grocery cart when you turn around to pick out items for dinner.
Intentional Privacy 