The Recon InfoSec team has consolidated some of the best practices in reducing risk in sustaining heavy damages from a ransomware incident. This guidance is a culmination of industry best practices as well as observations gathered by the Recon incident response team.
While these mitigation steps will certainly improve your posture against ransomware, there is no “silver bullet” that will eliminate this risk entirely. However, our experience is that organizations that are even moderately hardened against a ransomware attack are seldom even considered by a would-be attacker because easier targets of opportunity exist elsewhere. Attackers often take the path of least resistance -- this guide is to help prevent your organization from being “the easier target”.
