To protect against similar cyber-attacks, organizations should:
• Regularly back up data, air gap, and password protect backup copies offline.
• Ensure copies of critical data are not accessible for modification or deletion from the system where the data resides.
• Implement network segmentation.
• Implement a recovery plan
• Install updates/patch operating systems, software, and firmware as soon as practical after they are released.
• Implement monitoring of security events on employee workstations and servers, with a 24/7 Security Operations Center to detect threats
• Use multifactor authentication where possible.
• Use strong passwords and regularly change passwords to network systems and accounts and avoid reusing passwords for multiple accounts.
• Regularly provide users with training on information security principles and techniques as well as overall emerging cybersecurity risks and vulnerabilities.
https://www.bankinfosecurity.com/cyberattack-on-records-vendor-affects-scores-us-counties-a-20856?&web_view=true
