RV_ Posted May 18, 2022 Report Share Posted May 18, 2022 Simple steps t take if you do want security for your systems.: Excerpt: "Enable multi-factor authentication, patch your software, and deploy a VPN, but configure them securely, the US government and allies warn. The full list of security 'don'ts' includes: Multifactor authentication (MFA) is not enforced. Incorrectly applied privileges or permissions and errors within access control lists. Software is not up to date. Use of vendor-supplied default configurations or default login usernames and passwords. Remote services, such as VPNs, lack sufficient controls to prevent unauthorized access. Strong password policies are not implemented. Cloud services are unprotected. Open ports and misconfigured services are exposed to the internet. Failure to detect or block phishing attempts. Poor endpoint detection and response. (Note click on each of the "Security don'ts" in the list and it leads to an in depth article about each) Much more and details in the article here: https://www.zdnet.com/article/fbi-and-nsa-say-stop-doing-these-10-things-that-let-the-hackers-in/ Quote RV/Derekhttp://www.rvroadie.com Email on the bottom of my website page.Retired AF 1971-1998 When you see a worthy man, endeavor to emulate him. When you see an unworthy man, look inside yourself. - Confucius “Those who can make you believe absurdities, can make you commit atrocities.” ... Voltaire Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.