Cybercriminals are gradually aiming corporate computers using malware hoping to profit from fatal information. They have moved from targeting consumer desktops to enterprise employees. There is rising corporate networks exposure to malware. Social sites, employee mobility and user-driven IT are some of the factors that contribute to the increasing contact of corporate systems to malware. Threats that are persistent and Trojans can breach and compromise sensitive data.
Ivan Konovalov, the Customer Success Manager of Semalt, presents a valuable guide to preventing internet hacking threats.
Firstly, keep the plug-ins of the browser patched.
Attackers are unable to use Adobe Acrobat or Adobe reader or Microsoft Internet Explorer to reach a system. Whenever the patches become available, install them immediately.
Secondly, block peer-to-peer usage.
Since one way of malware distribution is by sharing files on peer- to-peer networks, form and enforce a no-peer-to-peer policy.
Thirdly, turning off Windows AutoPlay.
Stopping network based virus like Downadup and Conficker from jumping from network drives with no change of company rules on the open shares.
Fourthly, turn on enhanced security in Adobe Reader.
PDF files sometimes hide attacks. Hardening the Reader protects the machine from such attacks.
Next, limiting network shares usage.
Since virus like to spread through networked drives, mapped drives should be closed unless required seriously. Give permission to read only and restrict read-write.
Review the effectiveness of gateway blocking and mail security.
Web security and effective mail help to get the threat before it reaches the desktop. Ensure a mail security resolution is available that is able to update frequently. It will enable to detect latest malware threats, spam, and corrupt sender IPs.
Review the security content distribution schedule.
The release of antivirus is done severally in a day and weekly for IPS content. Update frequently infected machines or even all the machines as the updates come if possible.
Protect mobile devices especially smartphones.
Mobile devices bring malware to the network as any PC that is unprotected. This happens since everyone with a tablet or smartphone desires to access the network.
Use tools that go beyond antivirus.
Antivirus products are not effective nowadays as before since the threats evolved to evade the software of the antivirus. Today’s threats are web built. IPS (Intrusion Prevention System) can stop the malware before their penetration into a machine.
Change default settings of a machine.
A few number of changes to the settings make huge security improvements on the device. Changing the machine’s default settings helps get the best out of it.
Specific threats can be blocked by implementing rules on application control.
Device control and Symantec Endpoint protection tools are used to stop definite files, protect crucial data and block the peer-to-peer use of the network.
Finally, educate the users.
Education is greatly effective in preventing malware. Ask the users to click only on sources that are trusted when searching, not to update applications like codec, Flash, and media player when promoted by unaffiliated sites, not to use peer-to-peer networks on corporate machines and avoid clicking on attachments or links from unknown sources. Following the above-discussed points can help one protected.