NSA Releases Defensive Strategies for Fighting Malware Targeting Corporate Data

  • 26 January 2015
  • 0 replies
  • 179 views

Userlevel 7
Badge +54
By Brian Prince on January 26, 2015 The NSA's Information Assurance Directorate (IAD) issued a report this month laying out best practices for combating malware designed to steal or destroy corporate data.
The report, entitled 'Defensive Best Practices for Destructive Malware', seems in part aimed at dealing with the type of data-wiping malware at the center of the recent attack on Sony Pictures Entertainment. Much of the advice, the document notes, is also contained in the guidance in the previously published 'Information Assurance Mitigation Strategies'.
Among the key pieces of advice: segregate network systems, limit workstation-to-workstation communication and protect and restrict administrative privileges for high-level administrator accounts. Organizations are also advised to deploy, configure and monitor application whitelisting to prevent unauthorized or malicious software from executing.
 
Full Article

0 replies

Be the first to reply!

Reply