In light of the heightened risk level of cyber-attacks, we want to strongly encourage easy-to implement security recommendations that will help keep your entity secure. It is recommended that this information be shared with the appropriate individuals in your entity.
1. Maintain a backup of critical data and systems - backups need to be isolated (example: offline and encrypted) so that they are out of reach of cyber or ransomware attacks.
2. Ask your employees and partners to enable MFA everywhere - this is a free, easy to implement step that can prevent a click on a bad link in an email from turning into a ransomware attack. Guidance on MFA for commonly used applications are available here.
3. Empower employees to be your first line of defense - train your employees to recognize malicious emails such as phishing emails.