As the Petya ransomware continues to proliferate, there are steps you can take to avoid infection on Windows systems.
- In March, Microsoft released Microsoft Security Bulletin MS17-010. This should be installed ASAP if not already.
- SMBv1 is being retired, but you should disable it now: How to enable and disable SMBv1, SMBv2, and SMBv3 in Windows and Windows Server.
- Windows 10 computers should be locked down by configuring trusted applications using Device Guard: Device Guard deployment guide.
- Adopt the security strategy of “least privilege accounts.” i.e., a very limited few need administrator access to their computer and elevated rights are blamed for more successful attacks than anything.
Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in San Francisco in 2017!