Gavin Ashton was an IT security guy working at Maersk at the time of it was hit hard by the NotPetya ransomware. Now heâs written an article about his experiences, and shares advice for others.
The shipping conglomerate Maersk, hit by the NotPetya ransomware in June 2017, estimated that it cost them as much as $300 million in lost revenue.
Gavin Ashton was an IT security guy working at Maersk at the time of the attack. Heâs now written an in-depth article about what happened.
I want to help protect other folks from making these same mistakes, because thereâs a lot of what seems to be defeatist wisdom out there; Yes, it is inevitable that you will be attacked. It is inevitable that one day, one will get through. And obviously, you should have a solid contingency plan in place in case of the worst. But thatâs not to say you donât attempt to put up a damn good fight to stop these attacks in the first case. Just because you know the bad actors are coming, doesnât mean you leave your front door open and make them a cup of tea when they walk in. You could just lock the door.
Staying with the home analogy; Yes, thereâs security cameras and wizard cloud-connected âInternet of Thingsâ (IoT) devices and all kinds of expensive measures and widgets, but a lot of organisations fail simply on the basics. Lock the damn door.
Itâs a good read, and strongly recommended if youâre responsible for securing your enterprise from malware attack.
And make sure to check out this âSmashing Securityâ podcast we recorded back in June 2017, at the time of the outbreak:
vendredi, juillet 03, 2020