BeyondTrust：政府应对日益增长的勒索软件威胁的四个关键方法（英文版）（2页）.pdf

Ransomware has become a significant cybersecurity threat to state and local government agencies, with attacks rising by 150% from 2019 to 2020 and costing an estimated $144 million in Bitcoin ransom payments from 2013 to 2019, according to the FBI’s National Cyber Investigative Joint Task Force. The COVID-19 pandemic and remote work models have exacerbated the issue, with phishing attacks, in particular, becoming a major concern for remote employees. To address these threats, the article outlines four key strategies: 1. Conduct Training Programs: Educate employees about ransomware threats and damage they can cause, with a focus on recognizing phishing attacks. 2. Implement an Extensive Toolbox: Deploy multiple security tools and services, including anti-malware, data encryption, and multi-factor authentication, to create a defense-in-depth strategy. 3. Adopt Zero-Trust Design and Policies: Establish a zero-trust architecture where networked devices are not trusted by default, to prevent attackers from exploiting weaknesses. 4. Ensure Data Backup and Recovery: Regularly back up data and have effective recovery mechanisms in place to protect against ransomware attacks targeting backups. These strategies, along with funding support from resources such as the CARES Act and the State and Local Cybersecurity Improvement Act, are crucial for state and local government agencies to reduce their risk and enhance their cybersecurity defenses against ransomware.