Uniserve are agents for a number of security, identity and protection products including ESET, Barracuda, DMARCIAN and Malwarebytes.
The threat landscape facing individuals and organisations is constantly evolving and it is not sufficient to rely solely on anti-virus products.
It is increasingly common for cyber-attacks to be more targeted, so it is imperative to keep abreast of emerging threats and employ the principles of “zero trust”. “Phishing” attacks are becoming more sophisticated and often involve identity hijacks using people known to the target. Coupled with Social Engineering, these attacks may include psychology manipulation and impersonation of senior staff.
Hardware protection such as firewalls (see Network Boundaries/Firewalls) should be of a good standard and kept up to date (an annual review is a good principle). Security measures against infections and infiltration should include products such as anti-virus, anti-malware and anti-ransomware. Steps should be taken to ensure that all such software is current…and that operating system updates are installed.
It is also important a comprehensive and robust backup regime is established (see Cloud Backups) should the cyber security protection become compromised. Data maybe lost, corrupted or encrypted so the ability to restore current data is essential.
Users of 365 products are also able to reduce their attack surface by configuring Microsoft policies such as “Sensitivity Labelling” or “Data Loss Prevention” (See GDPR and Policy Implementation).
It is good practice to regularly perform simulated attacks. There are a variety of tools for achieving this or they can be incorporated into an annual Cyber Essentials Assessment or Penetration Testing. An annual “dry run” of all protection and security systems should also be run, including all Disaster Recovery procedures to test for efficacy and where improvements should be made.
