Two weeks ago, Hong Kong’s Ikea suddenly closed its operations which attracted much attention. The US cybersecurity news website Bleeding Computer pointed out that Dairy Farm was attacked by the REvil ransomware – a hacker organization. Some computers and servers were encrypted, and there was a rumor that they were ransomed as high as US$30 million.
The Ikea incident was just the tip of the iceberg. Over the past two to three months, several ransomware attacks have happened over the world. Our cybersecurity expert Kelvin Wong shared his perspective on #ActiveDirectory and #IdentityAccessManagement:
(1) If your company still uses Active Directory
You must stabilize the internal settings and continue to monitor #adsecurity. Just Monitoring is not enough. It is also necessary to consider information security orchestration and add it to Security Orchestration, Automation and Response #SOAR to ensure that when the internal settings are changed by humans or hackers, the system will automatically change back to the original settings and inform the managing staff.
Get to know What is Active Directory (AD)?
(2) If the company intended to transform internal and external services to the cloud
Identity Access Management #IAM can be considered in this trend. The use of third-party cloud user management services can reduce the burden on Active Directory.
Question: Is it safe to use third-party user management services?
Answer: No. In terms of information security, it strengthens the protection to external services. Organizations must add different security settings, for example: use different conditions to determine and analyze the user’s suitability for this service #contextualaccess
Want to learn more about cybersecurity? Please feel free to contact us.