Holding a video conference meeting of statistics and information technology managers across the country
In this meeting, which was held especially due to the spread of new ransomware in the country and cyber attacks on a number of systems in the country, the latest recommendations were presented to statistics and technology managers on observing security points and dealing with the malicious effects of malware. And cases in this regard were presented for the observation of colleagues, which are as follows:
Strategies to deal with cyber attacks:
Backup databases and virtual machines
Check the backup authentication and disconnect the storage media from the network
Blocking unnecessary communications from outside to inside the network until the end of the cyber attack
Blocking communication ports including optical drives, usb flash drives, external hard drives, etc.
Restrict users' access to public wan networks, including intranets, Internet, government networks, etc.
Update network security products including antivirus, firewall and …
In-depth scan of servers and workstations by antivirus program
Periodically review reports of antivirus console, firewall and SIEM server
Examine various parts of the operating system, including running processes, installed programs, services, scripts, scheduler programs, and operating system drives
Information and coordination with managers, officials of the organization and IT experts of affiliated units
Follow related security news through reputable information bases
Change users' passwords at the admin level and close these users' open sessions