Following the global compromise of managed service providers or MSPs, the Australian Cyber Security Centre (ACSC) is calling on Australian businesses and individuals to be proactive in implementing better cyber security practices.
While no single mitigation strategy is guaranteed to prevent cyber security incidents, organisations are recommended to implement eight essential mitigation strategies as a baseline.
This baseline, known as the Essential Eight, makes it much harder for adversaries to compromise systems.
Cybercriminals who target organisations can cause irreparable damage, leaving some businesses unable to operate.
Implementing the Essential Eight can be more cost-effective on time, money and effort than having to respond to a successful large-scale cyber security incident.
Before implementing any of the mitigation strategies, it is crucial that organisations identify which systems require protection, which adversaries are likely to target their systems, and what level of protection their business needs.
There is a suggested implementation order for each cyber threat to assist organisations in building a robust cyber security stance.
Once organisations have implemented their desired mitigation strategies to an initial level, they should focus on increasing the maturity of their implementation.