A large hospital is the recent target of a zero-day attack. The attack enabled additional payloads, which appear to be originating from multiple countries, to be dropped. The hospital's information security department has deployed only endpoint antivirus software so far. The hospital wants to mitigate similar attacks in the future. Which of the following would be the best action to take NEXT?
A Deploy perimeter firewalls to block the originating IP addresses of the recent attacks.
B Integrate antivirus modules into all hospital routers with constant real-time updates.
C Deploy FIPS compliant data-at-rest encryption to all hospital workstations and servers.
D Deploy has-based application whitelisting to all systems based on system baselines
A) Deploy perimeter firewalls to block the originating IP addresses of the recent attacks.
Reason: antivirus are useful but are not totally secure, especially when it is already the target of zero-day attack. So, Deploy perimeter firewalls will be useful to block the originating IP addresses of the recent attacks.
A large hospital is the recent target of a zero-day attack. The attack enabled additional payloads,...
Risk management in Information Security today Everyday information security professionals are bombarded with marketing messages around risk and threat management, fostering an environment in which objectives seem clear: manage risk, manage threat, stop attacks, identify attackers. These objectives aren't wrong, but they are fundamentally misleading.In this session we'll examine the state of the information security industry in order to understand how the current climate fails to address the true needs of the business. We'll use those lessons as a foundation...