How Organizations can Protect Themselves from RaaS Attacks

August 23, 2022

In its Cyber Signals Report of August 2022, entitled Extortion Economics, Microsoft outlines steps that organizations can take to protect their systems from Ransomware-as-a-service attacks. As ready-made RaaS kits are available, launching an attack no longer requires technical know-how and organizations must prepare for possible attacks.

Security measures that organizations can take include preventing initial access, segmenting networks, auditing account credentials, reducing the attack surface, enforcing multi-factor authentication, checking for blind spots in security, hardening internet facing assets, hardening cloud assets, and updating systems.

While it is important for organizations to manage macros and scripts, it is also vital that they segment networks based on account privileges in order to prevent lateral movements by attackers.

Organizations are recommended to review the exposure of account credentials and ensure that their staff and security services work together to reduce the level of administrative privilege and understand where they are most at risk.

There is also the need to establish rules to reduce the attack surface used in ransomware incidents.

The sources for this piece include an article in TechRepublic.

Top Stories

Related Articles

June 9, 2026 Hackers exploited Meta’s AI-powered support chatbot to gain control of Instagram accounts, including several high-profile profiles. Meta more...

June 5, 2026 Security researchers have disclosed a new denial-of-service attack called HTTP/2 Bomb that can overwhelm major web servers more...

May 20, 2026 The Cybersecurity and Infrastructure Security Agency, the arm of the U.S. government tasked with protecting critical infrastructure more...

May 11, 2026 Instructure has restored access to its Canvas learning platform after a cyberattack disrupted service for universities and more...

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn