Security News > 2021 > September > Securing your WordPress website against ransomware attacks

According to a recent report from the Institute for Security and Technology, ransomware attacks cost businesses 21 days of downtime, on average.
Because WordPress is the market share leader, my team of SOC analysts aren't strangers to responding to WordPress security issues.
The one lesson we've learned time and time again: Preventative security measures are the most effective steps you can take against ransomware attacks.
An effective security plugin will validate website configurations and provide added levels of protection but having a WordPress hardening guide in place lays the foundation for security best practices.
In addition to a WordPress hardening guide, publishing a Content Security Policy adds an extra layer of protection by establishing a protocol for the JavaScript that can run on a webpage, along with how functionality works across the website.
An IR tabletop exercise simulating a ransomware attack where your WordPress site is the entry point allows your security team to walk through the necessary actions should an incident happen, and ensures you have answers to crucial questions.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/63IK8wf-Z9g/
Related news
- SANS Institute Warns of Novel Cloud-Native Ransomware Attacks (source)
- ⚡ THN Weekly Recap: Router Hacks, PyPI Attacks, New Ransomware Decryptor, and More (source)
- BlackLock ransomware claims nearly 50 attacks in two months (source)
- TechRepublic EXCLUSIVE: New Ransomware Attacks are Getting More Personal as Hackers ‘Apply Psychological Pressure” (source)
- Texas State Bar warns of data breach after INC ransomware claims attack (source)
- Sensata Technologies hit by ransomware attack impacting operations (source)
- Ransomware attack cost IKEA operator in Eastern Europe $23 million (source)
- Kidney dialysis firm DaVita hit by weekend ransomware attack (source)
- Ahold Delhaize confirms data theft after INC ransomware claims attack (source)
- Interlock ransomware gang pushes fake IT tools in ClickFix attacks (source)