{"id":7279,"date":"2022-06-10T18:18:54","date_gmt":"2022-06-10T16:18:54","guid":{"rendered":"https:\/\/sic.or.at\/en\/?p=7279"},"modified":"2022-06-13T17:11:56","modified_gmt":"2022-06-13T15:11:56","slug":"it-security-prevention-against-ransomware","status":"publish","type":"post","link":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/","title":{"rendered":"IT Security – Prevention against Ransomware"},"content":{"rendered":"[vc_row type=”in_container” full_screen_row_position=”middle” column_margin=”default” column_direction=”default” column_direction_tablet=”default” column_direction_phone=”default” scene_position=”center” text_color=”dark” text_align=”left” row_border_radius=”none” row_border_radius_applies=”bg” overlay_strength=”0.3″ gradient_direction=”left_to_right” shape_divider_position=”bottom” bg_image_animation=”none”][vc_column column_padding=”no-extra-padding” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”all” column_element_spacing=”default” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”1\/1″ tablet_width_inherit=”default” tablet_text_alignment=”default” phone_text_alignment=”default” bg_image_animation=”none” border_type=”simple” column_border_width=”none” column_border_style=”solid”][vc_column_text]Due to increasing digitization, we are unfortunately also increasingly confronted with serious threats from the Internet. Hacker attacks are becoming more and more imaginative, intelligent and, above all, individual. In the Software Internet Cluster we would like to share our expertise on this topic.<\/strong><\/p>\n

Most IT security measures are easy to implement with little to medium effort, are available free of charge or only involve low costs. It’s all about basic security, which of course can and must be additionally secured with more complex measures. When it comes to IT security, you have to assume that hackers are already active in the system and starting attacks. One speaks of a so-called “zero trust” environment<\/em>. So you have to be aware that a hacker attack can also be launched from any internal device.<\/p>\n

Separation of Power in Active Directory<\/h2>\n

with Markus Schoas from hs2n Informationstechnologie GmbH<\/span><\/h3>\n[\/vc_column_text][divider line_type=”No Line”][vc_row_inner column_margin=”default” column_direction=”default” column_direction_tablet=”default” column_direction_phone=”default” text_align=”left”][vc_column_inner column_padding=”no-extra-padding” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”all” column_element_spacing=”default” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”1\/4″ tablet_width_inherit=”default” bg_image_animation=”none” border_type=”simple” column_border_width=”none” column_border_style=”solid”][image_with_animation image_url=”7289″ animation=”None” hover_animation=”none” alignment=”” border_radius=”none” box_shadow=”none” image_loading=”default” max_width=”100%” max_width_mobile=”default”][vc_column_text]Ing. Markus Schoas – Managing Director of hs2n Informationstechnologie GmbH<\/strong><\/a>[\/vc_column_text][\/vc_column_inner][vc_column_inner column_padding=”no-extra-padding” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”all” column_element_spacing=”default” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”3\/4″ tablet_width_inherit=”default” bg_image_animation=”none” border_type=”simple” column_border_width=”none” column_border_style=”solid”][vc_column_text]Along with Michael Satlow<\/strong> and Markus Huber<\/strong>, Markus Schoas<\/strong> is one of the managing directors of hs2n Informationstechnologie GmbH<\/a><\/strong>, which was founded in Carinthia in 2001 and focuses its services on supporting IT Infrastructure<\/em>, Consulting<\/em>, Product Development<\/em> and individual Software Solutions<\/em> for medium-sized and large companies.<\/p>\n

Many years of project experience and a wide range of know-how combined with an innovative and creative approach make hs2n an efficient partner. The focus of the company is also strongly in the area of IT security with its own products such as XEOX<\/a>, the remote monitoring and management tool, <\/em>as well as its own application firewall with two-factor authentication<\/em><\/a>.[\/vc_column_text][divider line_type=”No Line”][nectar_btn size=”medium” open_new_tab=”true” button_style=”regular” button_color_2=”Accent-Color” icon_family=”default_arrow” text=”Learn more” url=”https:\/\/sic.or.at\/en\/members\/hs2n-informationstechnologie-gmbh\/”][\/vc_column_inner][\/vc_row_inner][divider line_type=”No Line”][vc_column_text]\n

Measures for the Separation of Powers in the AD<\/h3>\n

It must be avoided as far as possible that a domain administrator is compromised and the attacker gets hold of the so-called Golden Ticket<\/a><\/strong>! The golden ticket is the ultimate entry ticket to all system resources that are integrated into an Active Directory, as it allows the entire domain in a company to be compromised with all the necessary rights. As soon as such a Kerberos ticket gets into the hands of a hacker or hacker organization – it’s a security meltdown!<\/em><\/p>\n

It must be made more difficult for the attacker to obtain a domain administrator’s password. It has therefore proven itself to reduce such sensitive attack surfaces. For this reason it is advisable that domain administrators can only log on to domain controllers and not to other servers or even clients within the domain.<\/p>\n

Checklist<\/strong><\/span><\/h2>\n[\/vc_column_text][divider line_type=”No Line”][divider line_type=”No Line”][nectar_icon_list animate=”true” color=”default” direction=”vertical” icon_size=”medium” icon_style=”no-border”][nectar_icon_list_item icon_type=”icon” text_full_html=”simple” title=”List Item” id=”1655132708060-4″ tab_id=”1655132708061-10″ icon_fontawesome=”fa fa-check-square-o” header=”Logon exclusively on Domain Controller” text=”A Windows domain policy must be created so that domain administrators can only log on to domain controllers.”][\/nectar_icon_list_item][nectar_icon_list_item icon_type=”icon” text_full_html=”simple” title=”List Item” id=”1655132708096-3″ tab_id=”1655132708097-7″ icon_fontawesome=”fa fa-check-square-o” header=”Administrator Account per Server” text=”Each server should have its own administrator account so that in case of a compromise, multiple servers are not affected at once. Giving IT staff global accounts that reside in local admin groups is an absolute no-no. The accounts of IT employees should only have normal user rights!”][\/nectar_icon_list_item][nectar_icon_list_item icon_type=”icon” text_full_html=”simple” title=”List Item” id=”1655132708114-9″ tab_id=”1655132708114-8″ icon_fontawesome=”fa fa-check-square-o” header=”Using Group Managed Service Accounts” text=”Only group-managed service accounts should be used on servers or clients.”][\/nectar_icon_list_item][nectar_icon_list_item icon_type=”icon” text_full_html=”html” title=”List Item” id=”1655132708132-10″ tab_id=”1655132708133-10″ icon_fontawesome=”fa fa-check-square-o” header=”Introduction of LAPS throughout the domain”]The local administrator should have a different password for all clients and servers. For this purpose, the introduction of Local Administrator Password Solution (LAPS)<\/a><\/strong> in the entire domain makes sense.[\/nectar_icon_list_item][\/nectar_icon_list][divider line_type=”No Line”][divider line_type=”No Line”][vc_column_text]You have any questions or need support with the professional implementation?
\n<\/strong>We would be glad to forward your request to our IT security experts.[\/vc_column_text][divider line_type=”No Line”][nectar_btn size=”medium” button_style=”regular” button_color_2=”Accent-Color” icon_family=”default_arrow” text=”Send Request” url=”mailto:patrick.struger@sic.or.at?subject=SIC%20IT-Security%20Measurements”][\/vc_column][\/vc_row]\n","protected":false},"excerpt":{"rendered":"

[vc_row type=”in_container” full_screen_row_position=”middle” column_margin=”default” column_direction=”default” column_direction_tablet=”default” column_direction_phone=”default” scene_position=”center” text_color=”dark” text_align=”left” row_border_radius=”none” row_border_radius_applies=”bg” overlay_strength=”0.3″ gradient_direction=”left_to_right” shape_divider_position=”bottom” bg_image_animation=”none”][vc_column column_padding=”no-extra-padding” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”all” column_element_spacing=”default” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”1\/1″ tablet_width_inherit=”default”…<\/p>\n","protected":false},"author":9,"featured_media":7288,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[5],"tags":[],"coauthors":[78],"class_list":{"0":"post-7279","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-news"},"acf":[],"yoast_head":"\nIT Security - Prevention against Ransomware - SIC (EN)<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"IT Security - Prevention against Ransomware - SIC (EN)\" \/>\n<meta property=\"og:description\" content=\"[vc_row type=”in_container” full_screen_row_position=”middle” column_margin=”default” column_direction=”default” column_direction_tablet=”default” column_direction_phone=”default” scene_position=”center” text_color=”dark” text_align=”left” row_border_radius=”none” row_border_radius_applies=”bg” overlay_strength=”0.3″ gradient_direction=”left_to_right” shape_divider_position=”bottom” bg_image_animation=”none”][vc_column column_padding=”no-extra-padding” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”all” column_element_spacing=”default” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”1\/1″ tablet_width_inherit=”default”...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/\" \/>\n<meta property=\"og:site_name\" content=\"SIC (EN)\" \/>\n<meta property=\"article:published_time\" content=\"2022-06-10T16:18:54+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-06-13T15:11:56+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/sic.or.at\/en\/wp-content\/uploads\/sites\/3\/2022\/06\/it_sec_erpresser_software_post_en-scaled.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"2560\" \/>\n\t<meta property=\"og:image:height\" content=\"1706\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Patrick Struger\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Patrick Struger\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/\",\"url\":\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/\",\"name\":\"IT Security - Prevention against Ransomware - SIC (EN)\",\"isPartOf\":{\"@id\":\"https:\/\/sic.or.at\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/sic.or.at\/en\/wp-content\/uploads\/sites\/3\/2022\/06\/it_sec_erpresser_software_post_en-scaled.jpg\",\"datePublished\":\"2022-06-10T16:18:54+00:00\",\"dateModified\":\"2022-06-13T15:11:56+00:00\",\"author\":{\"@id\":\"https:\/\/sic.or.at\/en\/#\/schema\/person\/250cff3277a5f5e388b264c7b43794bd\"},\"breadcrumb\":{\"@id\":\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#primaryimage\",\"url\":\"https:\/\/sic.or.at\/en\/wp-content\/uploads\/sites\/3\/2022\/06\/it_sec_erpresser_software_post_en-scaled.jpg\",\"contentUrl\":\"https:\/\/sic.or.at\/en\/wp-content\/uploads\/sites\/3\/2022\/06\/it_sec_erpresser_software_post_en-scaled.jpg\",\"width\":2560,\"height\":1706,\"caption\":\"internet security and data protection concept, blockchain and cybersecurity\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Startseite\",\"item\":\"https:\/\/sic.or.at\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"IT Security – Prevention against Ransomware\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/sic.or.at\/en\/#website\",\"url\":\"https:\/\/sic.or.at\/en\/\",\"name\":\"SIC (EN)\",\"description\":\"Software Internet Cluster\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/sic.or.at\/en\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/sic.or.at\/en\/#\/schema\/person\/250cff3277a5f5e388b264c7b43794bd\",\"name\":\"Patrick Struger\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/sic.or.at\/en\/#\/schema\/person\/image\/b614de6963b56042985724d9ffe7c18e\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/110dc54cd1c3930a57f5476d15284ad8fa513dab95aae7852d638e948e1fb23e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/110dc54cd1c3930a57f5476d15284ad8fa513dab95aae7852d638e948e1fb23e?s=96&d=mm&r=g\",\"caption\":\"Patrick Struger\"},\"sameAs\":[\"https:\/\/www.sic.or.at\"],\"url\":\"https:\/\/sic.or.at\/en\/author\/pstruger\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"IT Security - Prevention against Ransomware - SIC (EN)","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/","og_locale":"en_US","og_type":"article","og_title":"IT Security - Prevention against Ransomware - SIC (EN)","og_description":"[vc_row type=”in_container” full_screen_row_position=”middle” column_margin=”default” column_direction=”default” column_direction_tablet=”default” column_direction_phone=”default” scene_position=”center” text_color=”dark” text_align=”left” row_border_radius=”none” row_border_radius_applies=”bg” overlay_strength=”0.3″ gradient_direction=”left_to_right” shape_divider_position=”bottom” bg_image_animation=”none”][vc_column column_padding=”no-extra-padding” column_padding_tablet=”inherit” column_padding_phone=”inherit” column_padding_position=”all” column_element_spacing=”default” background_color_opacity=”1″ background_hover_color_opacity=”1″ column_shadow=”none” column_border_radius=”none” column_link_target=”_self” gradient_direction=”left_to_right” overlay_strength=”0.3″ width=”1\/1″ tablet_width_inherit=”default”...","og_url":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/","og_site_name":"SIC (EN)","article_published_time":"2022-06-10T16:18:54+00:00","article_modified_time":"2022-06-13T15:11:56+00:00","og_image":[{"width":2560,"height":1706,"url":"https:\/\/sic.or.at\/en\/wp-content\/uploads\/sites\/3\/2022\/06\/it_sec_erpresser_software_post_en-scaled.jpg","type":"image\/jpeg"}],"author":"Patrick Struger","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Patrick Struger","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/","url":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/","name":"IT Security - Prevention against Ransomware - SIC (EN)","isPartOf":{"@id":"https:\/\/sic.or.at\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#primaryimage"},"image":{"@id":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#primaryimage"},"thumbnailUrl":"https:\/\/sic.or.at\/en\/wp-content\/uploads\/sites\/3\/2022\/06\/it_sec_erpresser_software_post_en-scaled.jpg","datePublished":"2022-06-10T16:18:54+00:00","dateModified":"2022-06-13T15:11:56+00:00","author":{"@id":"https:\/\/sic.or.at\/en\/#\/schema\/person\/250cff3277a5f5e388b264c7b43794bd"},"breadcrumb":{"@id":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#primaryimage","url":"https:\/\/sic.or.at\/en\/wp-content\/uploads\/sites\/3\/2022\/06\/it_sec_erpresser_software_post_en-scaled.jpg","contentUrl":"https:\/\/sic.or.at\/en\/wp-content\/uploads\/sites\/3\/2022\/06\/it_sec_erpresser_software_post_en-scaled.jpg","width":2560,"height":1706,"caption":"internet security and data protection concept, blockchain and cybersecurity"},{"@type":"BreadcrumbList","@id":"https:\/\/sic.or.at\/en\/it-security-prevention-against-ransomware\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Startseite","item":"https:\/\/sic.or.at\/en\/"},{"@type":"ListItem","position":2,"name":"IT Security – Prevention against Ransomware"}]},{"@type":"WebSite","@id":"https:\/\/sic.or.at\/en\/#website","url":"https:\/\/sic.or.at\/en\/","name":"SIC (EN)","description":"Software Internet Cluster","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/sic.or.at\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/sic.or.at\/en\/#\/schema\/person\/250cff3277a5f5e388b264c7b43794bd","name":"Patrick Struger","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/sic.or.at\/en\/#\/schema\/person\/image\/b614de6963b56042985724d9ffe7c18e","url":"https:\/\/secure.gravatar.com\/avatar\/110dc54cd1c3930a57f5476d15284ad8fa513dab95aae7852d638e948e1fb23e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/110dc54cd1c3930a57f5476d15284ad8fa513dab95aae7852d638e948e1fb23e?s=96&d=mm&r=g","caption":"Patrick Struger"},"sameAs":["https:\/\/www.sic.or.at"],"url":"https:\/\/sic.or.at\/en\/author\/pstruger\/"}]}},"_links":{"self":[{"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/posts\/7279","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/comments?post=7279"}],"version-history":[{"count":8,"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/posts\/7279\/revisions"}],"predecessor-version":[{"id":7290,"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/posts\/7279\/revisions\/7290"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/media\/7288"}],"wp:attachment":[{"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/media?parent=7279"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/categories?post=7279"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/tags?post=7279"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/sic.or.at\/en\/wp-json\/wp\/v2\/coauthors?post=7279"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}