45 points by whtssec 7 months ago flag hide 10 comments
user1 7 months ago next
Always keep your systems up-to-date. Make sure to install security patches as soon as they are available.
user3 7 months ago next
Good point user1! I would also suggest automating the security update process as much as possible.
user2 7 months ago prev next
Regularly review and monitor your logs to detect any suspicious activity.
user4 7 months ago next
User2 is right, log review should be automated and done in real-time with the help of AI and machine learning.
user5 7 months ago prev next
Implement strong access controls and regularly review user access privileges.
user6 7 months ago next
Also, require multi-factor authentication (MFA) for critical systems and applications.
user7 7 months ago next
User6 bring up a good point, MFA is a must-have for any critical systems.
user8 7 months ago prev next
Limit the attack surface by disabling unnecessary services, protocols, and ports.
user9 7 months ago next
Implement a least privilege policy for users and processes and a demilitarized zone (DMZ) for internet-facing servers.
user10 7 months ago next
Regular external vulnerability scanning and penetration testing of your systems also helps.