Bright Nexus

Published on February 15, 2025

Protection from Ransomware; How Password Security Best Practices Safeguard Organizations

Severity

Medium

Detail

In recent years, cybercriminals have adopted increasingly destructive ransomware tactics. Beyond encrypting data, they now exfiltrate sensitive information to pressure victims into paying, often threatening to leak or sell stolen data on the dark web. These evolving methods have made ransomware even more disruptive, locking users out of critical systems and inflicting severe operational damage.

Reports from various cybersecurity firms indicate that ransomware attacks are surging, with an increasing number of organizations, particularly in the manufacturing sector, falling victim. Attackers have also refined their strategies, incorporating harassment and aggressive extortion techniques. With ransom payments and recovery costs continuing to climb, ransomware remains a growing and costly cybersecurity threat.

While ransomware can be delivered through various threat vectors, the Federal Trade Commission (FTC) states that phishing emails are the primary method used in ransomware attacks. Phishing is a social engineering tactic designed to trick individuals into revealing sensitive information—such as login credentials, bank account details, or Social Security numbers—or redirecting them to malicious websites that distribute malware. To mitigate the impact of an attack, maintaining secure backup files both offline and in the cloud is critical for faster data recovery.

Recognizing the significant role phishing plays in ransomware distribution, organizations are encouraged to strengthen credential security by implementing the following measures:

  • Adopt phishing-resistant multi-factor authentication (MFA/2FA) across all services.
  • Consider passwordless MFA, using multiple verification factors such as fingerprints, facial recognition, device PINs, or cryptographic keys instead of passwords.
  • Enforce strong password policies, requiring unique passwords with a minimum of 15 characters.
  • Secure password storage, ensuring passwords are kept in a protected database with strong hashing algorithms.
  • Conduct regular security awareness training, educating employees on password security best practices, including avoiding password reuse and not storing credentials in local files.

Additionally, establishing an incident response plan is essential to defining roles and responsibilities during a ransomware attack. Ongoing security awareness training also plays a crucial role in helping employees recognize and prevent phishing attempts.

Since ransomware attacks are highly sophisticated, effective mitigation requires a multi-layered security approach. Strong password management and passwordless authentication not only reinforce security but also promote better password habits. By equipping employees and organizations with robust authentication tools, businesses can significantly enhance credential security and reduce their exposure to ransomware threats.

Source

https://bitwarden.com/blog/how-password-security-best-practices-safeguard-against-ransomware