- Use strong authentication. Passwords just don't cut it in today's environment.
- Segment your network properly. It appears that Target did not fence off its HVAC vendor from its Point of Sale (POS) systems.
- Require background checks. If you require background checks for your own employees before they are on your network, your outsourcing contracts should require the same level of checks from your vendors.
- Monitor traffic on your network. Network segmentation errors will occur, but hopefully someone would pick up on SQL Injection attacks from your HVAC network.
No comments:
Post a Comment