The Lewis and Clark cyberattack apparently surfaced Tuesday, November 23, and campuses were closed starting on Wednesday, November 24. The public community college, based in Godfrey, Illinois, serves roughly 15,000 students annually, according to WikiPedia.
Lewis and Clark did not disclose whether it has hired a third-party cyber forensics firm or MSSP to investigate the alleged attack, and/or to assist the college’s IT network recovery.
Tips to Protect Against Ransomware Attacks
To mitigate the risk of ransomware attacks, the FBI and CISA say MSSPs and MSPs should take these seven steps:
require multi-factor authentication (MFA);
implement network segmentation;
scan for vulnerabilities and keep software updated;
remove unnecessary applications and apply controls — and be sure to investigate any unauthorized software, particularly remote desktop or remote monitoring and management software;
implement endpoint and detection response tools;
limit access to resources over the network, especially by restricting RDP; and
secure user accounts.
How MSPs and MSSPs Can Respond to and Recover From Ransomware Attacks
If a ransomware incident occurs, then the CISA, FBI and NSA recommend the following four actions: