Attack surface reduction is simply ensuring all the places where attackers can take advantage of to compromise your network and its devices are properly secured, leaving attackers with fewer attack points. Attack surface is any area of your oganization’s network that is susceptible to attacks. APIs are common attack vector and you can lessen its attack surface by securing APIs by using things like signatures, tokens, and encryption. Another attack vector is email software and common attack methods are using phishing emails. Security team can secure the email software more if they utilize software that can detect and block phishing attempts.
You can reduce attack surface in numerous ways, like enabling exploit and web protection, enabling controlled folder access, setting up a firewall and creating rules. Windows 10’s attack surface reduction rules are part of windows defender exploit guard and they can protect certain processes and executable processes that attackers use. This can help with many ransomware and malware injection and even provide email hygiene. Make sure to have a fine balance between security and availability, as business may require certain systems to be fast and always available.
HansITAcademy 