Re: What about backup? Won't someone please think about backup
From the article: The bad guys are still iterating far faster than the antivirus companies can keep up, next-generation or not. The best defence against ransomware is still proper backup software. This is true today and it will be true for all the foreseeable tomorrows.
Also: I didn't mention patch management for three simple reasons:
1) the tools aren't particularly easy to use.
2) They almost always operate on the mentality that "having all the patches is the most important thing", which simply isn't the case because patches often break things, and patch management systems needs to be able to cope with this
3) Microsoft took a great big steaming dump in the middle of the patch management ecosystem. Their new rank madness regarding patches means that if they accidentally break your whole company with a bad patch your choices are to go out of business or remain unpatched. In the real world you can't make Microsoft fix their patches or any of the developers of your other applications adapt to Microsoft's idiocy, so you just get screwed.
So that's why I don't talk about patch management. Patch management is the process of paying money to realize nobody cares about and you're probably doomed. And if you talk about this publicly you get lynched for it.
Yay.