Comment by 1970-01-01

Comment by 1970-01-01 2 days ago

2 replies

View on Hacker News

Start at the fundamentals, dammit!

Do you have off-site backups of all your critical data on a regular schedule?

Do you have physical 2FA on all your accounts?

Are you actively patching/updating all your devices on a schedule, and actively discarding the devices that are too old to patch?

Only after these are done should you start looking at complex phishing and social engineering scenarios. You can successfully mitigate everything you are worried about by nailing these fundamentals.

null_deref 2 days ago

Do you have suggestions on how to do off site backups? For example for images and documents

Reply View 1 reply
  • 1970-01-01 2 days ago

    XXTB HDD in a safe deposit box. Rotate the disks with on-site backup. Test restore once per year.

    Reply View 0 replies