When Bots Attack! Safeguarding Against AI Cyber Threats

We had a ransomeware attack on our firm which paralyzed us . What can we do to prevent this from happening. Small firm.

I’m sorry you experienced that. Ransomware can be crippling for a small firm — but it’s preventable with the right layers in place. For most small firms, protection comes down to five essentials: 1. Multi-Factor Authentication (MFA) on email and all critical systems. 2. Consistent patching of operating systems, firewalls, and third-party apps. 3. Secure remote access (no exposed RDP; use secure VPN or zero-trust solutions). 4. Endpoint Detection & Response (EDR) — traditional antivirus is no longer enough. 5. Proper backups following the 3-2-1 rule, including one offline or immutable copy — and regularly tested restores. Most ransomware starts with phishing or stolen credentials. Layered protection, visibility, and proactive monitoring are what stop it before it spreads. If you’ve already had an incident, I strongly recommend a post-attack review to determine exactly how access was gained and close that gap permanently. For small firms without dedicated security teams, partnering with a cybersecurity-focused MSP/MSSP can make a significant difference. Whether it’s us or another reputable provider, having proactive monitoring, structured security controls, and an incident response plan in place is critical. Prevention is far less expensive than recovery.

What do you suggest that individuals do to protect their home computer systems (where they access and/or store bank, brokerage and PI)? Thanks. BW

The biggest mistake individuals make is assuming basic antivirus and a strong password are enough. They are not. At a minimum, I recommend focusing on five core areas: First, enable multi-factor authentication (MFA) on all critical accounts, especially email, banking, and brokerage. Email is the gateway. If that is compromised, everything else follows. Second, use a reputable password manager and ensure every account has a unique, complex password. Password reuse is still one of the most common causes of account compromise. Third, keep systems and software fully up to date. Most successful attacks exploit known vulnerabilities that already have patches available. Fourth, implement endpoint protection that goes beyond traditional antivirus. Modern threats, especially those leveraging AI and social engineering, are designed to bypass legacy tools. Fifth, maintain reliable backups of important data, stored separately (cloud or offline). This protects against ransomware and system failure. Equally important is awareness. Many attacks today are not technical—they rely on convincing the user to click, download, or provide access. Be cautious with unsolicited emails, links, and attachments, even if they appear legitimate. Security at home should be treated with the same seriousness as in a business environment, especially when financial and personal information is involved.