1. Application Control and whitelisting
It’s a no brainer but managing all executables, scripts, HTML applications, installers on any workstation is a good place to start. Preventing any unauthorized pieces of software can stop malware in its tracks from the start.
What is the solution?
Start with a list of whitelisted applications and work from there. Begin by checking each software and the latest versions. Most will have unsupported versions, and some will be unpatched if you haven’t done a check in a while. Take your time to investigate whether the latest versions are stable. In some cases, it’s a good idea to keep up to date with the news from vendors not to miss anything important.