The Essential Eight is the existing Top 4, plus 4 new ASD recommendationsAustralian Signals Directorate Top 4 (Existing)
- Application whitelisting of permitted/trusted programs, to prevent execution of malicious or unapproved programs including executables. Scripts, and installers.
- Patch applications - e.g. Java, PDF viewer, Flash, web browsers and Microsoft Office. Patch/mitigate systems with "extreme risk" vulnerabilities within two days. Use the latest version of applications.
- Patch operating system vulnerabilities. Patch/mitigate systems with "extreme risk" vulnerabilities within two days. Use the latest suitable operating system version. Avoid Microsoft Windows XP.
- Restrict administrative privileges to operating systems and applications based on user duties. Such users should use a separate unprivileged account for email and web browsing.
- Disable untrusted Microsoft Office Macros so malware cannot run unauthorized routines.
- Block Web browser access to Adobe Flash, web advertisements, and untrusted Java code on the Internet. If possible, uninstall all browser plugins that are not required.
- Multi-factor authentication for all systems when possible to make it harder for an adversary to access a system and information
- Daily backup of important data securely and offline to ensure even if data is compromised, protected versions are available for recovery.