From 1174cb4b333f2ebca7c124e6a51b379eac330ea7 Mon Sep 17 00:00:00 2001
From: Joe Davies <josephd@microsoft.com>
Date: Fri, 4 Jun 2021 13:02:07 -0700
Subject: [PATCH] Update ransomware-malware.md

---
 .../intelligence/ransomware-malware.md               | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/intelligence/ransomware-malware.md b/windows/security/threat-protection/intelligence/ransomware-malware.md
index 00bd93579d..2eee3a6421 100644
--- a/windows/security/threat-protection/intelligence/ransomware-malware.md
+++ b/windows/security/threat-protection/intelligence/ransomware-malware.md
@@ -66,7 +66,7 @@ To provide the best protection against ransomware attacks, Microsoft recommends
 
 2. Deploy regular hardware and software systems patching and effective vulnerability management
 
-   A vital defense against cybersecurity attacks is the application of security updates and patches as soon as the software vendors release them. 
+   A vital defense against cybersecurity attacks is the application of security updates and patches as soon as the software publishers release them. 
 
    A prominent example of this failure was the WannaCry ransomware events in 2017, one of the largest global cybersecurity attacks in the history of the internet, which used a leaked vulnerability in Windows networking Server Message Block (SMB) protocol, for which Microsoft had released a patch nearly two months before the first publicized incident. 
 
@@ -74,9 +74,9 @@ To provide the best protection against ransomware attacks, Microsoft recommends
 
    **HOW:** Use [update channels](/microsoft-365/enterprise/deploy-update-channels-examples) for recommendations on updates for Windows 10 and Microsoft 365 Apps for Enterprise (Windows 10).
 
-3. Use up-to-date antivirus and an endpoint detection and response (EDR) solutions
+3. Use up to date antivirus and an endpoint detection and response (EDR) solutions
 
-   While owning an antivirus solution alone does not ensure absolute protection against viruses and other advanced computer threats, it’s very important to ensure that your antivirus solutions are kept up-to-date with your software vendors. 
+   While owning an antivirus solution alone does not ensure absolute protection against viruses and other advanced computer threats, ensure that your antivirus solutions are kept up to date with your software publishers. 
 
    Attackers invest heavily in the creation of new viruses and exploits, while vendors are left playing catch-up by releasing daily updates to their antivirus database engines. 
 
@@ -88,11 +88,11 @@ To provide the best protection against ransomware attacks, Microsoft recommends
 
    **HOW:** To effectively reduce your credential attack surface, use Microsoft support for [Azure Multi-Factor Authentication (MFA)](/azure/active-directory/authentication/concept-mfa-howitworks) to require stronger authentication for privileged accounts, [Azure Privileged Identity Management (PIM)](/azure/active-directory/privileged-identity-management/) for just-in-time use of privileged accounts, and [Privileged Access Management (PAM)](/microsoft-365/compliance/privileged-access-management-solution-overview) for just-in-time access to Microsoft 365 tasks that need elevated permissions.
 
-5. Implement effective application allow lists
+5. Implement effective application allowlists
 
-   It’s very important as part of a ransomware prevention strategy to restrict the applications that can run within an IT infrastructure. Application allow lists ensure only applications that have been tested and approved by an organization can run on the systems within the infrastructure. While this can be tedious and presents several IT administrative challenges, this strategy has been proven effective.
+   You need to restrict the applications that can run within an IT infrastructure. Application allowlists ensure only applications that have been tested and approved by an organization can run on the systems within the infrastructure. While this can be tedious and presents several IT administrative challenges, this strategy has been proven effective.
 
-   **HOW:** For Microsoft 365 apps, use [Azure AD Conditional Access](azure/active-directory/conditional-access/app-based-conditional-access) to require approved apps.
+   **HOW:** For Microsoft 365 apps, use [Azure AD Conditional Access](/azure/active-directory/conditional-access/app-based-conditional-access) to require approved apps.
 
 6. Regularly back up critical systems and files