Information security standards such as PCI DSS and ISO 27001 and regulations such as HIPAA and CMMC mandate system hardening as one of the most basic defenses against cyber intrusions. The reason for this should be obvious to anyone:

Read full article on Help Net Security