BLOG

Avoiding Ransomware

by | Sep 8, 2020 | Blog

Many maturing security operations centers within medium and large enterprises will indicate that ransomware is often the biggest “threat” that keeps them up at night. Ransomware is not a threat; it is a capability criminals use with an intent of monetizing illegal access to an enterprise’s network and data.

In many cases, an actor can effectively use ransomware due to a lack of basic “blocking and tackling” in cybersecurity operations – poor processes in people and technology including but not limited to:

  • Lack of Network Segmentation
  • Inability to Conduct Appropriate Patch Management
  • Lack of Effective Monitoring and Alerting Technology
  • Lack of Manpower or Understanding what Alerts to Schedule
  • Inability to Capture and Analyze Appropriate Logging Inside the Environment
  • Lack of Visibility Into What’s Occurring Against an Organization Outside the Firewall
  • Poor Access Control to Critical Data and Production Environments Including Cloud Storage

Crypsis Group Vice President Art Ehuan provided a great case study of a major breach resulting from a holding company’s inability to properly segment three subsidiary networks on the most recent episode of the Nisos Cyber5® podcast. Listen below for his story.

Adversary Insights℠ RFI Subscription
Timely response to client-specific requests for finished intelligence on cyber and physical risks
OSINT Monitoring & Analysis
Client-specific curation and analysis of dark web, open source, and social media data
External Attack Surface Monitoring & Analysis
Defense against attacks to your digital perimeter and internal environment
Executive Shield
Discovery of threats to key personnel with attribution and PII takedown
Threat Landscape Assessment
Analysis of external threats to assess level of risk and identify methods of mitigation
Zero Touch Diligence®
Discovery and analysis to assess risk for investments, IPO, M&A, and third parties
Event-Driven Intel Investigation
Multidimensional security fact-finding in response to adversary behavior