Monday, May 15, 2017

WannaCry - It's Time To Get Back To Basics

I've been asked to comment on the WannaCry Ransomware by a few groups. Here are my thoughts on what happened and what the logical next steps are. You can read the blog post here:
Honestly, this is a wake-up call for the security community to "Get Back to Basics". Plain and simple. 

Friday, May 5, 2017

Defeating Ransomware With A Little Help From Your Friends

We all know this so it doesn't have to be said, but I'm going to say it anyway: Ransomware sucks. For anyone who's suffered at the hand of attackers making money by holding your personal or business data hostage, you know just how much it sucks. The issue doesn't seem to be going away either, but getting exponentially more difficult to deal with as attackers hone techniques and companies continue to deal with limited security resources.

Last month I worked with CCSI to write a whitepaper on behavioral analytics and machine learning and how it can be applied to detect and prevent attackers in your network. On May 11th, CCSI is hosting a webinar to review this whitepaper and the role of how MSSP's can use this technology to assist you with becoming more secure.

The key questions to ask when attempting to defeat ransomware are:

1. Will your current technology detect ransomware in your network?
2. If it does detect it will it prevent it?
3. How do you respond to these notifications? Especially during off-hours or with a limited staff.

This webinar reviews the role of MSSPs in this space and how they assist your organization become more resilient by using this technology to detect/prevent/respond to ransomware in your network 24x7x365.

There is limited space for this webinar so sign up soon: