Ransomware: What Emulating Ransomware Groups Shows About Your Defenses

Logo
Presented by

David Grout, CTO EMEA, Jay Christiansen, Principal Consultant, Red Team Operations, Mandiant Consulting

About this talk

One of the hardest questions to answer for any organization is “Could we actually detect a ransomware attack before it’s too late?” With attacker sophistication increasing all the time, there is no guarantee that the policies and plans of yesteryear will still work, nor that the products and automated detections will get there in time. The only way to know for sure is to learn from the worst and carry out a sophisticated cyber-attack wearing the mask of a ransomware group attacker. Using the unmatched Threat Intel, the FireEye Mandiant Red Team have been able to conduct such engagements using the tools and techniques of the world’s leading ransomware threat actors and find those spaces between the defensive dream and risk-filled reality that could cost you dearly. In this session, our experts reveal some of the results from these engagements which can be adopted into your ongoing security program.

Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (392)
Subscribers (50744)
Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through data science and automation to empower over 40,000 business and government customers. More at www.trellix.com.