Beyond DarkSide: How to Catch & Stop Next-Gen Ransomware

Presented by

Mark Bowling, VP of Security Response; Josh Snow, Sr. Sales Engineer; Mike Campfield, VP of International Sales

About this talk

The temporary shutdown of Colonial Pipeline––a critical pipeline providing nearly half of the gasoline supply for the East Coast of the United States––just over a week ago brought sophisticated ransomware bursting back into the spotlight. Panicked drivers hoarded gasoline as prices skyrocketed, and security teams were pummeled with the question: "What are you doing so this doesn't happen to us?" Join Mark Bowling, VP of Security Response at ExtraHop and 20-year veteran of the FBI cybercrimes division, Mike Campfield, and Josh Snow as they discuss: - Hallmarks of the DarkSide ransomware variant, including both exfiltration and encryption. - How to detect early indicators of compromise and respond before it gets out of control. - How industrial control systems and operational technology fit into the security landscape and what President Biden's announcement means for future attacks. - How to build a security posture that's both resistant and resilient to sophisticated ransomware operations and other advanced threats. Mark will also share lessons learned from his experience in the FBI and as a cybersecurity consultant on the best practices that set organizations apart when it comes to thwarting ransomware.

Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (184)
Subscribers (9633)
The prevention and protection model of cybersecurity isn’t working: between the cloud, IoT, and the sheer pace of change, the enterprise is no longer built to be walled in. This channel provides educational webinars to help SecOps (SOC) and NetOps (NOC) teams, from CIOs and CISOs to analysts and practitioners, change their perspective in order to identify, investigate, and respond to threats across the modern attack surface. We explore how cloud-native network detection and response (NDR) provides the complete visibility, real-time threat detection, and intelligent response you need to secure your hybrid environment. You’ll also find product information about ExtraHop Reveal(x) which enables you to: Eliminate blind spots: Cover 100% of your hybrid environment, Detect what matters: Find threats 95% faster, and Act quickly: Respond to breaches 70% faster. Learn more at