Anatomy of WannaCry - Learning from the Ransomware that Paralyzed Global Systems

Presented by

Paul Schofield, Director, Partner Architecture & Enablement, enSilo

About this talk

In early May, the world witnessed a massive ransomware campaign that had a crippling effect on businesses in multiple industries across the globe. What made this ransomware, called WannaCry, so different than others was the ransomware’s ability to combine lateral movement. As opposed to other ransomware that typically infects a few devices within an organization, WannaCry had worm-like capabilities, spreading itself throughout the organizational network and hitting servers. While a “kill-switch” was used against WannaCry, organizations are undoubtedly going to continue suffering from WannaCry’s remnants within organizations. More so, the impact of WannaCry will motivate ransomware authors to start adopting lateral movement capabilities. Yet, with all the advanced malware techniques, security professionals are required to ensure the continuous operations of their systems. In this webinar, you will: - Learn about EternalBlue - the exploit in Microsoft's implementation of the SMB protocol that enabled WannaCry to propagate throughout the organization - Watch how WannaCry attacks an unpatched endpoint and encrypts data - Receive strategies and best practices to ensure that your systems are protected from advanced ransomware

Related topics:

More from this channel

Upcoming talks (26)
On-demand talks (1773)
Subscribers (184342)
This channel features presentations by leading experts in the field of information security. From application, computer, network and Internet security to access control management, data privacy and other hot topics, you will walk away with practical advice for your strategic and tactical information security initiatives.