I've Been Hit By Ransomware: Now What?
Summary
This BrightTALK InfoSec session provides guidance for organizations that have experienced a ransomware attack. It covers a range of topics including the history and common forms of ransomware, the costs and mitigation strategies, insurance, prevention, legal implications of payment, and disaster recovery. The session also touches on threat intelligence and investigation.
IFF Assessment
Ransomware attacks represent a direct and significant threat to organizations, causing data loss, operational disruption, and financial damage.
Defender Context
Ransomware remains a persistent and evolving threat, requiring defenders to maintain robust prevention, detection, and response capabilities. Organizations should have well-defined incident response plans that include steps for containment, eradication, recovery, and post-incident analysis. Staying updated on the latest ransomware tactics and threat intelligence is crucial for effective defense.