VIDEO
Black Hat USA 2022 Ransomware Response Boot Camp by LMG Security
Video Summary:
Ransomware is a global epidemic. In the blink of an eye, everything from financial records to emails to file shares have been encrypted, possibly never to be seen again. Today, ransomware is often the last stage of a data breach, launched by criminals after they have already stolen massive volumes of data. Exposure threats are on the rise, as criminals threaten to publish data if they don't receive their payment. Learn to respond to ransomware effectively and efficiently. In this hands-on boot camp, we'll show you modern ransomware strains in action and point out key indicators that can facilitate early detection. Next, we'll delve into core elements of the initial response: triage, evidence preservation, scoping, containment and mitigation. You'll learn practical ransom negotiation tactics, and analyze how cybercrime is different from traditional kidnapping negotiations. Finally, we'll study the decryption process, including infected decryptors, double-encryption issues, and other common challenges. Hands-on labs are included throughout the class. You'll gain experience identifying ransomware precursors and indicators of compromise, preserving evidence, and tracking down patient zero. Practice piecing together the full scope of lateral movement/privilege escalation throughout the network. Then, fire up a sandbox so you can analyze and decrypt your files using a structured, mutistage process designed to reduce the risk of reinfection. Along the way, we will provide business context and communication tips that can help you effectively support legal teams, executives, public relations teams and more throughout the ransomware response process. Register for the 2-day class at Black Hat USA 2022: www.LMGsecurity.com/BH2022bootcamp
Ransomware is a global epidemic. In the blink of an eye, everything from financial records to emails to file shares have been encrypted, possibly never to be seen again. Today, ransomware is often the last stage of a data breach, launched by criminals after they have already stolen massive volumes of data. Exposure threats are on the rise, as criminals threaten to publish data if they don't receive their payment. Learn to respond to ransomware effectively and efficiently. In this hands-on boot camp, we'll show you modern ransomware strains in action and point out key indicators that can facilitate early detection. Next, we'll delve into core elements of the initial response: triage, evidence preservation, scoping, containment and mitigation. You'll learn practical ransom negotiation tactics, and analyze how cybercrime is different from traditional kidnapping negotiations. Finally, we'll study the decryption process, including infected decryptors, double-encryption issues, and other common challenges. Hands-on labs are included throughout the class. You'll gain experience identifying ransomware precursors and indicators of compromise, preserving evidence, and tracking down patient zero. Practice piecing together the full scope of lateral movement/privilege escalation throughout the network. Then, fire up a sandbox so you can analyze and decrypt your files using a structured, mutistage process designed to reduce the risk of reinfection. Along the way, we will provide business context and communication tips that can help you effectively support legal teams, executives, public relations teams and more throughout the ransomware response process. Register for the 2-day class at Black Hat USA 2022: www.LMGsecurity.com/BH2022bootcamp
