In this episode I speak with Josh Geno about what it's like to be in a ransomware attack. Josh is one of the Lead Security Engineers for Spectrum Health. Josh has had the distinction of being in a ransomware attack as well as having to 'clean up' after one. Josh has created a Ransomware Playbook that is open for use by anyone and is geared to sharing knowledge/lessons learned.
Talking Points:
- Walk Through The Incident
- Prepare
- Detect
- Triage/Prioritize
- Analyze
- Contain/Eradicate/Recover
- Post-Incident
- How would you use these documents in your organization?
- Can be used as Net New or Augmenting (GAP Analysis)
- A scenario were Company A was already affected and didn't know it
- Read the instructions first
- Flowchart will make 1000% more sense if you read the instructions
Dropbox File Links:
Ransomware Playbook Instructions Link
Ransomware Playbook Link