CPE Cyber Attack Lab #4

Big Game Ransomware

Wed, June 30 | 10:00 am ET

Join us to see exactly how a big-game ransomware attack works and how to defend against it in our attack-and-respond simulation!

Ransomware gangs dwell in networks for months, stealing data and leaving backdoors before they start dropping ransom notes.

We'll teach you how big-game ransomware gangs operate and showcase common tactics, techniques, and procedures (TTPs) that will help you prepare for an attack.

Then we'll run a step-by-step attack simulation and show you how our IR team would respond using the Varonis alerts that trigger at each and every phase.

+1 CPE

Register Now

About this webinar

Here's an overview of the attack:

Trick a user into opening an infected Word document
Perform network recon using reverse DNS lookups
Kerberoast a service account that has admin privileges
Find and exfiltrate sensitive files using HTTP POST commands
Deploy the ransomware payload to encrypt file

Ian McIntyre Senior Security Analyst, Varonis

Ian McIntyre is a Security Analytics Manager on the Security Architecture and Incident Response team at Varonis. In his position at Varonis, Ian helps customers understand and implement the full scope of Varonis’ detection and alerting capabilities, as well as assisting customers through cybersecurity investigations. Specific areas of interest include training SOC teams on how to analyze and triage Varonis alerts, and building full activity timelines of suspected insider threats.

"Having Varonis is a continually eye-opening -- and sometimes alarming -- experience. A few months ago, a non-HR user opened up an HR folder that contained sensitive employee salary information. With Varonis, I was able to track down the user and review exactly what they had accessed and changed."

Infrastructure Manager, US Federal Credit Union

Want to see Varonis in action?