accent 1 accent 2
CPE Cyber Attack Lab #4

Big-Game Ransomware Attack Simulation

Wed, December 2 | 10:00 AM ET

Join us to see exactly how a big-game ransomware attack works and how to defend against it in our attack-and-respond simulation!

Ransomware gangs dwell in networks for months, stealing data and leaving backdoors before they start dropping ransom notes.

Can't attend? Register anyway - the session will be recorded and distributed to all registrants! If you would like ISC2 CPE credits for attending, please make sure to submit your ISC2 member number in the form

+1 CPE

Register Now

About this webinar

We'll teach you how big-game ransomware gangs operate and showcase common tactics, techniques, and procedures (TTPs) that will help you prepare for an attack.

Then we'll run a step-by-step attack simulation and show you how our IR team would respond using the Varonis alerts that trigger at each and every phase.

Here's an overview of the attack:
  • Trick a user into opening an infected Word document
  • Perform network recon using reverse DNS lookups
  • Kerberoast a service account that has admin privileges
  • Find and exfiltrate sensitive files using HTTP POST commands
  • Deploy the Maze ransomware payload to encrypt a file
Ian McIntyre-1
Ian McIntyre Senior Security Analyst, Varonis

Ian McIntyre is a Senior Security Analyst on the Security Architecture and Incident Response team at Varonis. In his position at Varonis, Ian helps customers understand and implement the full scope of Varonis’ detection and alerting capabilities, as well as assisting customers through cybersecurity investigations. Specific areas of interest include training SOC teams on how to analyze and triage Varonis alerts, and building full activity timelines of suspected insider threats.


Infrastructure Manager, US Federal Credit Union

Want to see Varonis in action?