Cybereason Black Hat Live: Preventing unknown ransomware attacks

Written By

Fred O'Connor

Ransomware has become the scourge of security analysts: it moves quickly and doesn’t need to encrypt all your files to be effective.

The only realistic method to detect ransomware is by observing what it does, or it’s heuristic behavior, which entails going over files, choosing the ones that look interesting, encrypting them and destroying the originals. The problem is legitimate programs like compression software and encryption applications display similar behavior.

So what can be done? Cybereason has identified the minute behavioral patterns that distinguish ransomware from genuine applications.

Stop by Black Hat booth 539 on Wed, Aug 3, 3pm and on Thu, Aug 4, 11am  to hear security researcher Uri Sternfeld discuss how behavioral heuristics can detect new types of ransomware and avoid generating false positives.

Fred O'Connor
About the Author

Fred O'Connor

Fred is a Senior Content Writer at Cybereason who writes a variety of content including blogs, case studies, ebooks and white papers to help position Cybereason as the market leader in endpoint security products.

Related Posts

Malicious Life Podcast: Russian Propaganda, Explained [ML B-Side]

Malicious Life Podcast: Russian Propaganda, Explained [ML B-Side]

In this B-Side episode, our Senior Producer Nate Nelson interviewed Dr. Bilyana Lilly - CISSP, a leader in cybersecurity and information warfare with over fifteen years of managerial, technical, and research experience, and author of "Russian Information Warfare" - about the Russian use of instant messaging and social media platforms such as Telegram and Twitter in their war efforts. Dr. Lilly discusses who they are targeting and the real-world impact their propaganda has on various populations. – check it out...

Malicious Life Podcast: LabMD vs. The FTC

Malicious Life Podcast: LabMD vs. The FTC

One day in 2008, Michael Daugherty got a call from cybersecurity company TiVera, saying private medical data of some 9000 LabMD patients had been discovered online. When Michael refused to pay for TiVersa's hefty "consultation fee", a ten-year legal battle began that led to the demise of LabMD, but also cost the FTC dearly.

Recent Posts

Stellar Discovery of A New Cluster of Andromeda/Gamarue C2
Cybereason Merges with Trustwave, Enhances MDR and Consulting Services
Insourcing versus Outsourcing

Categories

All Posts