Ransomware attacks on businesses, governments and individuals are unfortunately on the rise, and are currently considered the main cybersecurity threat..

Most ransomware attacks start via an email with an infected attachment or via a link to an infected web page. When opening the attachment or browsing the website, the ransomware is installed unnoticed. This can take the entire corporate network hostage.

This new afternoon seminar provides participants with the necessary insights into preventing, responding to and curing ransomware. After all, prevention is much better (and cheaper) than the cure.

This session will be presented live again on September 28th, allowing us to address specific questions from the participants. Don't be afraid to share juicy details, this session is not recorded.

What do you learn from this training ?

In this practical and pragmatic training, we zoom in on the various vulnerabilities associated with ransomware, how we can limit the risks as much as possible and map attack attempts.

You will learn, among other things:

• What ransomware is, and how it works
• Why and how ransomware infects your systems
• Why the use of poorly secured laptops, Wi-Fi networks, VPNs, cloud applications, ... by domestic workers further increases the risk of peripheral malware and cybersecurity in these corona times, and what we can do about it
• What types of ransomware exist (according to ID Ransomware there are more than 1017 variants)
• How to prevent ransomware and limit possible damage
• What to do if ransomware still crashes
• Or (and when) your hostages pay
• How to draw up a ransomware response plan

Who is this training for ?

This training is aimed at both security professionals and:

• IT and digital business professionals
• Business continuity and Incident response teams
• Network administrators
• Infrastructure and platform managers

 Full Programme

Why do we organise this training ?

This is a very up-to-date seminar: Ransomware has become an even bigger problem due to covid19 because of the use of poorly secured laptops, WiFi networks, VPNs, cloud applications, ... by home workers.

This new training from @itworks is a response to the many news stories about how ransomware is completely shutting down a company. Prevention is better than cure, and in this afternoon seminar we want to zoom in very pragmatically on the various vulnerabilities associated with ransomware and how we can minimize the risks and map attack attempts.

Timing:

• So what is ransomware ?
• What is the difference with a classic virus?
• Which variants are there?
• Who's behind it?
• What is the impact on your organization?
• Examples of known ransomware attacks

• Level 1: People:
• How can we train our IT users to detect, report and block ransomware. What are typical examples of ransomware attacks such as phishing, web based attacks, USB dropping, drive-by-download and how we can improve the human firewall and continuously focus

• Level 2: Technology:
• How can we protect our infrastructure, networks and applications against ransomware, how can we technically detect, block and report attack attempts? This is only possible by building in sufficient security controls at various layers in the architecture, providing disaster recovery and monitoring. Security must evolve from a reactive fact to a proactive operation
• Level 3: Process:
• Which processes should an organization introduce in order to properly tackle this in the event of a ransomware attack. Communication with end users, implementation of an incident response plan, communication with the Cyber ​​Crime Unit of the federal police, communication with the media, ... to limit the damage as much as possible and to tackle the necessary actions in a coordinated manner with a well-prepared plan

• How do you do a "digital fire drill"?
• Roadmap, Practical tips and tricks, Case studies, ...
• Lessons from practice regarding Tools and Planning

The Ransomware Wall of Shame:

These are some of the large and medium-sized companies that were recently taken hostage via ransomware (some articles in Dutch):

• Asco,
• Picanol,
• University of Maastricht,
• a university hospital,
• ISS,
• Garmin,
• Sopra Steria,
• Software AG,
• Aveve,
• automation company Pilz,
• the community of Willebroek,
• helicopter maker Kopter, retailer Kmart, Vancouver Metro,
• WestRock Manufacturing,
• oil pipelines operator Colonial Pipeline,
• meat processor JBS,
• insurer CNA Financial,
• managed service provider ITxx, etc,
• companies are now even indirectly attackedf via IT solutions developer and VSA (remote network management) provider Kaseya,
• this novel approach to distributing ransomware is well-described in this great article. .
  Register Now »

   Speakers

  
  
  Erwin Geirnaert (Shift Left Security)
  

  Erwin Geirnaert Co-founder and Chief Application Security Architect at Shift Left Security, a start-up that helps companies to build, develop and operate secure applications running in Amazon Web Services, Microsoft Azure and Google Cloud Platform. We provide solutions to continuously monitor the overall security posture of your application, provide assistance on how to solve and mitigate vulnerabilities and help to become compliant.

  Erwin is the former Co-founder and Chief Hacking Officer at ZIONSECURITY, the European application security company.

  Erwin is a specialist in J2EE security, .NET security, API Security and web services security. He has more than 20 years experience in executing security tests aka penetration testing of web applications, mobile apps, APIs and thick client applications. He also architects secure e-business projects for banks, web agencies and software companies, and is a recognized application security expert and speaker at international events like Javapolis, LSEC, OWASP, Eurostar, Infosecurity, ...

  Register Now »

  Questions about this ? Interested but you can't attend ? Send us an email !