All times are listed below in Central Standard Time (CST)
Note: The US Daylight Savings Time change will occur on March 14. All sessions after that date are listed in Central Daylight Time (CDT).
28289 - Combating Ransomware and Other Malicious Attacks
Track: Enterprise Data Center
Ransomware is the current scourge of the entire IT industry. This session shows you the path of attack, as well as preventative measures you can take to avoid being held for ransom.
Ransomware, the word, strikes fear into the hearts of IT executives, and so it should be. Historically, mainframes have been viewed the most secure platform in the enterprise, immune to such attacks. Many enterprise security experts know every platform, including the mainframe, is vulnerable.
For decades, access control and firewalls have been the backbone of cyber security infrastructure. These tools form excellent perimeter security, but now cyber-criminals have simply moved inside. Using techniques like phishing or simply buying legitimate credentials on the dark web, criminal get in. Now they are indistinguishable from a real users. That’s why Forrester says “perimeter security has failed”.
A ransom attack is one of the easiest malicious actions to perpetrate, because once you are inside, all you have to do is encrypt something valuable. Modern attacks compromise backups, before the real attack takes place. As a result, bank resiliency and other standards specify checksum verification.
This session focuses eliminating security gaps with interoperation of existing security tools, to provide early warning and a quick incident response when time is critical.