Ransomware and Cyber Extortion: Response and Prevention

Chapter 5 Containment

Doing the best at this moment puts you in the best place for the next moment.

—Oprah Winfrey

Learning Objectives

Understand the goals of containment, and recognize why containment is important
Know strategies for making effective decisions in the containment phase
Learn tactics for reducing the risk of data exfiltration, halting file encryption/deletion, and resolving denial-of-service attacks
Gain familiarity with techniques for rapidly locking the adversary out of the victim’s environment

When a cyber extortion attack hits, you need to act quickly and contain the damage by halting any malicious activities such as encryption, unauthorized access, lateral movement, data exfiltration, denial-of-service attacks, command-and-control ...

Get Ransomware and Cyber Extortion: Response and Prevention now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Ransomware and Cyber Extortion: Response and Prevention by Sherri Davidoff, Matt Durrin, Karen Sprenger

Chapter 5

Containment

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly