4 Ransomware Countermeasures – Windows Endpoints, Identity, and SaaS

In the previous chapter, we looked at how we can use different cloud-based services such as Microsoft Sentinel and Microsoft Defender for Cloud to provide us with security monitoring and vulnerability assessment capabilities.

In this chapter, we will focus in more depth on different countermeasures that can help us reduce the risk of ransomware attacks on some of the main attack vectors, namely endpoints, identity, email services, and network attacks.

In this chapter, we will cover the following topics:

Securing Windows endpoints using Microsoft Intune with Azure AD endpoints
Following attack surface reduction rules and protecting the browser using mechanisms such as SmartScreen ...

Get Windows Ransomware Detection and Protection now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Windows Ransomware Detection and Protection by Marius Sandbu

4

Ransomware Countermeasures – Windows Endpoints, Identity, and SaaS

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly