THIS is the challenge that ethical hackers face when they are able to breach environments and report it to these businesses. Are they received well? Sometimes yes, and mostly, no. No one is taking anything or charging for the services. It's a hobby for most of these researchers and the thrill of finding vulnerabilities is often a reward in itself.

Case in point: We had an awesome opportunity to speak with Higinio "W0rmer" Ochoa and two of his collaborators, Robert "Rej_ex" Willis and "Wabafet," all members of the research collective, "Sakura Samurai." Sakura Samurai has gained a reputation for successfully breaching multiple high-profile government targets. Most recently, we discuss the story of their involvement with John Deere, as highlighted in the Forbes article by contributer Paul F. Roberts, "Under Scrutiny, Big Ag Scrambles To Address Cyber Risk."

Chat with W0rmer, Regex, Wabafet Below:

Twitter:

W0rmer: @0x686967

Regex: @rej_ex

Wabafet: @wabafet1

This week's Ransomware Battleground chat features special guest, Karen Rhodes, Chief Technologist at Hewlett Packard Enterprise to share her insights and guidance on educating family on friends on the very real threats affecting everyone.

Highlights:

• Stay up to date on updates and practice good discipline on scheduling and checking for updates
• Password storage tools may be convenient, but understand the risk if those applications are compromised.
• ASK FOR HELP

This week, Syya and Paul briefly chat on a recent episode of Last Week Tonight where the host, John Oliver, lays out the very real threats that ransomware poses and the repercussions with Ransomware as a Service, Double Extortion and let's cringe together - toys.

Ransomware is Mainstream! But will anything change?

Ransomware Kill Switch™ can be used by the incident response to control/contain the blast radius in real time using the preventive and proactive zero trust approach. However, when the detections failed on zero day exploits, how can you use Ransomware Kill Switch™ in the post exfiltration mitigation phase?

Airgap provides an agentless Anti-Ransomware platform to stop the spread of malware in the enterprise network. Our industry’s first Ransomware Kill Switch™ locks down your most critical network assets at the first indication of compromise with complete control and policy enforcement over the device-to-device and device-to-application communication.

Well hopefully ransomware attacks aren't tied to soaring temperatures because it's looking like over 120% increase in attacks from 2020. No one is immune and it's up to educating the broader population to understand that ANYTHING can be suspect. Even if it's "just" a clickbait website.

Poul Frederiksen and Syya Yasotornrat catch up and let off a little steam on how much hackers really chaps Syya's hide.

It's no longer a question of what is ransomware. The question is now: How many people do you know that has been a victim of ransomware?

In this episode, we will demonstrate the post-ransomware incident use cases and how you can automate in-network detection and Ransomware incident response to isolate inside the enterprise network.

The integrated Zero Trust enterprise access solution provides organizations an advanced level of visibility and turns every connected endpoint into a Zero Trust endpoint to stop Ransomware lateral movement before they spread.

Hear how our joint solution can provide your organization:

* Advanced Ransomware detection and incident response with of Ransomware Kill Switch™

* Consolidated SOC threat intelligence and analytics

* End to end visibility and intelligence into malware behaviors

Thanks to sponsor Airgap Networks!

Airgap provides an agent-less Anti-Ransomware platform to stop the spread of malware in the enterprise network. Our industry’s first Ransomware Kill Switch™ locks down your most critical network assets at the first indication of compromise with complete control and policy enforcement over the device--device-application communication. Visit them at Black Hat 2021 USA in Vegas or Virtual. For expo passes, contact info@airgap.io.

Online games and specifically the Massive Multiplayer (MMO) games, experience multiple attacks from hackers, platform competition that try to block players’ access to the gaming platforms, as well as cheating players that can attack other players slowing their connection, while gaining a competitive advantage. These attacks can take the entire game offline. Can you visualize losing $400,000 dollars per hour (Source).

In this series of Ransomware Battleground, we will try to:

- Know the eSports industry and the leading MMO game developers

- Understand where the “crown jewels” assets such as in-game currency, identity information, and gaming development resources…are hosted

- Who is Egregor Ransomware Crew? Is it as RaaS? And how do they hack into corporate networks and deploy the ransomware?

- What is their extortion behavior and ransom demand and Crypto tracing?

- Is it too far fetched to say Zero Trust is needed for eSports development?

- Got Ransomware Kill Switch for eSports?

Let's close the final round of this Battleground series with Syya and Nigel. Join us!

Online games and specifically the Massive Multiplayer (MMO) games, experience multiple attacks from hackers, platform competition that try to block players’ access to the gaming platforms, as well as cheating players that can attack other players slowing their connection, while gaining a competitive advantage. These attacks can take the entire game offline. Can you visualize losing $400,000 dollars per hour (Source).

In this series of Ransomware Battleground, we will try to

Know the eSports industry and the leading MMO game developers

Understand where the “crown jewels” assets such as in-game currency, identity information, and gaming development resources…are hosted

Who is Egregor Ransomware Crew? Is it as RaaS? And how do they hack into corporate networks and deploy the ransomware?

What is their extortion behavior and ransom demand and Crypto tracing?

Is it too far-fetched to say Zero Trust is needed for eSports development?

Let’s open up a new conversation series with Syya, Poul, Nigel and Big-Time Higgs. Join us!

In this series of Ransomware Battleground, we will try to

- Know the eSports industry and the leading MMO game developers

- Understand where the “crown jewels” assets such as in-game currency, identity information, and gaming development resources…are hosted

- Who is Egregor? Is it as RaaS? And how do they hack into corporate networks and deploy the ransomware?

- What is their extortion behavior and ransom demand and Crypto tracing?

- Is it too far-fetched to say Zero Trust is needed for eSports development?

Are there reasons to believe that an incident involving office security cameras can impact your customers? How do you defend Device Cybersecurity?

In this Battleground, we will dig into the cybersecurity implication of unmanaged devices in organizations and how zero trust isolation policies can be put in practice to prevent lateral threats from propagating in the network.

What is a ransom DDoS attack?

What is a DDoS attack?

How does a ransom DDoS attack work?

What is the difference between a ransom DDoS attack and ransomware?

How you can stop the attacks with identity-based segmentation and Zero Trust Isolation?

In this talk, we will cover:

- What are Big Game Hunting tactics? And what did ransomware operator behavior change during Covid-19? (from POS to ESXi)

- How do you defend encrypting virtual infrastructure in your corporate network? Credential harvesting and payload ingesting?

- Why is Agentless Zero Trust Isolation and Ransomware Kill Switch the answer to stop Hypervisor "Jackpotting"?

kbpUKfNovr9jO2GOdNrY

What is really happening here? What tactics and measures should you consider in the ransomware battleground for attacks like this? It is an honor to welcome Information Security Evangelist, Mr. Jeff Man, to join us and discuss this very timely topic.

- From big game hunting to cyberwar, what are the evolving tactics of recent incidents and breaches?

- State of Zero Trust practices in the real world, particularly in the public sector?

- How do you detect and stop the propagation with Zero Trust Isolation?

The exponential growth of ransomware creates a constant threat to end-users and corporate ITs. Regardless of your business size, industry, or location, preventing ransomware is a critical task to your organization, both from a financial perspective and for your brand reputation.

This episode discusses recent intelligence about how threat actors deploy ransomware against various industry targets, as well as how the sophistication of ransomware is continuing to evolve.

- Top 5 ransomware cyber threat patterns and trends

- Adapting to new security mindset and network designs

- Using zero trust with auto-discovery, security operational visibility, and instant countermeasures to stop ransomware propagation on points of exposure

These new strains of ransomware make prevention and planning more important than ever to prevent ransomware attacks. Concurrently, ransomware authors are increasingly selling access to ransomware as service offerings that increase the number of attackers and the variants of malware.

In this chat, we will:

- Review examples and common denominators of known RaaS attack variants: Ryuk, Lockbit, REvil, Egregor...

- Go over how fast you can detect and neutralize the RaaS propagation

- Understand security data intelligence to configure adaptively for Zero Trust access

- Learn how Zero Trust Isolation to protect your organization against RaaS attacks

In this episode of Ransomware Battleground, we will go over the root causes why Infecting the legitimate software updates of a widely used vendor can be an effective way to covertly inject malware into a large number of organizations. According to Dark Reading, over 18,000 organizations possibly compromised in massive supply-chain cyberattack, nation-state attackers used poisoned SolarWinds network management software updates to distribute malware; US government orders federal civilian agencies to immediately power down the technology. Let's break it down with the CISO experts in public sector - Mike Davis and Simon Mijolovic. Ritesh Agrawal, CEO of Airgap Networks, will brainstorm the Zero Trust Security guidelines among all devices and applications.

Vinay Adavi, Product Manager, Airgap helps put Ryuk into perspective and advises on best practices to protect from these increasingly sophisticated attacks.

It's not a surprise that as we have become increasingly dependent on the convenience of technology, the potential of getting hacked increases exponentially.

We like our conveniences and we want gratification immediately. But what are the implications of opening our personal and professional lives? What do bad actors want with the our data? How are they creating havoc and how much money and time are we losing to these characters? Do we even own our data anymore? Most importantly, where do we go from here?

Syya Yasotornrat and Poul Frederiksen chat about their background, how they met and what we can expect from Ransomware Battleground.

For more information on sponsor, Airgap Networks, check them out on their KILL SWITCH Here: https://f.hubspotusercontent10.net/hubfs/6848218/Solution%20Brief%20-%20Airgap%20Ransomware%20Kill%20Switch.pdf