eSentire White Logo

Incident report | Dec 02, 2020

Defending Against Modern Ransomware: Lessons from the SunWalker Incident

Defending Against Modern Ransomware Lessons from the Sun Walker Thumbnail 520x670

Download this threat report:

In this threat report, we look at recent changes in ransomware attacks and what that means for organizations when they are targeted. We walk through a real ransomware attack that an eSentire customer faced in September 2020 and how our team responded.

In recent years, a ransomware-as-a-service market has lowered the entry barriers for prospective cybercrime entrepreneurs. This new paradigm promises to create a larger number of ransomware attacks against legitimate organizations.

Against such a threat, having the best technological defenses in place is necessary but insufficient. The right technology can give you the capability to detect an attack and put up a fight, but human expertise is the weapon you need to succeed.

Key Insights

  • Competition in cybercrime marketplaces drives innovation and efficiency, rewarding ransomware gangs and making attacks more dangerous
  • Defending against a powerful combination of human attackers equipped with advanced technologies requires more than advanced technologies; that is, no defense is complete without expert threat hunters working on your behalf to stop threats
  • The SunWalker incident was ultimately stopped by a multi-layered defensive posture that combined people, processes and technology in a strong Managed Detection and Response (MDR) solution
Defending Against Modern Ransomware Lessons from the Sun Walker Thumbnail 520x670