Agile stops RansomwareAnantha Bangalore
schedule 8 months agoSold Out!
In recent days Ransomware attacks have become one of the worst cyber security threats. Ransomware is a class of malware, which denies access to user data by various means. Many businesses believe that paying the ransom is the most effective way of getting their data back. This in turn is fueling the rapid development of new strains of ransomware. Ransomware attacks started out by targeting individual users through phishing attacks. In recent years, as illustrated by the attack on the MedStar group of hospitals, new strains of Ransomware malware such as Loki and SamSam are targeting vulnerabilities in entire networks. This ransomware instead of targeting individual users, targets entire networks, by encrypting all the data they can access for a larger lump sum payout. Ramsomware such as SamSam exploits un-patched deployments of various popular application platforms such as JBoss. These new strains are also attacking backups.
One of the most effective ways to combat ransomware is to have a robust backup strategy While there is a tremendous focus on developing functionality fast, tasks such as Backup are not something developers focus on, even in organizations where Agile and DevOps is reasonably mature. Many times there is an assumption that Backup is occurring and it is someone else’s problem.
Given that the Ransomware attacks are not only targeting the primary systems, but also backups, it is critical to ensure there are effective backup strategies to ensure that there is no path from the primary systems to backup systems.
As part of the Agile development and DevOps lifecycle Enterprises need to focus on ensuring all data is being backed up in a safe and secure location that allows them to quickly recover from attacks. If backups are tightly integrated into the CI/CD pipeline, it enables enterprises to quickly recover from Ransomware or other attacks and ensures Operational Resiliency for the enterprise.
In this talk we will describe the dangers posed by various strains of Ransomeware to enterprises and show how Agile and DevOps can be used to effectively combat ransomware attacks.