South Africa Security and Compliance User Group

Expand all | Collapse all

Ranscam Ransomware threat-Symante doing anything?

  • 1.  Ranscam Ransomware threat-Symante doing anything?

    Posted 07-15-2016 05:27 AM

    Just saw this article:

    http://www.symantechost.com/ranscam-ransomware-deletes-victims-files-outright/

    Ranscam latest ransomware.



  • 2.  RE: Ranscam Ransomware threat-Symante doing anything?

    Posted 07-15-2016 08:48 AM

    @ThaveshinP,

     

    How is the payload being delivered (a) drive by download (i.e. then we should have countermeasure with Download Insight+Protection), (b) e-mail attachment (i.e. then several SEP 12.1 technologies come into play – including those with Symantec Messaging Gateway). Symantec is already on record for CryptoLocker a/k/a Ransomware nefariousness. See Ransomware Do's and Don'ts: Protecting Critical Data and Ransomware: How to stay safe. Behind the con of the SEPM’s I administer we are FULL THROTTLE with all protection SEP 12.1 (RU6, MP5) technologies and remain in proactive, not reactive mode 24/7/365.



  • 3.  RE: Ranscam Ransomware threat-Symante doing anything?

    Posted 07-18-2016 03:18 AM

    I wish Symantec would include web filtering (safe sites) as part of the SEP package to prevent users from accessing sites to click.....