There has been an uptick in sophisticated ransomware intrusions where the Active Directory is compromised, according to a recent panel discussion. (““Active Directory” by arrayexception is licensed under CC BY-SA 2.0)
The cybersecurity community paid close attention to ransomware actors’ escalation of business tactics in the last year, including double extortion, forming cartels and contacting individual victims directly.
But one must not overlook some of the newer tools and technical strategies that these adversaries recently added to their repertoires in order to hinder and complicate forensic investigations. A panel of IT experts discussed some of these latest challenges in a ransomware session held last week at the 2021 Incident Response Forum Masterclass.
For instance, Aravind Swaminathan, partner at the law firm Orrick, noted an uptick in sophisticated ransomware intrusions where the Active Directory is compromised, which “makes the investigations not only more complicated but also take a lot longer period of time, because they h ..
Support the originator by clicking the read the rest link below.
