Mandiant helps organizations assess their ability to defend against ransomware attacks. The new Mandiant Advantage Ransomware Defense Validation offering provides security professionals with ongoing, secure, and measurable insight into their ability to defend against specific ransomware families.
Mandiant, the leader in dynamic cyber defense and incident response, releases the Ransomware Defense Validation module within the Mandiant Advantage platform. It examines how well companies can fend off ransomware attacks. This includes answers to the question in which attack phase the security measures failed or were successful.
Ransomware attack: Tool checks resilience
Ransomware attacks have increased significantly over the past few years, and any organization - regardless of size or industry - can become a target. Between 2019 and 2021, Mandiant experts saw a doubling of ransomware activity. To address this fast-growing problem, Mandiant Advantage Ransomware Defense Validation leverages Mandiant's industry-leading threat intelligence, reverse-engineered ransomware reconfiguration, and automated validation infrastructure. This provides security managers with information about whether their companies are able to successfully fend off ransomware attacks.
"The prevalence and prevalence of ransomware continues to increase, and without the ability to realistically test and validate, organizations of all sizes and in all industries are left wondering if and how well prepared they are for a ransomware attack," said Mike Armistead, senior vice president, Mandiant Advantage Products at Mandiant. "Ransomware Defense Validation enables organizations to quickly understand and assess whether their security measures are capable of repelling targeted ransomware attacks and multi-tiered ransomware campaigns."
Ransomware mitigation through threat intelligence
The daily headlines report increasingly frequent and widespread ransomware attacks. Hacker groups are constantly evolving their tactics to make their operations more efficient and effective. Russian officials attempted to defuse the ransomware problem by arresting separate groups of high-level cybercriminals last month. However, Mandiant has seen no decline in such operations overall.
Ransomware Defense Validation counteracts this reality by collating the most critical ransomware threats that Mandiant's frontline experts are watching. These ransomware families are processed in a way that allows organizations to automatically, continuously, and securely test their defenses against them. These include, for example, the CONTI hacking group, which publicized data theft from more than 2021 companies during 500, as well as other widespread threats such as MOUNTLOCKER, RYUK and SODINOKIBI (REvil). This ransomware was among the most active that Mandiant responded to in incidents in 2021. Information on active ransomware families is regularly updated to keep up with the most common attacks in the industry. In addition, companies can not only test whether they are able to defend against these ransomware attacks. You can also see in a live dashboard at what stage of the attack the ransomware would have failed or succeeded.
Mandiant's industry-leading threat intelligence and expertise is the foundation for dynamic solutions that help organizations implement more effective security measures and increase confidence in their cyber readiness.
More at Mandiant.com
About Mandiant Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response. With decades of experience on the cyber frontline, Mandiant helps organizations confidently and proactively defend against cyber threats and respond to attacks. Mandiant is now part of Google Cloud.