• Home
  • Services
    • Managed Detection and Response
    • Security Assessment
    • Phishing Assessment
    • Vulnerability Management
    • CISO as a Service
    • Penetration Testing
    • Outside-in-Security
    • Inside-Out-Security
    • Security Audit
    • Static Code Analysis
  • Insights
  • Contact Us
Menu
  • Home
  • Services
    • Managed Detection and Response
    • Security Assessment
    • Phishing Assessment
    • Vulnerability Management
    • CISO as a Service
    • Penetration Testing
    • Outside-in-Security
    • Inside-Out-Security
    • Security Audit
    • Static Code Analysis
  • Insights
  • Contact Us
Phone-alt Linkedin

Ransomware A Real World Incident

Late last year Brace168 was engaged to respond to a ransomware attack to conducted incident response services. The ransomware in question was a previously unknown variant of ‘zusy’ malware delivered through a trojanised open-source software, Notepad++. On the day of the attack, Brace168 initiated a War Room to immediately respond to the situation and work towards isolating affected machines, updated user credentials, and curtail any remnants of the attack. Brace168 helped to restore services along with performing a comprehensive forensic investigation to understand the lifecycle of the breach from the insertion point to the delivery of the payload for improvements to the security of the customer environment.

The extent of this breach was widespread across this business and cost them in loss of service, loss of revenue and cost of restoration. This shows that prevention is better than cure and that regular security assessments are critical to identifying and preventing these types of attacks before they occur. Unfortunately, it’s not a matter of if, but when, and we urge all of our customers to do regular security assessments, not just for peace of mind but to protect yourselves from these catastrophic attacks.

For more information on the Brace168 Incident Response service please go to our website www.brace168.com/incident_response.

Recent blog posts

Common Vulnerabilities and Exposures – October 2022

Read More »

Hacks – October 2022

Read More »

Protecting your data – The CIA Triad – Part One: Confidentiality

Read More »

Need help with this?

Enter your details below and one of our team will get in touch

Other Similar Articles

Brace168 News AusCERT Conference

Read More »

Brace168 Products Managed Endpoint & Server Security

Read More »

News U.S Colonial Fuel Pipeline Ransomware Attack

Read More »

Standard Operating Environment (SOE) traps to avoid

Read More »
View all our blog articles
Linkedin
  • Insights
  • Contact Us
Menu
  • Insights
  • Contact Us

Our Office

Level 2, 157 Walker Street, North Sydney, NSW 2060

Call Us

(02) 9136 6066

Email Address

info@brace168.com