Ransomware and Cyber Extortion: Response and Prevention
Author: Sherri Davidoff (Author), Matt Durrin (Author), Karen Sprenger (Author)
Publisher finelybook 出版社: Addison-Wesley Professional
Edition 版次: 1st
Publication Date 出版日期: 2022-10-31
Language 语言: English
Print Length 页数: 352 pages
ISBN-10: 0137450338
ISBN-13: 9780137450336
Book Description
Protect Your Organization from Devastating Ransomware and Cyber Extortion Attacks
Ransomware and other cyber extortion crimes have reached epidemic proportions. The secrecy surrounding them has left many organizations unprepared to respond. Your actions in the minutes, hours, days, and months after an attack may determine whether you’ll ever recover.
You must be ready. With this book, you will be.
Ransomware and Cyber Extortion is the ultimate practical guide to surviving ransomware, exposure extortion, denial-of-service, and other forms of cyber extortion. Drawing heavily on their own unpublished case library, cyber security experts Sherri Davidoff, Matt Durrin, and Karen Sprenger guide you through responding faster, minimizing damage, investigating more effectively, expediting recovery, and preventing it from happening in the first place. Proven checklists help your security teams act swiftly and effectively together, throughout the entire lifecycle–whatever the attack and whatever the source.
- Understand different forms of cyber extortion and how they evolved
- Quickly recognize indicators of compromise
- Minimize losses with faster triage and containment
- Identify threats, scope attacks, and locate “patient zero”
- Initiate and manage a ransom negotiation–and avoid costly mistakes
- Decide whether to pay, how to perform due diligence, and understand risks
- Know how to pay a ransom demand while avoiding common pitfalls
- Reduce risks of data loss and reinfection
- Build a stronger, holistic cybersecurity program that reduces your risk of getting hacked
This guide offers immediate value to everyone involved in prevention, response, planning, or policy: CIOs, CISOs, incident responders, investigators, negotiators, executives, legislators, regulators, law enforcement professionals, and others.
Register your book for convenient access to downloads, updates, and/or corrections as they become available. See inside book for details.
Review
“Ransomware and Cyber Extortion is a masterstroke that will lead both technical and non-technical readers alike on a journey through the complex and sometimes dark world of cyber extortion. The encore of practical advice and guidance on preventing ransomware can help organizations of all sizes.”
–Russ Cohen, Head of Cyber Services US, Beazley Group
“Davidoff and team have built a magisterial and yet still approachable guide to ransomware. This just became the definitive and classic text. I’ve been writing about some of these attacks for years and still was blown away by how much more they taught me. I’ll hand this to every infosec newcomer and senior consultant from now on.”
–Tarah Wheeler, CEO, Red Queen Dynamics
“Ransomware attacks are no longer encrypt-and-export incidents; they have evolved into sophisticated, multipronged attacks that require a multidisciplinary response of forensic, technical, and compliance expertise and savvy cybercrime negotiation skills. Sherri Davidoff, Matt Durrin, and Karen Sprenger are that ‘Dream Team’ and concisely help the reader understand how to prepare for and respond to ransomware attacks. This book is a must-read for every member of an internal or external incident response team.”
–Jody R. Westby, CEO, Global Cyber Risk LLC, Chair, ABA Privacy & Computer Crime Committee (Section of Science & Technology Law)
“A thoroughly delightful read, Ransomware and Cyber Extortion takes the topic everyone is talking about and deconstructs it with history and actionable guidance. A must-read before you next brief your board or peers on your own incident response plans.”
–Andy Ellis, CSO Hall of Fame ’21
About the Author
Matt Durrin, the Director of Training and Research at LMG Security, is a popular speaker at national conferences and training venues. His malware research has been featured on the NBC Nightly News.
Karen Sprenger, LMG Security’s COO and chief ransomware negotiator, is a noted industry expert, speaker, trainer, and course developer with 25+ years of security/IT experience. She is a GIAC-certified forensic examiner (GCFE) and Certified Information Systems Security Professional (CISSP).