#WeekendWisdom 034 Ransomware Case Study

Welcome to #WeekendWisdom number 34. This week we’re going to talk about a ransomware case study.

Where did this ransomware case study come from?

Earlier this week the data protection commission issued a report on the first two years of the GDPR and their regulatory activity within it.

It is quite an interesting report for privacy professionals and I read through it with a great deal of interest. And I came across a case study about a ransomware incident that a sports and leisure company had suffered. It was interesting in that data protection commission had gone back to the company after being told about the breach and they asked for quite a detailed list of items from that company. You can see this list here.

What did the Data Protection Commission want to know?

So you can see that they wanted to know:

  • The chronology of the events that led up to the incident.
  • They wanted a description of the hardware and software that the company used.
  • What was the source and the attack vector of that ransomware
  • What was the variant
  • Was there some audit logs
  • What was the demand notice for the ransomware
  • Very important of course, whether there were backups available to recover from and
  • finally what types of measures that company have put in place to try and prevent this from occurring in the first place

That seems like a lot for a ransomware incident.

That’s quite a detailed list of items and if you couldn’t answer those questions right now in your business, then you need some help. You need to have things like:

  • A data breach handling procedure
  • Need to have a asset registers for your hardware and software
  • Your security setup and
  • Your backups

All of these things you need to have those put in place in case this ever happens to you. So feel free to reach out if you need any assistance or advice on that.

So that’s it for this week. Let’s be careful out there and we’ll talk to you again next week.

How can L2 Cyber Security help you?

We offer a full range of training programmes, which can be delivered online or in-person*.

L2 Cyber Security are also a partner of CyberRiskAware for online self-directed Cyber Security Awareness training.

We can also provide assistance on implementing mitigation measures to help protect your business from #Ransomware.

Contact us for more information at info@L2CyberSecurity.com.

*With appropriate social distancing and other health and safety measures adhered to.

Follow us on Social media:

Liam is available on TwitterLinkedIn and Instagram.

Follow L2 Cyber on TwitterLinkedInInstagram and Facebook.

© L2 Cyber Security Solutions