RANSOMWARE – What an Incident Response Team Wants to Know ▪ Nature of your business ▪ Current network map ▪ Number and locations of endpoints, servers
▪ Operating system(s) / patching history ▪ Firewall / antivirus / EDR / SIEM solutions ▪ Email system employed ▪ Timeframe and granularity of all logging ▪ Use of an MSP for any services ▪ Whether MFA is enabled, when passwords last changed
10
Made with FlippingBook - Online catalogs