Security, Workshops

M01 Workshop Continued: How to Prevent all Ransomware / Malware in 2018

August 6th, 2018

2:00pm - 5:00pm

Level: Intermediate

Sami Laiho

Chief Research Officer


"In 2018, the most important security measure in enterprises in whitelisting," says Sami Laiho, Gartner, and multiple other agencies. The previous recommendation was to implement the Principle of Least Privilege, before that to block Pass-the-Hash from networks. Honestly, security is an onion-like model with a lot of layers to peel. Sadly, all the major incidents last year that have had global coverage have been Ransomware, which is the toughest to block as you can't really block users from destroying their private data. Windows 7 and Windows 10 provide different ways to block ransomware, ranging from AppLocker/SRP, blocking PowerShell, Windows 10 Protected folders to traditional backups and OneDrive for Business' "Files Restore" feature. On this one-day workshop, you'll see how to block all ransomware.

You will learn:

  • How to implement Whitelisting
  • How to implement Principle of Least Privilege
  • How to use Windows 10's new features to block ransomware
  • How to implement backup features in 2018