https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2021 MSP 501 Application
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2021 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2021 MSP 501 Application
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2021 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

From the Industry


Sponsor Content

How Connecting Cloud Visibility with Endpoint Security Can Stop Ransomware (Part 1)

  • Written by AT&T Cybersecurity Guest Blogger
  • July 3, 2019
Addressing the growing ransomware challenge is a prime area for MSSPs and SOCaaS providers.

Security teams are used to contending with a diverse set of security threats every day. But few things keep chief information security officers (CISOs) up at night more than the growing threat of ransomware. In this two-part blog series, we discuss the emergence and impact of ransomware, along with practical steps organizations can take to reduce their risk. We’ll look at how managed security service providers (MSSPs) and SOC as a service (SOCaaS) can help you bridge the gap between cloud and endpoint security to successfully defend against ransomware attacks.

The Growing Ransomware Challenge 

High-profile attacks like Cryptolocker, WannaCry, NotPetya and SamSam have elevated ransomware awareness for both security vendors and businesses, and these types of attacks are showing few signs of slowing down. In fact, Cybersecurity Ventures predicts that a business will fall victim to a ransomware attack every 14 seconds by the end of 2019 and every 11 seconds by 2021.

The impact of these attacks is often devastating, forcing executives and government officials to consider ransom payments in defiance of FBI guidance. Even if they choose to pay the ransom, there is no guarantee they’ll successfully get their data or systems restored. For organizations that don’t pay, the costs can be even greater. For example, when the City of Atlanta was hit by SamSam in 2018, it declined to pay the $51,000 ransom. However, the city incurred an estimated $17 million in recovery costs.

Establishing an “Early Warning System” in the Cloud 

Ransomware is often spread through phishing emails and other methods of tricking users into downloading malicious software. Since many organizations are shifting email and file sharing infrastructure to cloud services like Microsoft Office 365 and Google G Suite, though, there are new options for them to detect and stop malware before it reaches their on-premise environment.

Cloud-based spam and malware detection can catch links to many known ransomware types before they hit users’ inboxes. New ransomware variants appear all the time, so you can’t count on blocking everything, of course. It’s also important to monitor cloud service usage for anomalous or suspicious behavior. The volume of data that cloud services produce creates a “needle in the haystack” problem where the biggest threats are easily lost in the noise.

This is a prime area for MSSPs and SOCaaS providers to step in and fill the void, and it’s a major focus for us at Delta Risk. Our cloud-native ActiveEye platform collects detailed activity information from a wide range of cloud providers and applies both automated and human analysis to identify the most urgent threats.

Greater visibility and actionable guidance make it faster and easier to detect, contain, and recover from new ransomware threats that aren’t blocked before they hit the network.

Proactively Eliminating Vulnerabilities 

Many ransomware attacks exploit known software vulnerabilities that organizations haven’t yet patched. For example, WannaCry exploited a vulnerability in Microsoft’s SMB protocol implementation. A patch was already available from Microsoft, but it was not widely installed.

In addition to active monitoring and response, Delta Risk also advises customers to proactively scan for vulnerabilities at frequent intervals and make patching a core IT competency.

Along with its native capabilities, ActiveEye integrates with AlienVault Unified Security Management (USM), which includes extensive vulnerability assessment and management capabilities. Together, ActiveEye and AlienVault USM provide both proactive and reactive protection against ransomware.

While proactive patching may seem like an obvious step, a combination of technology barriers and resource limitations cause many organizations to fail at this. Turning patching into a strength with the help of trusted partners like Delta Risk and AlienVault will greatly reduce the risk of a successful ransomware attack.

Converging Cloud and On-Premises Security 

One thing you will notice about the two ransomware protection practices above is that they occur in two completely different places. Efforts to detect and block ransomware often begin in the cloud. But systematically patching systems to reduce the ransomware attack surface is largely an on-premises activity.

In our next post, we’ll discuss how you can bring disparate security activities in the cloud and on-premises together into a highly effective, end-to-end ransomware protection strategy.

Learn more about our ActiveEye platform https://deltarisk.com/activeeye-platform/or contact us for a demo https://deltarisk.com/contact/.

This guest blog is part of a Channel Futures sponsorship.

Tags: MSPs Cloud and Edge Endpoint From the Industry Intelligence MSSP Insider AT&T Cybersecurity Sponsor Content

Related


  • How to build a Security Operations Center (on a budget)
    Whether you’re protecting a bank or the local grocery store, certain common sense security rules apply. At the very least, you need locks on entrances and exits, cash registers, and vaults as well as cameras pointed at these places and others throughout the facility. The same goes for your cloud, on-premises, and hybrid environments. Controlling […]
  • Lessons for the Channel in the GoogleMicrosoft Cyberthreat Debate
    The AT&T Cybersecurity Incident Response Toolkit
    When it comes to data breaches, most agree that it’s not a matter of if, but when. In CyberEdge Group’s 2019 Cyberthreat Defense Report, an astounding 78% of surveyed organizations admitted being victims of cyber attacks. That’s why it’s important to have the right incident response tools and plans in place. In this paper, you’ll learn […]
  • Managed Security Service Provider (MSSP) Success Checklist
    When you’re starting service with a customer, setting the tone early on is very important. That’s why we’ve created a checklist to help you stay organized from the start and implement smart process around your Managed Security Service Provider (MSSP) service. Feel free to use it but most importantly modify it. Use this checklist to […]
  • Weekend Read Eastern Seaboard Denied Twitter ATTs Move into Entertainment
    Expert MSSP Panel: Top tips for building a successful practice in an age of remote working
    Watch this on demand webinar to find the best way to protect your data from cybercriminals in the age of remote working.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Anatomy of an Active Cryptomining Worm
  • Data Governance Is Key to Managing Security, Privacy and Risk
  • Are Your Duties Segregated?
  • Phishing Tops List of Biggest Worries

Galleries

View all

From The Second City: How to Use Improv as a Business Tool

March 3, 2021

Industry Perspectives

View all

5 Ways XDR Can Improve Operational Efficiency for MSPs

March 4, 2021

Multi-Cloud: Strategy or Inevitable Outcome? (or both?)

March 3, 2021

Backup Vulnerability: 4 Targets Hackers Might Utilize to Infiltrate Your Backup Solution

March 2, 2021

Webinars

View all

A Partner’s Perspective on Channel Success in 2021

March 23, 2021

XDR and Why it Matters to MSPs

March 24, 2021

Top Security Trends Impacting Technology Security Providers In 2021

March 25, 2021

White Papers

View all

Why Fortinet for my MSSP?

March 2, 2021

Small and Mid-Size Business Security: 4 Steps to Success

March 2, 2021

How SMBs Can Secure Endpoints and Remote Workers for the Long Haul

March 2, 2021

Upcoming Events

View all

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

.@okta acquiring rival @auth0 in $6.5 billion all-stock transaction. #security dlvr.it/Rtzwdp https://t.co/4LvHCJuwsR

March 4, 2021
ChannelFutures

.@MicrosoftTeams features are coming to @MSFTDynamics365, the company announced at @MS_Ignite. #MicrosoftIgnite… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

.@PreciselyData acquired by Clearlake Capital, @TAAssociates. #digitaltransformation dlvr.it/RtzbKg https://t.co/1rNYnTScxq

March 4, 2021
ChannelFutures

Thanks for attending #CPVirtual. Here's a Day 3 wrap and a look ahead to #CPExpo Homecoming in November!… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

.@Veeam announces six annual Impact Partner Awards, with @SHI_Intl, @LogicalisUS, more. #cloud… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

#XDR can improve operational efficiency for #MSPs. @TrendMicro #security #endpoint #AI #threatintelligence… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

.@IBM adds two senior execs to leadership team at infrastructure IT spinoff, NewCo. @IBMNews @IBMPartners… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

RT @ChannelEurope: Craving more #EMEA news? Get the latest headlines, insights and commentary in EMEA directly to your inbox. Subscribe to…

March 4, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X