Threat Hunting//
Threat Hunting Case Study: FileFix
FileFix bypasses Mark of the Web (MotW) protections by hijacking the Windows File Explorer address bar. Here is how to hunt for it.
Most organizations will be touched by an IT security incident at some point whether it be a data breach, ransomware or fraud. These complex incidents may draw attention from consumers, the media, customers and partners as well prompt legal and regulatory inquiries. This is when organizations’ crisis communications plans are put to the test. How can organizations control the narrative? How can they manage requests for more detail while forensic investigations are underway? What if threat actors drip-feed samples of stolen data? In this Studio 471, Tom Bolitho of FTI Consulting shares how IT security incidents can be managed to minimize reputational damage.
Participants:
Tom Bolitho, Senior Director, Strategic Communications, Cybersecurity & Data Privacy Communications, FTI Consulting
Jeremy Kirk, Executive Editor, Cyber Threat Intelligence, Intel 471
