Ransomware - Coggle Diagram
Claims Revil makes $100 million/year
Overhead to contain, eradicate, and repair
Reduced customer value due to focus on cleanup and/or availability.
Demant claimed loss of $95 million from one incident
Who are they?
Likely ties to Grim Spider
Known to only work with only native Russian speakers
Code has logic to avoid infecting Russian territories
Mandiant starts to spread the word about "
Advanced Persistent Threats
" (APT) in 2010
Ransomware starts to become a thing in late 2018
We see exponential growth by 2020
APT & Ransomware Tools and Tactics
Get on the network (beach head)
Vulnerable perimeter system
User tricked into running Cobalt Strike beacon
Command and Control
Find domain admin
Domain admin logged in where other users with lesser privileges can login.
Become domain admin
Got on server where domain admin logged in and run
to get creds.
Food and Agriculture