Ransomware , Risk Management , Technology

Ransomware School: Learn Lessons From How Others Fail

David Stubley of 7 Elements on Identifying Initial Intrusions to Block Repeat Attacks
David Stubley, CEO, 7 Elements

"Are we vulnerable to the attacks that are being reported in the media?" All CEOs and boards of directors should be asking that question of their CISO and internal information security team to ensure they don't suffer the same fate - especially when it comes to ransomware outbreaks, says David Stubley of the consultancy 7 Elements.

See Also: How to Scale Your Vendor Risk Management Program

All organizations should review recent high-profile attacks to see if they run the same technology as the targeted organizations and ask if attackers did breach their organization, could they access sensitive, unencrypted data, Stubley says (see Disaster Strikes: Here's Your Incident Response Playbook).

In an interview at Information Security Media Group's recent 2017 London Fraud and Breach Prevention Summit, Stubley discusses:

  • Questions CEOs should be asking in light of the latest high-profile attacks;
  • The importance of ascertaining as quickly as possible how attackers infiltrated an organization;
  • How ransomware is often the last phase of a longer intrusion;
  • Attackers' penchant for re-infecting organizations that pay ransoms to demand further payoffs.

Stubley is the founder and CEO of 7 Elements, based in Edinburgh, Scotland. He was previously manager of penetration testing services for Royal Bank of Scotland, and he served as a penetration testing project manager for Britain's Ministry of Defense as well as an IP technical security engineer for MCI WorldCom.


About the Author

Mathew J. Schwartz

Mathew J. Schwartz

Executive Editor, DataBreachToday & Europe

Schwartz is an award-winning journalist with two decades of experience in magazines, newspapers and electronic media. He has covered the information security and privacy sector throughout his career. Before joining Information Security Media Group in 2014, where he now serves as the Executive Editor, DataBreachToday and for European news coverage, Schwartz was the information security beat reporter for InformationWeek and a frequent contributor to DarkReading, amongst other publications. He lives in Scotland.




Around the Network