Conti Expands Ability to Destroy Backups & what your MSP can do to mitigate these attacks.

In this video, Andrew and John Strand discuss the tactics and impacts of the ransomware group Conti, with a focus on their ruthless attacks on healthcare systems. They explore the importance of network segmentation, lateral movement detection, and the role of deception in cybersecurity defense. The conversation also delves into practical steps MSPs can take to safeguard their networks, including leveraging tools like Sysmon and NTOP for enhanced monitoring and analysis.

• Conti ransomware operates as a service, functioning similarly to a franchise model where skilled hackers are recruited, provided with tools, and earn a percentage of the ransom collected.
• The webinar emphasizes the importance of network segmentation and lateral movement detection to bolster defenses against ransomware attacks.
• The discussion highlights the necessity of effective incident response strategies, including live forensics and memory acquisition, to manage ransomware incidents effectively.