{"id":1356,"date":"2021-01-12T05:01:16","date_gmt":"2021-01-12T05:01:16","guid":{"rendered":"http:\/\/people.utm.my\/azhari\/?p=1356"},"modified":"2021-01-12T05:01:17","modified_gmt":"2021-01-12T05:01:17","slug":"combatting-ransomware-and-apt-activity-with-process-level-monitoring","status":"publish","type":"post","link":"https:\/\/people.utm.my\/azhari\/2021\/01\/12\/combatting-ransomware-and-apt-activity-with-process-level-monitoring\/","title":{"rendered":"Combatting ransomware and APT activity with process-level monitoring"},"content":{"rendered":"\n
Dan Crossley, Sales Engineering Manager, LogRhythm and Imran Hafeez, LogRhythm Analytic Co-Pilot Consultant
Live online January 13 at 10:00 a.m<\/td><\/tr>
Click here to register<\/a><\/td><\/tr>
Ransomware has evolved from a commodity malware strain primarily targeting home users, to a devastating and effective tool in the arsenal of advanced threat groups. As these human-operated cyberattacks continue to be a lucrative source of income for threat actors, ransomware will continue to pose a major threat to many organisations.

Dan Crossley, Sales Engineering Manager, LogRhythm and Imran Hafeez, LogRhythm Analytic Co-Pilot Consultant, discuss:

\u2022 The anatomy of a human operated ransomware attack
\u2022 What additional log data can be enabled within a Windows environment to allow better tracing of threat actor activity, including:
o Process creation with command-line execution
o PowerShell logging
o Microsoft Sysmon<\/td><\/tr><\/tbody><\/table><\/figure>\n","protected":false},"excerpt":{"rendered":"

Dan Crossley, Sales Engineering Manager, LogRhythm and Imran Hafeez, LogRhythm Analytic Co-Pilot ConsultantLive online January 13 at 10:00 a.m Click here to register Ransomware has evolved from a commodity malware strain primarily targeting home users, to a devastating and effective tool in the arsenal of advanced threat groups. As these human-operated cyberattacks continue to be […]<\/p>\n","protected":false},"author":14428,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"off","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[10],"tags":[],"class_list":["post-1356","post","type-post","status-publish","format-standard","hentry","category-gallery"],"_links":{"self":[{"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/posts\/1356","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/users\/14428"}],"replies":[{"embeddable":true,"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/comments?post=1356"}],"version-history":[{"count":1,"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/posts\/1356\/revisions"}],"predecessor-version":[{"id":1357,"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/posts\/1356\/revisions\/1357"}],"wp:attachment":[{"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/media?parent=1356"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/categories?post=1356"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/people.utm.my\/azhari\/wp-json\/wp\/v2\/tags?post=1356"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}