Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: Scareware Tactics - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Scareware Tactics

It has been an interesting week.  Lots of activity, but a slightly weird.  It's a beautiful day at the beach, so I'm going to pose you all a question that has peaked my interest this week.

Have any of you ever dealt with scareware or ransomware in your environment?  Do you have a written strategy for handling this type of incident in your incident response plan?  Have you gotten your legal team involved? Can you give us the big picture and help the rest of us get ready for this type of incident?  No enterprise identity necessary.

I'd like to hear about your strategies.  Please send me your comments.  I'll post them as we get some comments.



Mari Nichols

76 Posts
Jun 7th 2009
that bit on SRP is great, i didn't realize windows was capable of doing that... makes sense considering i haven't heard of fortres since the 9x days.

Sign Up for Free or Log In to start participating in the conversation!