Ransomware is identified on a company's network that affects both Windows and MAC hosts. The command and control channel for encryption for this variant uses TCP ports from 11000 to 65000. The channel goes to good1. Iholdbadkeys.com, which resolves to IP address 72.172.16.2.
Which of the following is the MOST effective way to prevent any newly infected systems from actually encrypting the data on connected network drives while causing the least disruption to normal Internet traffic?
Hibster
Highly Voted 3 years, 10 months agos3curity1
Most Recent 3 years, 11 months agos3curity1
3 years, 11 months agoDeath2QuestionWriters
3 years, 6 months agoCrashBandicoot
3 years, 11 months ago