Eric Jansta

The continuing evolution of ransomware attacks requires innovative, protective solutions. Dell has led the protection of the data center with the Cyber Recovery solution, which is the only solution certified by Sheltered Harbor. It implements a digital air-gap solution that provides a dedicated replica isolated from the production environment. The isolation limits risks associated with remote threats identifying, accessing, and corrupting the backup data. In order to identify when a ransomware attack has occurred, Dell has partnered with Index Engines to monitor the backup data stream. CyberSense from Index Engines uses machine learning to identify changes in the backup data and alert when the appearance of an attack occurs.

Microsoft has announced that a March 2020 security update for Windows Server will disable unsigned LDAP connectivity in Active Directory DS and LDS. There has been an identified, critical exploit of LDAP where an elevated permissions exploit can be performed via unsigned LDAP.