Monitoring deep, dark and surface web to detect exposure of your sensitive data, secret projects and initiatives, privileged users, critical systems, IT infrastructure, and more.
Monitoring and alerting of third party data breaches impacting your employees’ emails, usernames, and personally identifiable information.
Assess the risk footprint and security posture of key business relationships to get a handle on external risk introduced through your extended attack surface.

Sign Up for Updates
Digital risk monitoring of key personnel with telemetry and risk metrics. VIPRecon provides broad coverage of social media, deep and dark web, as well as physical threat assessments.
Our Ransomware Response Readiness Assessment, Playbook and Table Top Exercise gives your organization the best chance to survive and recover.
Gain visibility of your digital footprint by reaching into the most active areas of the cyber underground.
Fully managed and tailored Threat Intelligence services that becomes an extension of your current security processes and provides real-time visibility on new threats.
Providing research and investigations into known threats, to save security teams time and stress during a cyber emergency.

Sign Up for Updates
GroupSense offers a comprehensive package of services for assessing and responding to ransomware attacks, including negotiations with threat actors.
Actively researching and monitoring threats from vendors or third-party companies that can affect organizational security.
Monitoring for threats to elections, VIPs, and more on social media to proactively prevent or mitigate digital risk.
Focusing on the threats and risks that matter to your security processes and providing intelligence and insights to prevent or mitigate digital risk.
Taking the next step in security services, by proactively taking down phishing sites or anonymously interacting with threat actors to provide better intelligence.
Active monitoring of your brand's digital assets to protect its reputation and stop further brand abuse from targeting unsuspecting victims.

Sign Up for Updates
Combining your cyber and fraud programs to effectively fight threat actors continually scamming or threatening assets within an organization.
Executives are prime targets for fraudulent activities, but with a proactive approach, any attacks or threats can be neutralized before causing any damage.
Governments, political parties and candidates must all act now to activate cyber threat intelligence services to harden their information security and get ahead of inevitable cyber threats to the election process.
5 min read

Outpost Gray Podcast: Ransomware Prevention

Apr 3, 2022 1:12:09 PM

Recently Kurtis Minder, GroupSense CEO, was a guest on Outpost Gray’s podcast. Kurtis did a Q&A with Jax, Outpost Gray founder and Cybersecurity Manager from Grant Thornton. They talked about ransomware prevention and negotiations.

Ransomware Prevention

Ransomware has been making headlines over the past few years and it sadly isn’t going away anytime soon – especially with the Russian/Ukraine Conflict. A couple of weeks ago, President Biden issued a statement about potential increased cyberattacks as a result of the Russian/Ukraine conflict. In the statement, he says that “This is a critical moment to accelerate our work to improve domestic cybersecurity and bolster our national resilience. I have previously warned about the potential that Russia could conduct malicious cyber activity against the United States, including as a response to the unprecedented economic costs we’ve imposed on Russia alongside our allies and partners. It’s part of Russia’s playbook.”

President Biden goes on to say that “If you have not already done so, I urge our private sector partners to harden your cyber defenses immediately by implementing the best practices we have developed together over the last year. You have the power, the capacity, and the responsibility to strengthen the cybersecurity and resilience of the critical services and technologies on which Americans rely. We need everyone to do their part to meet one of the defining threats of our time — your vigilance and urgency today can prevent or mitigate attacks tomorrow.”

Jax and Kurtis talk about the executive order that The White House released last year about Zero Trust and how it impacts federal agencies and organizations. “Zero Trust is a philosophy and not a product,” says Kurtis Minder. “From a philosophy perspective it makes total sense. Limiting access to sensitive items and controlling that tightly is important. Making that a core philosophy for the access control environment will ultimately pay back in risk mitigation if there is a threat. I would also say that technology is moving quickly and bad guys are moving almost as quick. So, one of the things that I’ve noticed in the work that I’ve been doing, especially around ransomware, is that a lot of the plan that we have and developed are still dated. The incident response plans, and business continuity plans are already outdated. They are not prepared for a lot of the ransomware scenarios and companies haven’t quite caught up to that. It is definitely a gap.” During the conversation with Jax, Kurtis goes on to discuss how organizations need to protect themselves.

The conversation pivoted to GroupSense’s ransomware negotiation work. Jax asked Kurtis the question “Sometimes you pay the ransom. They may give you an encryption key, and they still spill your information on the dark web. Have you experienced that?” Kurtis responded “Not to my knowledge. But we have seen evidence that they (threat actors / ransomware groups) have taken the data that they have said that they ‘deleted’ and they have used it / drafted off the data to execute other attacks. Either on other victims or the same victim that they had attacked with ransomware. However, this time they will use the same data to execute a business email compromise attack. So yes, they honor their agreement to give you your files but don’t assume that they aren’t going to weaponize that data in some way against you or your partners.”

Want to hear more from Kurtis and Jax? Watch the Outpost Gray podcast!

Watch the recorded podcast here (or embedded video below) to hear more from Kurtis and Jax. 

 

Want tips from Kurtis and the GroupSense team on how to prevent ransomware?

GroupSense’s team of experienced negotiators developed cybersecurity tips to help reduce your risk.

GroupSense's Tips include:
  • Patch your system
  • Password policy
  • Use a password manager
  • Enable multi-factor authentication everywhere possible

Download to get all of GroupSense's tips to better protect your organization.

Download the Guide Now >

Kurtis Minder - GroupSense HeadshotAbout Kurtis Minder

Kurtis Minder is the CEO and co-founder of GroupSense, a leading provider in Digital Risk solutions. Kurtis built a robust cyber reconnaissance operation protecting some of the largest enterprises and government organizations.

Kurtis has been the lead negotiator at GroupSense for ransomware response cases. He has successfully navigated and negotiated some of the largest ransomware, breach, and data extortion cases world-wide.

With over 20 years in the information security industry, Kurtis brings a unique blend of technical, sales and executive acumen.

About Outpost Gray

Cyberwarfare is never going away, and defending ourselves is imperative. Outpost Gray provides weekly cybersecurity, technology, and innovation education on YouTube. Our guests are industry leaders who discuss current threats, emerging technology, and cyber law to help you prepare yourself in this ever-changing threatscape.

Weekly episodes drop every Thursday. Subscribe to their YouTube page at @outpostgray to stay in the cyber know. Visit https://www.youtube.com/c/OutpostGray 
Topics: Podcast Events
Editorial Team

Written by Editorial Team

Featured

cyber-tips