Case Study
Detecting Infrastructure Weaknesses
Detecting Infrastructure Weaknesses How a technology company prevented a possible ransomware infection. www.digitalshadows.com Technology Company Digital Shadows We recently worked with a technology company that had recently implemented a new SIEM, had a vulnerability management solution in place, and had began to pull in threat feeds. The security team struggled to find relevant information, and were instead overwhelmed. As part of monitoring for their attack surface, SearchLight discovered open ports that may have led to a ransomware attack. In April 2017, threat group, Shadow Brokers, released an SMB vulnerability named “EternalBlue” – which used (among others) TCP port 445 to propagate the WannaCry ransomware. Here's how the organization responded. Concern Identified Wit