Episode 478: Satish Mohan on Network Segmentation
Topics covered
Popular Clips
Episode Highlights
Kill Switch
The concept of a "ransomware kill switch" is akin to an emergency shutdown mechanism for networks. explains that it operates through a color-coded system, allowing enterprises to adjust security levels from green to red, depending on the threat level 1. This system enables a controlled response to potential ransomware threats without disrupting essential business functions.
Just by flipping the switch, you change the state of the network, what is reachable and what is not reachable.
---
This approach contrasts with the traditional panic-driven method of physically disconnecting systems, offering a more sophisticated and automated solution 2.
Backup Role
Offline backups play a crucial role in defending against ransomware attacks. highlights that while they are essential, they are not foolproof due to tactics like double and triple extortion, where attackers threaten to release sensitive data 3. This underscores the need for comprehensive prevention strategies beyond just backups.
You might use an offline backup to recover your data, but it still doesn't prevent the attackers from releasing sensitive data onto the public domain.
---
Thus, preventing attacks from occurring in the first place is paramount to safeguarding sensitive information 2.
Prevention
Prevention tactics against ransomware include isolation and micro-segmentation techniques. discusses how AirGap's security appliance can quarantine suspicious devices by creating a virtual ring fence, preventing unauthorized data flow 4. This proactive approach helps in identifying and isolating potential threats before they can spread across the network.
We place like a virtual ring fence around your device... to make sure that no traffic can go in and out of your device unless inspected and authorized by AirGap.
---
Regular vulnerability scanning is also recommended to maintain robust security hygiene and detect vulnerabilities early 5.
Related Episodes
Episode 385: Evan Gilman and Doug Barth on Zero-Trust Networks
Answers 383 questions
SE-Radio Episode 312: Sachin Gadre on the Internet of Things
Answers 383 questions
Episode 514: Vandana Verma on the Owasp Top 10
Answers 383 questions
SE Radio 586: Nikhil Shetty on Virtual Private Cloud
Answers 383 questions
Episode 519: Kumar Ramaiyer on Building a SaaS
Answers 383 questions
SE Radio 645: Vinay Tripathi on BGP Optimization
Answers 383 questions
Episode 128: Web App Security with Bruce Sams
Answers 383 questions
SE-Radio Episode 302: Haroon Meer on Network Security
Answers 383 questions
Episode 495: Vaughn Vernon on Strategic Monoliths and Microservices
Answers 383 questions
Episode 541: Jordan Harband and Donald Fisher on Securing the Supply Chain
Answers 383 questions
SE Radio 635: Stevie Caldwell on Zero-Trust Architecture
Answers 383 questions
Episode 395: Katharine Jarmul on Security and Privacy in Machine Learning
Answers 383 questions
Episode 535: Dan Lorenc on Supply Chain Attacks
Answers 383 questions
Episode 66: Gary McGraw on Security
Answers 383 questions
