Ricoh USA, a Top 250 Public Cloud MSP, has launched RansomCare for ransomware containment. RansomCare, powered by BullWall, is an agentless cybersecurity solution that detects, identifies and isolates ransomware outbreaks.
RansomCare provides "a last line of defense" to stop ransomware attacks in near-real-time, Ricoh VP of IT Sales and Strategy John A. Stewart said. It helps organizations limit the impact and cost of ransomware attacks.
RansomCare is not intended to replace endpoint protection platforms (EPPs) or endpoint detection and response (EDR) tools, Ricoh stated. Instead, RansomCare stops ransomware attacks before they can cause severe damage.
With RansomCare, organizations can use artificial intelligence and machine learning to identify illegitimate file encryption, according to Ricoh. If a ransomware attack is identified, RansomCare generates an alert, shuts down the endpoint to limit the outbreak's impact and identifies any infected files.
What Does RansomCare Offer?
RansomCare gives global organizations another solution they can use to guard against ransomware attacks, Ricoh indicated. Key features of RansomCare include:
- Containment: Automatically identifies unauthorized changes in file activity and isolates the activity source
- File Monitoring: Detects known and unknown ransomware variants
- Incident Reporting: Provides insights into the exact time of a ransomware attack, compromised users and devices and affected files and owners
RansomCare is now available and can be used in combination with EPPs or EDR tools. The solution also configures automatically and does not require file server, storage platform, cloud or endpoint installation.
Meanwhile, ransomware remains an ongoing problem for global organizations. It ranked first among cyber threats in 2020 and was used ransomware in approximately 23 percent of cyberattacks during the time frame, according to research from IBM Security.
