Content, Channel partners, Security Program Controls/Technologies

Splunk Launches Ransomware Insights Solution Amid Petya Cyberattacks

Credit: Splunk

Splunk, the San Francisco-based provider of an operational intelligence software, has released Splunk Insights for Ransomware, an analytics-driven ransomware solution with user-based pricing. Ironically, the launch arrived the same day that a large Petya ransomware cyberattack unfolded worldwide.

With Splunk Insights for Ransomware, organizations can gain real-time insights for proactive assessment and investigation of potential ransomware threats, Splunk asserts.

Splunk Insights for Ransomware leverages a use-case-specific licensing model that enables an organization to collect and analyze event logs from numerous data sources to see all aspects of an IT environment, Splunk noted.

In addition, Splunk Insights for Ransomware delivers an extra layer of security visibility to help organizations prepare for ransomware attacks, according to Splunk.

Splunk Insights for Ransomware also is designed to supplement various existing security solutions, such as:

  • Antivirus.
  • Endpoint backup.
  • Endpoint detection and response (EDR).
  • Patching.

Splunk Insights for Ransomware ultimately provides organizations with end-to-end visibility into potential ransomware activity across their IT environments, Splunk indicated.

By doing so, Splunk Insights for Ransomware helps organizations assess their security posture and investigate, verify and remediate ransomware faster than ever before, Spunk pointed out.

Ransomware Dominates the Cyber Threat Landscape

Recent global ransomware attacks like WannaCry and Petya have put organizations of all sizes and across all industries at risk.

No doubt, ransomware remains a growing problem The "2017 State of Cyber Security" study conducted by the Information Systems Audit and Control Association (ISACA) indicated 62 percent of respondents experienced ransomware attacks last year.

How can organizations mitigate the effects of ransomware and other cyberattacks? The ISACA recently offered the following cybersecurity recommendations:

  • Provide training. Offer a combination of technical training and performance-based assessments to teach employees how to identify and address cyber threats.
  • Share cybersecurity insights. Collect and analyze cybersecurity intelligence and share this information with employees.
  • Make cybersecurity a top priority. Allocate the necessary time and resources to employ skilled cybersecurity professionals and develop in-depth plans to prepare for advanced cyber threats.

Ransomware and other cyberattacks show no signs of slowing down any time soon.

However, with the right approach to cybersecurity, an organization can address urgent cybersecurity challenges both now and in the future, ISACA Board Chair Christos Dimitriadis said in a prepared statement.

Dan Kobialka

Dan Kobialka is senior contributing editor, MSSP Alert and ChannelE2E. He covers IT security, IT service provider business strategies and partner programs. Dan holds a M.A. in Print and Multimedia Journalism from Emerson College and a B.A. in English from Bridgewater State University. In his free time, Dan enjoys jogging, traveling, playing sports, touring breweries and watching football.