Momodou Jaiteh, Application Security Consultant at nVisium:
“As ransomware behaviors change from mass attacks to highly targeted, from file based to fileless and in-memory attacks, as well as the traditional email attachments and links, exploit kits, etc., IT leaders need to adapt to these changing behaviors. I think it’s time for IT leaders to not only understand the changing attacker behaviors of highly sophisticated and targeted attacks but also its relation to their critical data and employee awareness.
Additionally, as ransomware attacks gets more and more sophisticated, they require advanced skillsets on the defensive side. With IT staff facing capacity issues due to a typical individual juggling multiple tasks, the necessary skills gap widens. Under these circumstances, IT security teams need to strategize automation of routine tasks to free staff to pursue advanced skills needed to combat ransomware and other threats. Also, leveraging external resources that are more specialized in defending against ransomware can help fill that gap.”