Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

5/21/2021
05:00 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

GroupSense Unveils Ransomware Response Readiness Assessment

Service offering includes expert assessment, response playbook, and tabletop exercise to help customers of all sizes properly prepare for ransomware attacks.

Arlington, Va. – May 19, 2021 – GroupSense, a digital risk protection services company, today announced its Ransomware Response Readiness Assessment (R3A) service offering. GroupSense’s threat intelligence team, including experts who have extensive experience remediating ransomware attacks, will provide three core functions as part of this new service: a readiness assessment, to identify gaps in ransomware response capabilities; a response playbook, to provide a step-by-step action plan should an attack occur; and a tabletop exercise, to test and validate the playbook.

With the proliferation of ransomware attacks in the last 18 months, the emerging best practice is for enterprises to assume they will be targeted by a ransomware attack. Ransomware threat groups have proven their effectiveness at penetrating corporate networks, and ransomware-as-a-service has made it easy for virtually anyone to become a ransomware threat actor. And yet, most enterprises do not have formal, tested ransomware response plans in place.

“Too many organizations are ‘playing by ear’ when they fall victim to ransomware, often to disastrous results,” said Kurtis Minder, co-founder and CEO of GroupSense. “It’s critical today for every organization – from the largest multinationals to small businesses – to have an effective ransomware response plan in place, so they can restore operations and quell associated risk before irreparable damage occurs.”

More details of GroupSense’s newly launched R3A services are as follows:

  • Ransomware Readiness Assessment – GroupSense will evaluate six main areas to assess an organization’s ransomware readiness, including cyber threat intelligence, communication processes, threat detection, incident response, cyber gap metrics and delegation of operational tasks. GroupSense will also analyze financial considerations like critical infrastructure, loss of business and customers, and payments.
  • Ransomware Response Playbook – Includes a deep-dive into a company’s documents, digital assets and procedures to provide mitigation measures and guidelines for preventing or responding to a ransomware attack. GroupSense will also review a disaster recovery plan, and provide a ransomware playbook briefing followed by a playbook report. The report will include actionable guidance for each phase of the ransomware incident lifecycle. In addition, a decision matrix will help guide a company through an attack based on its unique requirements.
  • Ransomware Tabletop Exercise – An incident-response preparedness service that provides a critical business component review and prioritization, a review of response plans adhering to regulatory requirements, a disaster recovery/business continuity plan review as well as an audit and compliance requirements review.

In addition to its R3A service, GroupSense can also provide ransomware incident support to provide cyber intelligence specific to a threat actor, type of ransomware, typical behaviors of the cybercrime group, technical indicators of concern and strategy. GroupSense is also a pioneer in Ransomware Negotiation Services, and provides ransomware settlement support, having been successful for years in securing significant reductions in mitigation costs for clients. Companies affected by ransomware can call GroupSense’s ransomware hotline at: 1-800-484-9426 to speak to an expert ransomware negotiator. In addition, the company can also provide post-incident monitor and breach notification services.

For more information about GroupSense’s R3A service offering, download the R3A datasheet,

and to inquire about pricing, please contact [email protected].

About GroupSense

GroupSense is a digital risk protection services company delivering customer-specific intelligence to dramatically improve enterprise cybersecurity and fraud-management operations. Unlike generic cyber-intelligence vendors, GroupSense uses a combination of automated and human reconnaissance to create finished intelligence mapping each customer’s specific digital business footprint and risk profile. This enables customers to immediately use GroupSense’s intelligence to reduce enterprise risk, without requiring any additional processing or management by overstretched security and fraud-prevention teams. GroupSense is based in Arlington, Va., with a growing customer base that includes large enterprises, state and municipal governments, law enforcement agencies and more. 

 

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Commentary
What the FedEx Logo Taught Me About Cybersecurity
Matt Shea, Head of Federal @ MixMode,  6/4/2021
Edge-DRsplash-10-edge-articles
A View From Inside a Deception
Sara Peters, Senior Editor at Dark Reading,  6/2/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-34682
PUBLISHED: 2021-06-12
Receita Federal IRPF 2021 1.7 allows a man-in-the-middle attack against the update feature.
CVE-2021-31811
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-31812
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-32552
PUBLISHED: 2021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-16 package apport hooks, it could expose private data to other local users.
CVE-2021-32553
PUBLISHED: 2021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-17 package apport hooks, it could expose private data to other local users.