Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 3 subscribers
  • Views 6651 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Access vector Ransonware

francoBigai

We suffered a ransonware attack on our systems. How can I, through an ad hoc query, know what was the access vector and who introduced it? From which tables I can get this information? We have Sophos Enterprise Console 5.5.

Thanks for all

Franco



This thread was automatically locked due to age.
Parents
  • 0

    Hello Franco,

    there's no ad hoc query that will give you this information.
    As you said attack on our systems - was it successful? How did you become aware of it? How many computers have been affected, if files have been encrypted only local ones or on shares as well? Is Malicious Traffic Detection enabled?

    Christian

Reply
  • 0

    Hello Franco,

    there's no ad hoc query that will give you this information.
    As you said attack on our systems - was it successful? How did you become aware of it? How many computers have been affected, if files have been encrypted only local ones or on shares as well? Is Malicious Traffic Detection enabled?

    Christian

Children
No Data
Unfiltered HTML