Digital Guardian, a globally renowned company in Data Loss Prevention (DLP) and Managed Detection and Response (MDR), has developed a new Ryuk Ransomware Protection Content Pack to detect and defend against Ryuk ransomware. This solution is available free of charge to all Digital Guardian customers globally. The company’s Advanced Threat & Analysis Centre (ATAC) Team worked quickly to create and validate the content pack confirming that, once deployed, the Digital Guardian agent can detect and prevent Ryuk ransomware. Ryuk Ransomware Protection Content Pack Digital Guardian’s data protection platform provides deep visibility and granular controls Unlike ordinary data protection solutions, Digital Guardian’s data protection platform provides deep visibility and granular controls, which enables customers to extend use-cases beyond data loss prevention and into advanced threat mitigation, such as detecting and defending against Ryuk ransomware attacks. Regular data protection companies merely monitor and alert on incidents, even with artificial intelligence and machine learning, which would not help thwart ransomware attacks that result in system disruptions and the loss of critical data. Data protection platform for Digital Guardian customers Any Digital Guardian customer currently subscribed to the Managed Detection and Response service has been automatically protected. Digital Guardian customers subscribed to the Managed DLP or SaaS services who are interested in deploying the Ryuk Ransomware Protection Content Pack should simply notify their DG Account Executive, Support, or managed service team representative. On-premise customers interested in downloading the Ryuk Ransomware Protection Content Pack should also contact the Digital Guardian Support Team and it will be made available to them to deploy within their own environment. Countering the rise in Ryuk ransomware attacks “In the midst of a global pandemic, Ryuk ransomware has been used to target dozens of hospitals and already caused significant interruption to operations. The FBI is warning of even more attacks and we want Digital Guardian customers to be protected,” said Tim Bandos, Chief Information Security Officer at Digital Guardian. Tim adds, “We urge all customers, especially hospitals and healthcare institutions, to take this threat very seriously and implement measures to mitigate the threat and minimise damage. We’ll continue to monitor the situation and do all that we can to protect our customers and their data from these insidious ransomware attacks.”
Digital Guardian, a provider of data loss prevention and managed detection and response, has announced Tim Bandos will become Chief Information Security Officer (CISO). Bandos will bring more than 15 years of experience to the position, including his five years as VP of Cybersecurity at Digital Guardian. Prior to joining Digital Guardian, Bandos was Director of Cybersecurity for Dupont where he was responsible for overseeing internal controls, incident response and threat intelligence. In his new role, he will lead Digital Guardian’s global cyber security strategy, leveraging the latest technology and threat intelligence available. Evolving threat landscap We're excited to have Tim officially in this important role and I welcome him to my leadership team" "Tim's experience in cyber security has provided him a rich understanding of the evolving threat landscape and the strategies, techniques, and processes every company should deploy to mitigate the risk of data loss," said Mordecai Rosen, Chief Executive Officer, Digital Guardian. "We're excited to have Tim officially in this important role and I welcome him to my leadership team." Bandos joined Digital Guardian five years ago with the goal of successfully building the company’s Managed Detection & Response Service from the ground up. That service now manages and monitors more than one million endpoints and delivers best-of-breed threat hunting and incident response. Specialised security analysts His other accomplishments while at Digital Guardian include: Building the Advanced Threat & Analysis Center Team (ATAC Team), a premier group of specialised security analysts, threat hunters, and incident responders that focus on breach detection and response. Guiding the development of the DG Endpoint Detection & Response (EDR) technology within the Digital Guardian Data Protection Platform. Directing the company’s efforts on adopting the NIST Cybersecurity Framework to continually improve the company’s security posture and programmes. Spearheading Digital Guardian’s SOC 2 and other certification initiatives. Promoting security best practices to CISOs and other security executives at major security conferences around the world, including RSA, Black Hat and Infosecurity Europe. Vigilant and cyber-aware “I’m thrilled to be named CISO at Digital Guardian. DG has invested heavily in a robust and resilient environment but threats continue to evolve, so our programme must as well,” said Tim Bandos, Chief Information Security Officer, Digital Guardian. “As CISO, I’ll continue to reinforce a company culture that puts security at the forefront. It’s critical that all of our employees do their part to stay vigilant and cyber-aware to protect our most valuable asset: data.”
Digital Guardian announced that it has released a new research report, The DG Data Trends Report, which assesses the risk of sensitive data loss during the COVID-19 crisis. The research is based on aggregated and anonymised data from nearly 200 customers of Digital Guardian’s Managed Security Program around the globe. It represents a wide range of organisation sizes and industries, including financial services, manufacturing, healthcare, and business services. As they continue to work from home, employees from these companies regularly interact with regulated and structured data as well as unstructured intellectual property and trade secrets. The data set analysed was from January 1 – April 15, 2020 and comparative data was evaluated from January 1 – February 29, 2020 (before the global onset on COVID-19) vs. March 1 – April 15, 2020 (after the COVID-19 pandemic came to the forefront). Sensitive data loss This enabled Digital Guardian to compare data egress patterns before and after the work from home transition took place and gauge its impact on the risk of sensitive data loss, now and in the future. Key Findings: There was a 123% increase in the volume of data downloaded to USB devices by employees after the pandemic declaration and working from home became widespread. 74% of that data had been classified by organisation data governance policies. Cloud storage and USB devices became the most preferred egress paths after the COVID-19 emergency declaration, accounting for 89% of all data egressed. Data egress via all paths (email, cloud, USB, etc.) was 80% higher in the first month following WHO’s COVID-19 pandemic declaration. More than 50% of the data egressed was classified. From March 11 - April 15, employees uploaded 336 TB of data to the cloud, a 72% increase from January and February combined. After the WHO’s declaration, Digital Guardian’s Managed Detection & Response analysts also saw a 62% increase in malicious activity from external attackers, a number that corresponded to a 54% increase in incident response investigations required. USB device usage Our research indicates remote employees are egressing classified data at unprecedented rates" IT and security professionals should pay particular attention to the significant uptick in USB device usage as they inherently increase the risk of sensitive data loss due to their portability and likelihood of being misplaced, lost or stolen. “Organisations have accepted that the economic and health effects of COVID-19 will be with them for the foreseeable future and working from home will remain a requirement for many of their employees,” said Tim Bandos, VP, Cybersecurity, Digital Guardian. Data security enforcement “Our research indicates remote employees are egressing classified data at unprecedented rates across all egress paths. Executives and security teams would be wise to consider implementing solutions that provide visibility into this behaviour, and a means to control it, in order to avoid a potential data breach.” The DG Data Trends Report contains more in-depth information, including statistics on additional data egress channels and points of risk that were monitored, a primer on data security enforcement actions, examples of COVID-19 phishing attacks, as well as recommendations to protect remote workforces.