Five Lessons Learned from Petya and WannaCry

  • Tuesday, 11 Jul 2017 10:30AM EST (11 Jul 2017 14:30 UTC)
  • Speakers: Chris Wysopal, Jake Williams

By now many organizations have dealt with the fallout from the recent Petya and WannaCry ransomware attacks. Both ransomware viruses appeared to target a vulnerability found in Microsoft Windows that was previously known and patched by Microsoft. However, some large organizations had not applied security updates on all their Windows computers and were unprepared to stop the attack.

Join Jake Williams of the SANS Institute and Chris Wysopal, CTO of Veracode as they discuss the assumptions that enterprises often make with regards to proactive measures around application security. Learn why endpoint security is not enough to protect against the activities of malware writers, why enterprises can't rely on patching alone to protect against future attacks, 'and other lessons to consider as the industry learns more about how ransomware attacks are architected and executed.