41767: Ransomware on the Mainframe ... Checkmate!
Project and Program:
Service Delivery,
Security and Compliance
Tags:
Proceedings,
SHARE Orlando 2024,
2024
What is ransomware? Have you heard about Locky, Cryptolocker, Cryptowall or
Reveton? This malicious code has turned the worlds of hospitals, police
stations, law firms and private businesses alike upside down by forcing them
with an unimaginable choice: Pay a ransom to retrieve their critical data, which
has now been encrypted by an unknown 3rd party criminal organization OR suffer
the loss of this data - hopefully restoring it from their backup systems. All of
this begs the question, what about the mainframe? Is it vulnerable to such an
attack? Could ransomware be deployed on your critical enterprise system by
unknown attackers? This presentation will be a demonstration that not only is
this possible, most of the code to execute it already exists - and given the
computing power and crypto-prowess of the System Z system - it could be a
blisteringly fast, devastating attack. Additionally, attendees will walk away
with ideas of how to prevent this catastrophic event from affecting them.
Defense concepts and best practices such as two-factor authentication, and
user-behaviour analytics will be discussed as possible mitigating controls. -- Presented by Mark Wilson
Back to Proceedings File Library