One of ExtraHop’s key differentiators is its ability to detect Ransomware attacks as they are occurring. It does this by analyzing all of the CIFS traffic over the wire in real-time and determines if the activity is malicious based on four different rules.  Ransomware Type Definitions: BLACKLIST This approach checks file extensions against a listing […]

Read More Ransomware Quarantine Using ExtraHop