St. Clair County in Illinois fell victim to a ransomware attack as many services have been disrupted since last Friday. KMOV visited our Security Operations Center to gain some insight on the situation. Senior Director of Security Operations, Jonathan Tock, explained how organizations can look to SpearTip to avoid this type of critical event. “We run through hundreds of incidents a week and constantly are running calls related to incident response and unfortunately, a large majority of those are city and local governments,” he explained.
Sophisticated threat actors are relentless and they understand which industries can prove the most valuable for them. City and local governments don’t always have the staff or technical ability to defend against ransomware attacks, and that’s where we intervene.
Our engineers have been closely monitoring the threat actors and their leak site as shown in the video, but you can learn more about the Grief threat group in one of our recent insights.
Jonathan also explains cyber attacks are “not a matter of if, but when” for organizations. Being proactive is the best way to enhance your cybersecurity structure and prevent ransomware attacks. Engaging with a security firm like SpearTip can ease the headaches that come from keeping up with the latest threats successfully. SpearTip’s ShadowSpear® platform is an endpoint detection and response tool crafted to be integrated seamlessly with organizations of any size or industry. ShadowSpear® working in tandem with the engineers in our 24/7 Security Operations Center provide instant value for your business as our main focus is rooted in protecting our partners.
Our team will continuously monitor environments 24/7 in our US based Security Operations Center. Our certified engineers work in unison with our proprietary endpoint detection and response tool, ShadowSpear®. This allows your organization to have a direct communication with our engineers at any moment and a completely transparent view of your risk profile.
If you think your organization has been breached, call our Security Operations Center at 833.997.7327.