HCL SW Blogs
HCL SW Blogs
Select Page
Automation
  |  May 12, 2022

Fight Conti Ransomware with BigFix and Tenable

Cyril Englert
Cyril Englert
Solution Architect
Fight Conti Ransomware with BigFix and Tenable

Conti is a Russian-based ransomware group that operates a ransomware-as-a-service model to deploy the Conti ransomware. They are one of the more prolific ransomware groups in operation today. The FBI estimates that as of January 2022, there had been over 1,000 victims of attacks associated with Conti ransomware with victim payouts exceeding $150,000,000, making the Conti ransomware variant theconti ransomware costliest strain of ransomware ever documented.1 Although Conti focuses on the healthcare sector, Conti ransomware has also victimized organizations in the Energy, Food and Agriculture, Financial Services, and Information Technology sectors.

The worldwide impact of Conti is significant. So much in fact that the U.S. Department of State is offering rewards of up to $10 million for information that leads to the identification or location of any individual who holds a key leadership position in the Conti crime group. To learn more about Conti attacks, visit Data Breach Today’s website where more than 200 articles have been published.

Recently, Tenable has researched and identified Conti attach schemes and published the list of vulnerabilities. Conti uses a variety of attack vectors including phishing, malware and attacks against Remote Desktop Protocol. Tenable lists 9 initial access vulnerabilities and 24 elevation of privilege vulnerabilities. Tenable are releasing scan templates soon, meanwhile, organizations can leverage their ContiLeaks Dashboards for Tenable.io and Tenable.sc to identify the known vulnerabilities exploited by the Conti ransomware group and its affiliates.

BigFix can now immediately patch all in scope vulnerabilities which is 29 of 33. Additionally, BigFix users can leverage the new CVE Search dashboard and web report to get the latest information on the Known Exploitable Vulnerability (KEV) List provided by the Cybersecurity & Infrastructure Security Agency (CISA) Binding Operational Directive 22-01 (BOD 22-01). 

Learn how BigFix can manage every endpoint before, during and after a cyberattack. Request a Free Trial or Demonstration of BigFix today!

1 https://www.state.gov/reward-offers-for-information-to-bring-conti-ransomware-variant-co-conspirators-to-justice

Comment wrap
Cyril Englert
Cyril Englert
Solution Architect
With over 35 years in Information Technology, my experience have included development, project management, sales and technical support, and business consulting. As an IBM and HCL Business Value Consultant, I help organizations build compelling business cases and financial justications. I support the BigFix Marketing organization as a technical writer and blogger.
Read more

Topics in this article:

BigFixContiCybersecurityEndpoint SecurityRansomware

Submit a Comment

Your email address will not be published. Required fields are marked *

* HCL provides software and services to the U.S. Federal Government through its partner Four, Inc. Please contact Four, Inc. at the U.S. Federal Government contact page.


Further Reading
bigfix
bigfix
Consolidating tools can help in uncertain economic times
Automation | March 27, 2023
Consolidating Tools Can Help in Uncertain Economic Times
“IT tool consolidation” refers to the process of streamlining an organization's technology stack by reducing redundancies and consolidating similar tools into a single platform.
Cyril Englert
Cyril Englert
Solution Architect
bigfix
bigfix
US Federal Government Exerts Authority in Cybersecurity
Automation | February 28, 2023
US Federal Government Exerts Authority in Cybersecurity: Impacts Felt Around the World
Here, we highlight each of these actions and describe how HCL BigFix supports the government’s (and any organization’s) initiatives to strengthen the ability to prevent cyberattacks.
Cyril Englert
Cyril Englert
Solution Architect
bigfix
bigfix
BigFix on Cloud
Automation | February 20, 2023
Accelerate Your Endpoint Management with BigFix on Cloud
As endpoints continue to grow in volume and diversity, managing and securing them has become more complex and time-consuming.
Deepika Choudhary
Deepika Choudhary
Close
Filters result by
Sort:
|
ProductsRESET