Have an account?

  •   Personalized content
  •   Your products and support

Need an account?

Create an account

Ransomware Defense

Is Ransomware keeping you up at night?

Is your organization able to detect, block, and remediate advanced malware across all endpoints?

Organizations are under attack, and security breaches are happening every day. Hackers are creating advanced malware that can evade even the best point-in-time detection tools, like antivirus and intrusion prevention systems. These tools inspect traffic at the point of entry into your extended network, but they will never detect 100 percent of all the threats trying to infiltrate the organization. Furthermore, they provide little visibility into the activity of threats after they evade first-line defenses. This leaves IT security teams blind to the scope of a potential compromise and unable to quickly detect and contain malware before it causes damage.

Leading breach detection

Source: NSS Labs

Time to detection

Source: 2017 Annual Cybersecurity Report

Meet Cisco Talos, the industry-leading threat intelligence group fighting the good fight.

"Our data scientists are experts at plucking the nuances out of data. They have the mathematical rigor to understand the set theory and the clustering algorithms to confidently determine the who, what, and where of an attack."

Matt Watchinski, Senior Director of Cisco Talos

Cisco Ransomware Defense

There are multiple ways for ransomware to get in. To reduce the risk of infections, organisations need a layered defense. Our ransomware defense solution protects you from the DNS layer to email to the endpoint and it's backed by industry-leading Talos threat research.

First line of defense

Cisco Next-Generation Firewall blocks suspicious connections, while Cisco Advanced Malware Protection (AMP) contains and remediates malware. Cisco Email Security blocks phishing and other email threats used to deliver ransomware payloads.

Block bad websites

Cisco Umbrella blocks requests to access suspicious domains to stop users from visiting websites contaminated with malvertising and other threats.

Retrospective security

Sometimes malware disguises its malicious behaviour to pass initial inspection. AMP for Endpoints blocks the file when it shows its true nature.

Stop encryption

Cisco Umbrella blocks the downloaded ransomware file from requesting access to Encryption Key Infrastructure.

Are you keeping ransomware at bay?

Ransomware is malicious software, or malware, that encrypts the information on a person’s computer like documents, photos and music. It will not release these files until the user pays a fee - or ransom - to unlock these files and get them back. Ransomware has quickly become the most profitable type of malware ever seen, on its way to becoming a $1 billion annual market.

Learn how ransomware defense is helping these companies better protect their customers, employees, and brands.

"Umbrella sees not only our traffic, but traffic from thousands of other customers across millions of different endpoints, so it blocks malicious traffic before any one of our users even has the chance to spot it."

Joseph Paradi Senior. Director – ITS Infrastructure, Avanade

"We now have the ability to proactively know ‘has it affected us?’. It’s been an absolute godsend for us and puts us in a stronger position as far as business security goes."

Alex Larson, CIO Wesfarmers Chemicals, Energy & Fertilisers

"Since we deployed AMP for Endpoints integrated with Threat Grid, and soon AMP for Networks, we definitely sleep easier now. It only takes one computer somewhere in the world to get compromised by a malware variant, and the instant Threat Grid detects it, the rest of the fleet is protected.”

Lachlan Peters Security Team Leader, Heritage Bank.

What's inside ransomware defense?

DNS layer protection

Cisco Umbrella Roaming protects devices on and off the corporate network. Block DNS requests before a device can even connect to sites hosting ransomware.

Email threat protection

Cisco Advanced Malware Protection (AMP) for Email Security blocks ransomware delivered through spam and phishing emails. It even identifies malicious email attachments and URLs. Address attacks before they spread.

Advanced defenses for advanced attacks

Cisco Next-Generation Firewalls with AMP Threat Grid sandboxing technology both known and unknown malware. They also block command-and-control callbacks to ransomware hosts.


Contact Us

Need help? We're happy to answer your questions.