6.2 Ransomware attack investigation, MDE from Zero to Hero

Welcome to Microsoft Defender for Endpoint from Zero to Hero, Module 6.2 - Ransomware attack investigation Today ransomware attacks represent a real threat to organizations in every industry independently of size or location. Check out the effect of a WannaCry attack on unprotected devices and how Defender for Endpoint works to prevent and provide all the insights related to the attack. In this video you will see the following: 1 - Successful WannaCry attack 2 - Prevented WannaCry attack 3 - Alert investigation and actions **COURSE OUTLINE** I have plans to record 20+ videos and the course outline is not set in stone. Below are the modules already available and the ones on the horizon: 1. Product Overview - . 1.1 - Minimum requirements and licensing - https://www.seevid.ir/fa/w/2ElE6g1xifc 2 - Design & key configuration 2.1 Design: MDE settings deployment - https://www.seevid.ir/fa/w/fsXLNGcyNEk 2.3 - Design - Best practise for full scan - https://www.seevid.ir/fa/w/g2Gkp69VnBE 2.10 Device tag overview - https://www.seevid.ir/fa/w/irqGb5k7TLg 2.11 Deploying device tag via portal, GPO and Intune - https://www.seevid.ir/fa/w/g79Tc19nXB4 2.12 - Device auto-tagging via Logic Apps - https://www.seevid.ir/fa/w/ekwPRg0PjM0 3 - MDE deployment 3.1 - Initial setup and advanced settings - https://www.seevid.ir/fa/w/TwqC9wNQTbY 3.2 - Deploying settings via MEM - https://www.seevid.ir/fa/w/qVCBZO6pBH0 3.3 - Deploying settings via GPO - https://www.seevid.ir/fa/w/g-9DTpMQuPE 4 - Onboarding 4.1 - Onboarding overview - https://www.seevid.ir/fa/w/iephNadOIDU 4.2 - Onboarding via GPO and local script - https://www.seevid.ir/fa/w/1xYxQ2JtSdg 4.3 - Onboarding via Microsoft Endpoint Manager - https://www.seevid.ir/fa/w/GCqKdmGXyF8 4.4 - Onboarding via helper script - https://www.seevid.ir/fa/w/C_pVEUa2GjM 4.5 - Auto Onboarding via Defender for Cloud 5 - Migration from 3rd party solution - https://www.seevid.ir/fa/w/_MiNDetIAvk 6 - Monitoring 6.1 - Alerts and incidents management - https://www.seevid.ir/fa/w/OfaSua6fCMM 6.2 - Ransomware attack investigation - https://www.seevid.ir/fa/w/kOf3BXLJTkM 6.3 - Dealing with Ransomware via Sentinel automation - https://www.seevid.ir/fa/w/0L5djE4nf1w 7 - Integration with SIEM (Security Information and Event Management) 8 - Troubleshooting 8.1 - Troubleshooting mode deep dive - https://www.seevid.ir/fa/w/M6f4G1SPCGY 8.2 - Troubleshooting PowerShell output issue - https://www.seevid.ir/fa/w/hjebQry6vNo My Microsoft Defender for Endpoint – From Zero to Hero playlist can be accessed from https://www.seevid.ir/fa/w/UfpQq0BHAjw Please consider subscribing to my channel for the latest updates and upcoming modules. Thanks for supporting this project, I hope you enjoy and learn a lot Thanks for watching Jackson Felden #MicrosoftDefenderForEndpoint #MDE #CyberSecurity #ransomware #wannacry