Data Security Services for Law Firms
Asgard Cyber Security is experienced in providing data security services for law firms. Small and medium-sized law firms need the same protection as larger firms. It's just sometimes very expensive. Let Asgard Cyber Security help you secure your network, systems, and data for a fraction of the cost. Our products are designed specifically to help protect your firm from ransomware attacks.
1. Pre-test interview with stakeholders
Before we begin our tests, we work with your organization to determine the Rules of Engagement, Scoping (which hosts to target or exclude), points of contact, timelines, milestones, and discuss any network or infrastructure details. This interview is usually limited to the IT department head and/or executives, as a large part of the test results depend on your team's response to our simulated attacks. During this meeting, we will discuss any NDA's or Waivers that may need to be signed.
2. Penetration Test
- Information Gathering
Our penetration testers will use various methods to gain information about your network, hardware, company, applications, and users. This information will be documented and potentially used during other phases of the test.
At this point in the test, Asgard penetration testers will scan your network and determine targets and vulnerabilities.
This phase is where Asgard penetration testers will attempt to exploit vulnerabilities found and gain control of your company's resources. This can include exploiting unpatched vulnerabilities in software, cracking passwords, and pivoting from low value targets to high value targets. During these tests, we are careful to ensure business operations are not impacted.
After our tests, we will compile an exhaustive report of our findings, along with recommendations to make your environment more secure. At this time, the Asgard penetration tester is made available to your IT team to go over specific details of the report to make certain your team understands the issues, and more importantly, how to resolve them.
This is a very controversial topic, to be sure. To start, you should have a plan to deal with ransomware the eliminates the need to consider this possibility. This includes good, frequent, off-site backups.
That said, there are two schools of thought here:
- Paying the ransom only encourages the bad actors out there to keep proliferating harmful malware. After all, if they are making money, it's a good business.
- Here's the thing people rarely talk about: the ransomware scammers almost always deliver when you pay them. If you have no other way to get your files back, paying the ransom is likely to restore your access.
Asgard Cyber Security has developed software that can assist you in detecting and remedying ransomware before it can have devastating effects. If you have a Windows file server, take a look at Asgard Ransomware Data Protector.