Office365 and Defender ATP Ransomware Simulation

%3CLINGO-SUB%20id%3D%22lingo-sub-1409421%22%20slang%3D%22en-US%22%3EOffice365%20and%20Defender%20ATP%20Ransomware%20Simulation%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1409421%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20all%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ERecently%20there%20have%20been%20a%20lot%20of%20ransomware%20incidents%20going%20around.%3CBR%20%2F%3EI%20was%20wondering%20if%20a%20Ransomware%20simulation%20can%20be%20added%20to%20the%20Office365%20Attack%20tool.%3CBR%20%2F%3EThe%20way%20I%20imagine%20it%20is%20by%20combining%20the%20O365%20attack%20tool%20with%20ATP%20in%20order%20to%20%22safely%22%20%22lock%22%20the%20endpoints.%3C%2FP%3E%3CP%3EI%20think%20it%20would%20be%20good%20to%20have%20a%20%22safe%22%20ransomware%20simulation%2C%20so%20companies%20could%20work%20on%20their%20incident%20response%20procedures%20and%20be%20prepared%20when%20an%20actual%20incident%20occurs.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you.%3CBR%20%2F%3E%3CBR%20%2F%3EBest%20Regards%2C%3CBR%20%2F%3EChris%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1409421%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EATP%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Eransomware%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Esimulator%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1409556%22%20slang%3D%22en-US%22%3ERE%3A%20Office365%20and%20Defender%20ATP%20Ransomware%20Simulation%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1409556%22%20slang%3D%22en-US%22%3ETurns%20out%20you%20can%20simulate%20ransomware%20in%20ATP.%20Reference%3A%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-atp%2Fmicrosoft-defender-atp-evaluation-lab-breach-amp-attack%2Fba-p%2F1406088%22%20target%3D%22_blank%22%3Ehttps%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-atp%2Fmicrosoft-defender-atp-evaluation-lab-breach-amp-attack%2Fba-p%2F1406088%3C%2FA%3E%3C%2FLINGO-BODY%3E
Highlighted
New Contributor

Hello all,

 

Recently there have been a lot of ransomware incidents going around.
I was wondering if a Ransomware simulation can be added to the Office365 Attack tool.
The way I imagine it is by combining the O365 attack tool with ATP in order to "safely" "lock" the endpoints.

I think it would be good to have a "safe" ransomware simulation, so companies could work on their incident response procedures and be prepared when an actual incident occurs.

 

Thank you.

Best Regards,
Chris

1 Reply
Highlighted