A critical Vulnerability in Java was detected and needs to be measured. The vulnerability allows attackers to execute malicious code which encrypt the local hard disk and network drives. Key questions are:
- Who is affected?
- Has this vulnerability been exploited?
- Which measures for risk mitigation are possible?
Objective: Understand and contain issue(s) without any pushes to production
You can use any technology you want (ideally ones you have experience with) and any Group Security team size. * Describe what you would do and how you would act (ideally in diagram format). * Who would you talk to? * What actions would you take to contain and remediate the issue(s)?
Resources and Technologies available:
- Techops, Webops, and Dev teams
- Slack, Jira, Confluence, ELK, Grafana, Nagios, Akamai, AWS, Cisco Firewalls, Landeks, and DarkTrace
Back to all challenges