Search
CYBER RISK MANAGEMENT SERVICES

Ransomware Readiness Assessment

Defending against ransomware attacks starts with having a plan. The Unit 42 Ransomware Readiness Assessment focuses on preparing you to better prevent, detect, respond to and recover from ransomware.

BENEFITS

Ransomware evolves constantly. So should you.


Ransomware groups are turning up the pressure on their victims – demanding higher ransoms and making sure organizations pay. According to the 2022 Unit 42 Ransomware Threat Report, our incident response casework shows ransom demands averaged US$2.2 million. Unit 42® can help you avoid the price of being unprepared based on lessons we’ve learned negotiating ransoms on the frontlines.

Watch the overview
Card Head Icon
Card Mobile Head Icon

Validate your response strategy

Evaluate how your incident response capabilities perform when triaging ransomware breach scenarios from real cases we’ve investigated. Unit 42 will identify your organizational strengths as well as areas of improvement.

Card Head Icon
Card Mobile Head Icon

Detect hidden ransomware risk

Harnessing the power of Cortex XDR®, Unit 42 will conduct a Compromise Assessment of your environment, focusing on the early stages of ransomware by analyzing endpoint telemetry and hunting for indicators of compromise associated with sophisticated ransomware groups.

Card Head Icon
Card Mobile Head Icon

Demonstrate your preparedness

Upon completion of Purple Teaming and Tabletop Exercises, we will equip you with the data and recommendations necessary to communicate a sound ransomware preparedness plan to your board and C-suite executives.

SERVICE FEATURES

Achieve a target state of ransomware readiness


The Unit 42 Ransomware Readiness Assessment is available in three different tiers – each one designed to match the unique needs of your specific organization.

Basic Assessment

Tier 1

Get answers to your ransomware questions from our Unit 42 Threat Researchers and assess your ability to respond.
  • Ransomware Tabletop Exercise
  • Readiness findings and recommendations report
  • Unit 42 Retainer with 250 credits for Incident Response

Advanced Assessment

Tier 2

Take a more proactive approach to search for early-stage indicators of ransomware presence or threat actor activity.

  • Ransomware Compromise Assessment
  • In-depth technical report of findings and recommendations
  • Includes everything in Tier 1

Most Comprehensive

Tier 3

Pressure test your defenses with a simulated attack and demonstrate your ransomware preparedness to your board and C-suite.

  • Purple team ransomware campaign
  • Data-driven board advisory briefing
  • Includes everything in Tiers 1 & 2
TIER 1
Readiness Findings and Recommendations Report
Check White
Ransomware Tabletop Exercise
Check White
250 Credits Reserved for Incident Response
Check White
Ransomware Compromise Assessment with Cortex XDR
Purple Team Ransomware Campaign
Executive / Board Advisory Briefing
TIER 2
Readiness Findings and Recommendations Report
Check White
Ransomware Tabletop Exercise
Check White
250 Credits Reserved for Incident Response
Check White
Ransomware Compromise Assessment with Cortex XDR
Check White
Purple Team Ransomware Campaign
Executive / Board Advisory Briefing
TIER 3
Readiness Findings and Recommendations Report
Check Maroon
Ransomware Tabletop Exercise
Check Maroon
250 Credits Reserved for Incident Response
Check Maroon
Ransomware Compromise Assessment with Cortex XDR
Check Maroon
Purple Team Ransomware Campaign
Check Maroon
Executive / Board Advisory Briefing
Check Maroon
SHOW TABLE

Here’s what we deliver


Unit 42 will evaluate the effectiveness of your operational capabilities and technical security controls in responding to and recovering from a ransomware incident.

READINESS FINDINGS & RECOMMENDATIONS

RANSOMWARE TABLETOP EXERCISE
RANSOMWARE TABLETOP EXERCISE

RANSOMWARE TABLETOP EXERCISE

250 CREDITS RESERVED FOR INCIDENT RESPONSE
250 CREDITS RESERVED FOR INCIDENT RESPONSE

250 CREDITS RESERVED FOR INCIDENT RESPONSE

RANSOMWARE COMPROMISE ASSESSMENT
RANSOMWARE COMPROMISE ASSESSMENT

RANSOMWARE COMPROMISE ASSESSMENT

PURPLE TEAM RANSOMWARE CAMPAIGN
PURPLE TEAM RANSOMWARE CAMPAIGN

PURPLE TEAM RANSOMWARE CAMPAIGN

EXECUTIVE & BOARD ADVISORY BRIEFING
EXECUTIVE & BOARD ADVISORY BRIEFING

EXECUTIVE & BOARD ADVISORY BRIEFING

METHODOLOGY

A proven approach to improving ransomware readiness

ASSESS
Review existing documentation

Review existing documentation

Unit 42 will develop an understanding of your processes, tools and capabilities while identifying gaps in security control design.

ASSESS
Conduct stakeholder interviews

Conduct stakeholder interviews

Unit 42 will interview your key stakeholders to gain additional insight into security control deployment and technical capabilities.

TEST
Facilitate Tabletop Exercise

Facilitate Tabletop Exercise

Unit 42 will design and manage a ransomware Tabletop Exercise to test your IR processes, tools and internal knowledge.

HUNT
Hunt for ransomware IoCs (Tier 2)

Hunt for ransomware IoCs (Tier 2)

Our threat hunters will search for indicators of unauthorized access, data exfiltration, lateral movement, malicious file execution and persistence.

ATTACK
Conduct Purple Teaming (Tier 3)

Conduct Purple Teaming (Tier 3)

Unit 42 experts will attempt to bypass your security controls by leveraging tools and techniques common in ransomware attacks.

IMPROVE
Report findings

Report findings

You will receive a detailed technical report including security risks with prioritized recommendations to guide your efforts.

WHY UNIT 42

World-renowned security experts, always in your corner


As an industry-leading threat intelligence, cyber risk management and incident response organization, it's our job to help you prepare and respond to some of the most challenging threats so that your team can get back to business faster. As threats escalate, we act as your trusted partner to advise and strengthen your security strategies.

Card Head Icon
Card Mobile Head Icon

WORLD-CLASS THREAT INTELLIGENCE

Unit 42 provides access to one of the world’s largest and most experienced threat intelligence teams. Our team of more than 200 cyberthreat researchers includes threat hunters, malware reverse engineers and threat modeling experts who enable you to apply a threat-informed approach to prepare for and respond to the latest cyberthreats.

Card Head Icon
Card Mobile Head Icon

TRUSTED EXPERTISE & EXPERIENCE

Unit 42 has assembled an experienced team of security consultants with backgrounds in public and private sectors who have handled some of the largest cyberattacks in history. We manage complex cyber risks and respond to advanced threats, including nation-state attacks, APTs and complex ransomware investigations.

Card Head Icon
Card Mobile Head Icon

INDUSTRY-LEADING TOOLS

Unit 42 security consultants leverage industry-leading Palo Alto Networks tools to jumpstart your investigation by gaining necessary visibility across your endpoint, network, cloud and third-party data. This enables you to develop and execute a plan to get back to business as quickly as possible following an incident.

Related resources

See all resources
INFOGRAPHIC

The Growing Ransomware Threat: 4 Trends and Insights

View the infographic
eBook

Stages of a Ransomware Attack

Read the eBook
VIDEO

BlackCat Ransomware Case Study

Watch the video
jeffries-logo

Go from reactive to proactive

Our consultants serve as your trusted advisors to assess and test your security controls against the right threats, transform your security strategy with an intelligence-informed approach and respond to incidents in record time.
Please complete reCAPTCHA to enable form submission.
By submitting this form, you agree to our Terms. View our Privacy Statement.

Get the latest news, invites to events, and threat alerts