Defending against Ryuk

A great twitter thread here for network defenders to have a look over.

and to follow up some advise here;

center-for-threat-informed-defense/adversary_emulation_library
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs. - center-for-threat-informed-defense/adversary_emulation_library