Big Game Hunting from a Forensic Point of View

Ransomware attacks on huge enterprises, also known as Big Game Hunting, were the hottest topic in 2020. As it is impossible to image every drive you want during incident response engagements, it’s extremely important for forensic analysts to know which sources of artifacts are the most important for attack reconstruction, as well as what to look for during such investigations. This talk will shed light on most common techniques used by adversaries during such attacks, and which forensic artifacts to look to successfully uncover them.