Detect Ransomware with LepideAuditor

Ransomware is a serious threat to the security of the IT environment. Ransomware can be easily detected and prevented through a combination of stringent audit policies and employee vigilance.

Thousands of companies all over the world use LepideAuditor to help prevent data breaches.

Start My 15-Day Free Trial

By downloading you agree to the terms in
our privacy policy.

Home |
LepideAuditor |
IT Security |
Stop Ransomware Spread

Detect Ransomware in Your Core IT Systems

The only way to truly defend against ransomware is to keep software up-to-date, take regular backups, secure your network with an endpoint security solution and audit your IT environment. Here at Lepide, our focus is on providing you visibility over what’s happening with your data. Through visibility, you can speed up the detection of potential ransomware and automate your response. Detect and react quicker to ransomware using LepideAuditor.

Detect Suspicious Changes

Get real time alerts for suspicious changes being made that could indicate a ransomware attack in progress.

Reverse Unwanted Changes

Restore the state of your Active Directory Objects and Group Policy Objects from a backup snapshot.

Automate Response

Upon detection of unwanted changes, execute automated scripts to take appropriate remediation action.

How LepideAuditor Helps Detect Ransomware

LepideAuditor helps give you the visibility that you need to detect and react to ransomware threats. With LepideAuditor, you can automate your response through script execution, so that you can address ransomware threats faster.

Keep Group Policies Intact

Multiple policies to maintain IT security, such as software restriction and password policies, are configured in almost every organization. Any changes to such policies should be audited properly, with administrators being notified immediately for critical changes. LepideAuditor monitors every change in Group Policy Objects and sends real-time alerts when critical changes are detected. It also lets you restore the entire Group Policy Object with a few clicks to reverse unwanted changes.

Highlight Suspicious Changes

Some ransomware attacks (including the most recent WannaCry attack in May of 2017) encrypt critical files and alter the extension name with a new suffix. Once the extension name of a file is changed, it gets encrypted and hidden. LepideAuditor sends you real-time alerts for such suspicious changes – as emails to your inbox, updates to the Radar Tab, and push-notifications to the LepideAuditor App installed on your Android or Apple device.

Spot Anomalous Change Activity

If a user is making numerous changes over a short space of time, red flags should be raised about the possibility of unauthorized activities. LepideAuditor sends you threshold alerts, as emails or push notifications, that inform you of multiple changes or suspicious user activities taking place over a specified period of time. In-depth audit reports enable you to view all the activities or changes being made by a user account.

Detect Sudden Permission Changes

Often, ransomware attacks attempt to change permissions of a file in File Server or of a user in Active Directory. LepideAuditor audits the permissions of all server components to keep you aware of any sudden change in permissions. This enables you take quicker action to review permissions and correct if necessary.

Reverse Unwanted Changes

When your security solution has neutralized the ransomware attack, the next thing to deal with are the changes made to the configuration of IT environment due to the infection. LepideAuditor continuously captures snapshots of the state of both Active Directory Objects and Group Policy Objects. Use Lepide Object Restore Wizard to restore the state of these objects to a previously dated snapshot. With this method, you can reverse all unwanted changes within minutes.

Request a Personalized Demo Register for Live Demo Webinar

Learn More About Our Other Platforms

LepideAuditor can be sold as individual components or as a full Data Security Platform. See what other components are included in LepideAuditor.

See What Our Customers Say

LepideAuditor is straightforward to use and effective right off the bat. Plus, the level of patience, attentiveness and technical knowhow is far beyond most support and sales teams I’ve seen before.

Drayke Jackson Security Engineer

While price was a factor, we ultimately chose Lepide as they were able to offer us threshold alerting, a way of separating out reporting duties to a web console and a site licence with extended support and maintenance.

Kevin Gallagher Senior Systems Administrator

LepideAuditor is a perfect fit for our IT Security and Compliance requirements. It helps us cut out a lot of wasted time and money and now we know we can be compliant with industry standards.

Agnel DSilva Information Technology Administrator

Start My 15-Day Free Trial

Detect Ransomware in Your Core IT Systems

How LepideAuditor Helps Detect Ransomware

Keep Group Policies Intact

Highlight Suspicious Changes

Spot Anomalous Change Activity

Detect Sudden Permission Changes

Reverse Unwanted Changes

Learn More About Our Other Platforms

See What Our Customers Say

More from Lepide

Blog

Visibility Over Data Means Better Security – A Summary of InfoSecurity Europe 2019

Whitepaper

A Guide to Cybersecurity in the Legal Sector

News

“On the Fly” Classification Introduced into LepideAuditor 19.1

Start My 15-Day Free Trial

Detect Ransomware in Your Core IT Systems

How LepideAuditor Helps Detect Ransomware

Keep Group Policies Intact

Highlight Suspicious Changes

Spot Anomalous Change Activity

Detect Sudden Permission Changes

Reverse Unwanted Changes

Learn More About Our Other Platforms

See What Our Customers Say

More from Lepide

Blog

Visibility Over Data Means Better Security – A Summary of InfoSecurity Europe 2019

Whitepaper

A Guide to Cybersecurity in the Legal Sector

News

“On the Fly” Classification Introduced into LepideAuditor 19.1

Resources

Partners

Support