05-16-2017 10:02 AM - edited 03-12-2019 02:22 AM
Is there a Cisco asa firewall prevent for Wannacry Randomware vulnerability? For example Palo Alto has one.
Solved! Go to Solution.
05-17-2017 07:25 PM
Right - as noted in the TALOS blog an ASA with FirePOWER services and current rule updates is an effective perimeter security countermeasure.
It is ideally combined with AMP for Endpoints and Cisco Umbrella (former OpenDNS Umbrella) for broader protection as many endpoints may not always be behind your corporate firewall. ESA and WSA (or CWS) with AMP would complete the spectrum of coverage.
Effective security requires a multi-layered approach and no one product will ever protect you in all use cases.
05-17-2017 12:09 PM
There is no firewall yet, which can contain a ransomware, unless we are aware when we are going to be attacked, thats what, Cisco takes into consideration. Cisco has various security measures not 1 which can control any Ransomware or malware in various stages of attack, I can discuss this one o one over a call or if you need more details let me know.
Moreover, users running XP were attacked not ones who had upgraded version. There are loopholes where ransomware can sneak in.
05-17-2017 06:33 PM
I found this,
http://blog.talosintelligence.com/2017/05/wannacry.html
05-17-2017 07:25 PM
Right - as noted in the TALOS blog an ASA with FirePOWER services and current rule updates is an effective perimeter security countermeasure.
It is ideally combined with AMP for Endpoints and Cisco Umbrella (former OpenDNS Umbrella) for broader protection as many endpoints may not always be behind your corporate firewall. ESA and WSA (or CWS) with AMP would complete the spectrum of coverage.
Effective security requires a multi-layered approach and no one product will ever protect you in all use cases.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide