Yanluowang Ransomware– Protecting Against Active Directory

Written by: Venu Vissamsetty, VP of Security Research – Yanluowang is the latest targeted ransomware attack that enumerates Active Directory.  It uses tools like ADFind to perform domain reconnaissance, escalate domain privileges, and deploy ransomware across the organization.