Hello everyone,
Looking through LEM, it seems that it should have the ability to fight cryptolockers by kicking the machine off the network/domain.
Does anyone currently have rules setup to handle that? If so, can you please share your insight?
I feel like I could muddle my way through it but I would prefer some assistance on the matter.