← Home
Darknet Diaries · December 23, 2025 · 55m
ThreatLocker: When Ransomware Hits a Hospital
A manufacturer and hospital hit with ransomware. ThreatLocker discusses how application allowlisting stops these attacks by changing the execution environment.
Canon
•
ThreatLocker's approach is environment design: by only allowing pre-approved applications to execute, they change the computing environment from permissive to restrictive, preventing ransomware from running.
•
ThreatLocker advises a Stoic security posture: you cannot prevent attackers from trying. You can control your defensive environment — patching, allowlisting, backups, and incident response.