Learn from a firsthand account of surviving two ransomware attacks in this 27-minute conference talk from Derbycon 7. Explore crucial strategies for protecting against and recovering from ransomware, including testing backups, implementing application whitelisting, network segmentation, and layered backup systems. Discover the importance of employee training, vendor email management, and disabling macros. Gain insights on insurance considerations and step-by-step guidance on how to respond to an attack, including stopping the infection, preventing further ransom demands, and successfully restoring from backups.