Posted April 19th, 2016.
Cisco’s Talos announced in a blog Friday that 3.2 million machines globally are at risk of a Samsam ransomware attack. Cisco Talos claims systems are at risk from unpatched versions of JBoss. Cisco’s IR Services Team received information about the attack from a recent customer engagement and began examining the JBoss vectors used as the...
Posted October 7th, 2015.
Cisco Talos managed to disrupt a major ransomware campaign that researchers believe netted a hacker more than $30 million per year. The team determined that the Angler Exploit Kit used proxy servers of service provider Limestone Networks with the primary threat actor responsible for up to 50 percent of Angler Exploit Kit activity,...