Tag

cyber attack

Browsing

Cisco: More Than 3 Million Servers Exposed to Serious Ransomware Threat

By

Recent in-depth research found 3.2 million machines at risk

Recent research by the Cisco Talos Security Intelligence and Research Group (Talos) uncovered a widespread vulnerability to a serious ransomware threat.

Researchers at Talos, which Cisco calls its “primary team that contributes threat information to the Cisco Collective Security Intelligence ecosystem,” looked specifically into the ransomware known as “Samsam,” which is known to exploit server vulnerabilities as an initial point of compromise. Talos scanned the Internet for vulnerable machines and discovered at least 3.2 million machines at risk.

Digging even deeper, Talos found 2,100 backdoors installed across nearly 1600 IP addresses and began immediately contacting the owners of the infected machines, which includes schools, governments, and aviation companies, among others.

Destiny

Even further into the research, Talos discovered that a good number of infected machines had software named “Destiny” installed. But, according to Talos, the company behind Destiny, Follett, has a patching system available that upgrades the software and also works to remove any existing backdoors on the system.

Talos also noted that they would work alongside Follett to analyze the infected files on compromised machines to ultimately recommend the best course of action for all affected servers.

Action recommended

Along with their report detailing their findings in this ransomware investigation, Talos is also offered up [link url=”http://blog.talosintel.com/2016/04/jboss-backdoor.html” title=”recommended remediation“] for any company that discovers a compromised server, with detailed steps that should be taken to secure the server and rid it of any threats.

All in all, Talos strongly stressed the importance of software patching, calling it a “key component to software maintenance, and cautioned against neglecting this critical component as the threat of ransomware grows.

[relink url=”https://amuedge.com/ransomware-becoming-a-growing-threat/” url2=”https://amuedge.com/education/cyber-security-the-true-greatest-threat-to-our-future/” url3=”https://amuedge.com/sunday-media-review-cybersecurity/”]

Keep Reading
By

Ashley Madison Hack Will End Careers

By

In July 2015, hackers accessed account information of millions of users of the Ashley Madison, Cougar Life, and Established Men websites. These websites facilitate extramarital affairs as well as romantic and sexual encounters. While this stolen information could result in identity theft and fraud, it may have longer-lasting effects for the criminal justice community. AMU’s Dr. Chuck Russo writes about how this hack could impact current and future law enforcement professionals.

Iran Hit With Another Cyber Attack

By

By William Tucker

It is still early in the reporting on this claim out of Iran, but sources from outside the country have confirmed that Iran has been forced to take computers belonging to the Oil Ministry offline. If this was a deliberate attack, it would be the fourth publically known cyber attack against Iran since the discovery of Stuxnet.