Cisco Talos Finds Nearly 70% of Ransomware Attacks Result from Cybercrime Tools Widely Available for Purchase
Known as ‘Commodity Trojans’, ransomware attacks often available on the Dark Web are effective against systems with patching and endpoint vulnerabilities.
Between late 2020 and early 2021, actors targeted industries including education, healthcare, energy and utilities, government, and more.
Cisco Talos Incidence Response has been responding to a growing number of incidents involving the Microsoft Exchange vulnerabilities from Hafnium and has engaged in several incident response engagements in which organizations unknowingly downloaded trojanized updates to the widely deployed SolarWinds.
For the seventh quarter in a row, Cisco Talos Incident Response (CTIR) has observed ransomware dominating the threat landscape. The top variants between November 2020 and January 2021 were Ryuk and ...