ransomware

July 5, 2017

THREAT RESEARCH

The MeDoc Connection

Summary The Nyetya attack was a destructive ransomware variant that affected many organizations inside of Ukraine and multinational corporations with operations in Ukraine. In cooperation with Cisco Advanced Services Incident Response, Talos identified several key aspects of the attack. The investigation found a supply chain-focused attack at M.E.Doc software that delivered a destructive payload disguised […]

July 1, 2017

FINANCIAL SERVICES

What the Nyetya Ransomware Attack Means for Banks

Today, the world is still reeling from another ransomware attack, referred to as Petya, NotPetya, Petrwrap, and GoldenEye. Cisco’s Talos Threat Intelligence Team identified this variant of malware as Nyetya.

June 30, 2017

EDUCATION

Déjà vu: Cyber Criminals Launch New Ransomware Attack

Cyber criminals are making headlines again with a new ransomware exploit called Nyetya. Is your school, college, or university protected?

June 30, 2017

HEALTHCARE

Healthcare hit by global ransomware attack – again

Like a nasty strain of antibiotic-resistant bacteria, ransomware reared its ugly head again this week. This attack is called Nyetya, as named by Cisco’s Talos threat intelligence team. (You may have heard it referred to in the press as Petya, but we believe this variant is different enough to warrant its own moniker.) Nyetya is […]

Ransomware Attackers Strike Again

After last month’s WannaCry cyberattack, a new ransomware attack shut down systems across Europe this week. Get the latest on the attack and steps you can take to strengthen your security.

June 28, 2017

MANUFACTURING

Ransomware: First WannaCry, now Nyetya

[Editor’s note] Join us for a webinar hosted by Martin Lee, technical lead on Cisco’s Talos threat research team, to understand the latest in the new malware variant, Nyetya.  Webinar will be on Friday, June 30, 2017 at 7 am PDT / 3 pm BST / 4 pm CEST.  Hear the latest on the attack […]

June 27, 2017

THREAT RESEARCH

New Ransomware Variant “Nyetya” Compromises Systems Worldwide

Note: This blog post discusses active research by Talos into a new threat. This information should be considered preliminary and will be updated as research continues. For the most current info, please read our full blog on TalosIntelligence.com. Since the SamSam attacks that targeted US healthcare entities in March 2016, Talos has been concerned about […]

June 21, 2017

THREAT RESEARCH

Player 1 Limps Back Into the Ring – Hello again, Locky!

This post was authored by Alex Chiu, Warren Mercer, and Jaeson Schultz.  Sean Baird and Matthew Molyett contributed to this post. Back in May, the Necurs spam botnet jettisoned Locky ransomware in favor of the new Jaff ransomware variant. However, earlier this month Kaspersky discovered a vulnerability within Jaff which allowed them to create a decryptor. […]

June 1, 2017

DIGITAL AND SOCIAL

May 25th #CiscoChat Recap: Securing Your Network in the Age of #Ransomware Attacks

Maybe your users mistakenly clicked on a suspicious ad. Or maybe they were tricked into opening an email link. But no matter how it happened, here you are: Ransomware has encrypted your files, and you need to pay a hefty fee to get them back. It’s not just you: The attacks continue to proliferate — now approaching a $1 billion annual market — as they infect the computers and networks of entire organizations...