Cisco Talos: Top Ransomware TTPs Exposed

2024-07-10 21:21

Cisco Talos analyzed the top 14 ransomware groups between 2023 and 2024 to expose their attack chain and highlight interesting Tactics,Techniques and Protocols.

The security company also exposed the most leveraged vulnerabilities being triggered by ransomware actors.

Ransomware attack chain: What Cisco Talos researchers learned.

If the goal is to encrypt data, the attacker needs to test the ransomware in the environment - that is, checking the delivery mechanisms and the communications between the ransomware and the C2 server - before launching it to encrypt the network and notify the victim they have been breached and need to pay the ransom.

Cisco Talos reported that three vulnerabilities on public-facing applications are commonly exploited by ransomware threat actors.

Cisco Talos observed the TTPs used by 14 of the most prevalent ransomware groups based on their volume of attack, impact to customers and atypical behavior.

News URL

https://www.techrepublic.com/article/cisco-talos-ransomware-ttps/

#cisco #ransomware

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Cisco		4416	230	3060	1826	600	5716