Technical Analysis of Samsam Ransomware.
Ransomware continues to represent the most critical threat facing organizations in 2018. In the latest breaches at Hancock Memorial Hospital, Adams Memorial Hospital, and Allscripts, SamSam ransomware was used to encrypt the files. In this blog, we dive into the...
Ransomware Command and Control Detection using Machine Learning
Authors: Deepak Gujraniya, Mohammad Waseem, Balamurali AR, and Satnam Singh Since the first attack in 1989 [1], ransomware attacks have gained popularity. Especially in 2017, it has created havoc in every possible industry, including the government offices,...
Lateral Movement analysis of Zealot Campaign and its detection by Distributed Deception Architecture.
Acalvio Threat Research Labs Web Servers are becoming one of the entry vectors in breaches. In the last blog, I had shared the details of deception based architecture to prevent breaches involving web server as an entry vector. In this blog, we take Zealot campaign...
Deception Centric Architecture to prevent Breaches involving WebServer.
Web Server is becoming one of the critical vector which have been exploited by a threat actor to breach an organization. Breach at Equifax is one such example, affecting 143 million customers. In this breach, a threat actor could access the internal network and...
Beyond the Hype: AI in Information Security
In the next few years, Artificial Intelligence (AI) will transform and expand as a decision engine across every enterprise business layer from product development to operations to finance to sales. While, internet biggies like Google, Facebook, Microsoft and Saleforce...
Acalvio RSS Feed
- Protecting Microsoft Active Directory: Understanding the Attack Surface July 21, 2021In the recent SolarWinds hack and Ransomware attack on Colonial Pipeline, Active Directory (AD) compromise was at the core of the attack playbook. In this 3-part blog series, we look at protecting Microsoft Active Directory – which is central to most enterprise infrastructure layouts.Team Acalvio
- OT Risk Management – Deceiving Your Way to IT/OT Convergence June 24, 2021Securing Operational Technology (OT) networks is definitely “a thing” these days. OT environments include specialized equipment (e.g. PLCs) that monitor and control production facilities such as refineries, manufacturing plants and utilities. The stakes are high with respect to potential business continuity and safety impacts if something is compromised. To be sure, it’s not that CISOs […]Team Acalvio
- Acalvio Customer Reference – Consumer Packaged Goods June 20, 2021 Team Acalvio
- Acalvio ShadowPlex Customer Reference Research University May 21, 2021 Team Acalvio
- Tales from the trenches: Effective managed cyber threat detection and response February 19, 2021Breaches can take minutes or less for a cyber criminal to execute but often months to discoverTeam Acalvio
- Customer Reference Industrial Manufacturer February 6, 2021 Team Acalvio
- Acalvio Customer Reference Consumer Services February 6, 2021 Team Acalvio
- Threat Hunting the Modern Way January 31, 2021When you think threat hunting, what comes to mind? For most enterprise security staff, the answer is “Hmmm, not sure if that’s for me”.Team Acalvio
- The Solarwinds Attack – Don’t Trust; Always Verify January 11, 2021What’s the biggest lesson from the SolarWinds fiasco? Just focusing security defenses on the most common means of penetrating an organization doesn’t cut it.Team Acalvio
- Acalvio ShadowPlex Customer Reference Semiconductor December 16, 2020 Team Acalvio