Top threats, attacker trends and malware from the past year Our report includes a full breakdown of the current threat landscape, including actor trends with a specific focus on China, Russia and Middle East-based APTs. Download now Ransomware group LockBit accounts for more than a quarter of the total number| Cisco Talos Blog
The Clop ransomware group has claimed responsibility for exploiting the vulnerability to deploy a previously unseen web shell, LemurLoot.| Cisco Talos Blog
Cisco is aware of new activity targeting certain Cisco Adaptive Security Appliances (ASA) 5500-X Series and has released three CVEs related to the event. We assess with high confidence this activity is related to same threat actor as ArcaneDoor in 2024.| Cisco Talos Blog
Modified Analysis by NIST 3/06/2025 3:11:58 PM| nvd.nist.gov
Cisco Talos obtained executable code capable of decrypting files affected by the Babuk Tortilla ransomware variant, allowing Talos to extract and share the private decryption key used by the threat actor.| Cisco Talos Blog
Modified Analysis by NIST 1/27/2025 4:30:45 PM| nvd.nist.gov
