Skip to Main Content
Page Mobile Banner
PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.
  1. Home
  2. News
  3. Security
  4. Antivirus

Outdated Apps Put 3.2M Servers at Risk for Ransomware

Cisco's Talos discovered approximately 2,100 backdoors have been installed across nearly 1,600 IP addresses.

By Don Reisinger
April 18, 2016
Ransomware Feature

A recent ransomware scheme known as SamSam has put up to 3.2 million servers at risk, according to Cisco's security division Talos, thanks in part to less-than-vigorous bug patching.

Talos analyzed the "JBoss vectors that were used as the initial point of compromise" and discovered approximately 2,100 backdoors have been installed across nearly 1,600 IP addresses.

The company added that the backdoors affect schools, governments, and even aviation companies. Specifically, the report points to library management software known as Destiny from Follett. The company has since started patching the affected software to blunt the threat's potential impact.

"Based on our internal systems security monitoring and protocol, Follett identified the issue and immediately took actions to address and close the vulnerability on behalf of our customers," the company said in a statement. "Follett takes data security very seriously and as a result, we are continuously monitoring our systems and software for threats, and enhancing our technology environment with the goal of minimizing risks for the institutions we serve."

The issue is just the latest in a long line of problems companies are facing in trying to stay a step ahead of malicious hackers. Indeed, recent studies and reports have shown that threats are on the rise and hackers have found a profitable enterprise in ransomware to take advantage of unsuspecting victims.

Recommended by Our Editors

Ransomware Feature
The Growing Threat of Ransomware

"With around 2,100 servers affected, there are a lot of stories about how this happened. But a consistent thread in them all is the need to patch," Talos said in a statement. "Patching is a key component to software maintenance. It is neglected by both users and makers of the software far too often. Failures anywhere along the chain will ensure that this type of attack remains successful. With the addition of ransomware, the potential impacts could be devastating for small and large businesses alike."

Like What You're Reading?

Sign up for SecurityWatch newsletter for our top privacy and security stories delivered right to your inbox.

This newsletter may contain advertising, deals, or affiliate links. Subscribing to a newsletter indicates your consent to our Terms of Use and Privacy Policy. You may unsubscribe from the newsletters at any time.


Thanks for signing up!

Your subscription has been confirmed. Keep an eye on your inbox!

Sign up for other newsletters

Further Reading

Many Apple IDs Were Unexpectedly Reset Last Night
Many Apple IDs Were Unexpectedly Reset Last Night
By Emily Price
Apple Pulls 3 Generative AI Apps Being Used to Make Deepfake Nudes
Apple Pulls 3 Generative AI Apps Being Used to Make Deepfake Nudes
By Emily Price
New Android Trojan Malware Targets Bank Accounts With Fake Chrome Updates
New Android Trojan Malware Targets Bank Accounts With Fake Chrome Updates
By Kate Irwin
Google Preps Fix for Bug That Exposes Gmail, Drive Accounts on Android TVs
Google Preps Fix for Bug That Exposes Gmail, Drive Accounts on Android TVs
By Emily Price
Feds Try Breaking Out Into Song to Get People to Take Ransomware Seriously
Feds Try Breaking Out Into Song to Get People to Take Ransomware Seriously
By Rob Pegoraro
Everything You Need to Know About the TikTok Ban: Your Questions Answered
Everything You Need to Know About the TikTok Ban: Your Questions Answered
By Chloe Albanesius
Proton Mail Adds Dark Web Monitoring for Paid Users
Proton Mail Adds Dark Web Monitoring for Paid Users
By Emily Price
Explicit Internet Memes Are Breaking the US Child Sexual Abuse Reporting System
Explicit Internet Memes Are Breaking the US Child Sexual Abuse Reporting System
By Emily Dreibelbis

TRENDING

About Don Reisinger

Don Reisinger

Don Reisinger is a longtime freelance technology journalist and product reviewer. He covers everything from Apple to gaming to start-ups. You can follow him on Twitter @donreisinger.

Read Don's full bio

Read the latest from Don Reisinger