Talos Takes

Breaking Down Chaos: Tactics and Origins of a New RaaS Operation

Cisco Talos

Hazel is joined by threat intelligence researcher James Nutland to discuss Cisco Talos’ latest findings on the newly emerged Chaos ransomware group. Based on real-world incident response engagements, James breaks down Chaos’ fast, multi-threaded encryption, their use of social engineering and remote access tools like Quick Assist, and the group’s likely connections to former BlackSuit operators. James also shares what defenders should be watching for and how to stay ahead of evolving ransomware tactics.

Read the full research blog: https://blog.talosintelligence.com/new-chaos-ransomware

People on this episode