The Ripple Effect: Containing Crypotolocker - http://labs.umbrella.com/2013/09/25/ripple-effect/
In the past, we have demonstrated use cases of massive data-driven algorithmic malware and botnet detections, given our unique visibility to the global DNS traffic. When dealing with cases of few infections and thus mostly low traffic volume (but not necessarily less impact!), making correlations and revealing patterns with little contextual information becomes both tricky […] The post The Ripple Effect: Containing Crypotolocker appeared first on Umbrella Security Labs. ‎- лохматая стереометрия