RadiumFox Logo
RADIUMFOXSecurity

Select Case File (DRAG TO EXPLORE)

June 27, 2017

NotPetya

The Most Destructive Cyberattack in History

View Analysis
May 12, 2017

WannaCry

The NHS Crippler

View Analysis
Dec 2020 (Discovered)

SolarWinds

The Sunburst Backdoor

View Analysis
May 7, 2021

Colonial Pipeline

DarkSide Ransomware

View Analysis
Sept 7, 2017

Equifax

The Apache Struts Breach

View Analysis
Sept 11, 2023

MGM Resorts

Social Engineering Masterclass

View Analysis
Dec 2013

Target

The HVAC Vendor Breach

View Analysis
2010 (Discovered)

Stuxnet

The First Cyber Weapon

View Analysis
Nov 24, 2014

Sony Pictures

The Guardians of Peace

View Analysis
Nov 2018 (Discovered)

Marriott (Starwood)

The 4-Year Breach

View Analysis

The Kill Chain

A chronological reconstruction of the attack vectors used to compromise the target.

Impact Assessment

Financial LossN/A (Data Theft)
Operational Impact147 Million People's Data Exposed
Day 0

Vulnerability Disclosed

Apache Struts vulnerability (CVE-2017-5638) is announced. Patch is available.

Day 60

Exploitation

Attackers exploit the unpatched web portal to gain shell access.

Day 65

Database Access

Attackers find unencrypted credentials and access 51 databases.

Day 130

Exfiltration

Data is exfiltrated slowly over months to avoid detection.

Evidence Board

CONFIDENTIAL // EYES ONLY

RANSOM_NOTE.TXT

N/A

WALLET ADDRESS

N/A

SHA-256 HASH

Web Shell (JSP)

EXPLOITED VULNERABILITIES

CVE-2017-5638
Retrospective Analysis

How We Would Have Stopped It

Mapping the specific security failures to RadiumFox's preventative services.

The Failure

Unpatched Web Framework

The Solution

Maintain an accurate asset inventory and patch critical web vulnerabilities within 48 hours.

Explore Vulnerability Management

The Failure

Flat Network

The Solution

Web servers should not have direct, unmonitored access to backend databases containing PII.

Explore Network Pentesting

The Failure

Lack of Egress Filtering

The Solution

Inspect encrypted traffic leaving the network to detect large data transfers.

Explore SOC Advisory

Join Us. Cut Costs.
Focus on What Matters.

Unlock high-impact penetration testing that drives real security gains. Led by experts, tailored for results, and designed to stay budget-friendly.

1

Submit Info

Share your environment, scope, or compliance needs via our quick form.

2

Senior Review

A lead RadiumFox engineer reviews and tailors your assessment—no junior handoffs.

3

Optional Scoping Call

We'll clarify priorities and technical details if needed.

4

Clear Quote

Expect a fixed-cost proposal—no hidden fees or fluff.

5

Fast Kickoff

Once approved, most projects launch within 5–7 business days with full support.