US-CERT team issues a warning to inform computer network defenders about SamSam ransomware. So far it seems that the threat gains access through vulnerable JBoss applications, remote desktop protocol and exploiting leaked credentials. Some of the recommended mitigations include regular system and software updates, backups and denying access to remote desktop port (3389) from internet. Other efficient methods include account lock-down policies against brute-force attacks and utilizing two-factor authentication wherever possible.