Quantcast
Channel: Cisco Talos Blog
Viewing all 1927 articles
Browse latest View live

Threat Advisory: NSA SVR Advisory Coverage

April 15, 2021, 8:45 am
$
0
0
The U.S. National Security Agency released an advisory outlining several vulnerabilities that the Russian Foreign Intelligence Services (SVR) is exploiting in the wild. The U.S. formally attributed the recent SolarWinds supply chain attack to the SVR group in this advisory and detailed more of the...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Search

Threat Source Newsletter (April 15, 2021)

April 15, 2021, 11:00 am
$
0
0
Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers.   If you missed our webinar last week, we've got you covered. We've uploaded an extended version to our YouTube page that includes the scripts used in the presentation. This video will show you how to reverse-engineer and...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos Takes Ep. #49: LodaRAT keeps growing....and growing

April 16, 2021, 7:53 am
$
0
0
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. Chris Neal from Talos Outreach has followed LodaRAT for years now. It’s gone from a fairly small threat to a full-on...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for April 9 to April 16

April 16, 2021, 12:52 pm
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between April 9 and April 16. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Remote code execution vulnerabilities in Cosori smart air fryer

April 19, 2021, 6:56 am
$
0
0
Dave McDaniel of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.  Cisco Talos recently discovered two code execution vulnerabilities in the Cosori smart air fryer.   The Cosori Smart Air Fryer is a WiFi-enabled kitchen appliance that cooks food with a variety of...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Multiple vulnerabilities in Synology DiskStation Manager

April 20, 2021, 6:00 am
$
0
0
Claudio Bozzato of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.  Cisco Talos recently discovered multiple vulnerabilities in Synology DiskStation Manager.   DSM is the Linux-based operating system for every Synology network-attached storage device (NAS). The...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

A year of Fajan evolution and Bloomberg themed campaigns

April 21, 2021, 5:04 am
$
0
0
By Vanja Svajcer. News summarySome malware campaigns are designed to spread malware to as many people as possible — while some others carefully choose their targets. Cisco Talos recently discovered a malware campaign that does not fit in any of the two categories. This actor has a relatively low...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Code execution vulnerabilities in PrusaSlicer

April 21, 2021, 10:00 am
$
0
0
Lilith >_> of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Cisco Talos recently discovered two out-of-bounds write vulnerabilities in Prusa Research’s PrusaSlicer. Prusa Slicer is an open-source 3-D printer slicing program forked off Slic3r that can convert various 3-D...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Search

Beers with Talos Ep. #103: ICS/SCADA Security — The permanence and people problems

April 22, 2021, 5:17 am
$
0
0
Beers with Talos (BWT) Podcast episode No. 103 is now available. Download this episode and subscribe to Beers with Talos:Apple Podcasts Google PodcastsSpotify  StitcherIf iTunes and Google Play aren't your thing, click here. By Mitch Neff. Recorded March 2021 ICS and SCADA...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Advisory: Pulse Secure Connect Coverage

April 22, 2021, 10:29 am
$
0
0
Pulse Secure announced that a critical vulnerability (CVE-2021-22893) was discovered in their VPN service "Pulse Secure Connect" in a recent security advisory. The advisory states that, "a vulnerability was discovered under Pulse Connect Secure (PCS). This includes an authentication by-pass...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source Newsletter (April 22, 2021)

April 22, 2021, 11:00 am
$
0
0
Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers.   We went viral this week! Everyone seemed to love to joke about these vulnerabilities we discovered in a WiFi-connected air fryer. An attacker, if they had physical access to the device, could exploit these...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos Takes Ep. #50: Just like us, attackers are using Slack and Discord now more than ever

April 23, 2021, 6:59 am
$
0
0
  By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. With more workers than ever going remote due to the COVID-19 pandemic, the popularity of collaboration apps like...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for April 16 to April 23

April 23, 2021, 11:51 am
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between April 16 and April 23. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Information disclosure vulnerability in the Linux Kernel

April 27, 2021, 7:17 am
$
0
0
Lilith >_> and Claudio Bozzato of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.  Cisco Talos recently discovered an information disclosure vulnerability in the Linux Kernel.   The Linux Kernel is the free and open-source core of Unix-like operating systems....

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source Newsletter (April 29, 2021)

April 29, 2021, 11:00 am
$
0
0
 Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers.   Ransomware is not just financial extortion. It is crime that transcends business, academic and geographic boundaries. Talos was proud to assist with a newly released report from the international Ransomware Task...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Search

Talos Takes Ep. #51: COVID and Tax Day have perfectly aligned for spammers

April 30, 2021, 7:00 am
$
0
0
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. We see tax scams every year — people offering to do your taxes for you, finding a larger return, etc.  But this...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for April 23 to April 30

April 30, 2021, 12:10 pm
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between April 23 and April 30. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Use-after-free vulnerability in Foxit PDF Reader

May 6, 2021, 8:12 am
$
0
0
Aleksandar Nikolic of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.  Cisco Talos recently discovered a use-after-free vulnerability in the Foxit PDF Reader.   Foxit PDF Reader is one of the most popular PDF document readers currently available. As a complete...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source Newsletter (May 6, 2021)

May 6, 2021, 11:00 am
$
0
0
 Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers.   COVID-19 has changed everything about our lives — no surprise there. So it also shouldn't be shocking that it's changing the way Americans view Tax Day this year. The deadline to file taxes is about a month later...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for April 30 to May 7

May 7, 2021, 10:50 am
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between April 30 and May 7. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Viewing all 1927 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>