Quantcast
Channel: Cisco Talos Blog
Viewing all 1927 articles
Browse latest View live

Talos Takes Ep. #52: Celebrating World Password Day by talking about getting rid of passwords

May 7, 2021, 7:05 am
$
0
0
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. The internet celebrated World Password Day on Thursday. To celebrate, we had Dave Lewis on the latest episode of Talos...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Search

Lemon Duck spreads its wings: Actors target Microsoft Exchange servers, incorporate new TTPs

May 7, 2021, 12:54 pm
$
0
0
By Caitlin Huey and Andrew Windsor with contributions from Edmund Brumaghin. Lemon Duck continues to refine and improve upon their tactics, techniques and procedures as they attempt to maximize the effectiveness of their campaigns.Lemon Duck remains relevant as the operators begin to target...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Code execution vulnerability in Adobe Acrobat Reader

May 12, 2021, 11:03 am
$
0
0
Aleksandar Nikolic of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.  Cisco Talos recently discovered an arbitrary code execution vulnerability in Adobe Acrobat Reader.   Adobe Acrobat Reader is one of the most popular and feature-rich PDF readers on the market....

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Microsoft Patch Tuesday for May 2021 — Snort rules and prominent vulnerabilities

May 11, 2021, 12:03 pm
$
0
0
By Jon Munshaw, with contributions from Chris Neal.  Microsoft released its monthly security update Tuesday, disclosing 55 vulnerabilities across its suite of products, the fewest in any month since January 2020.  There are only three critical vulnerabilities patched in this month, while...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Transparent Tribe APT expands its Windows malware arsenal

May 13, 2021, 5:09 am
$
0
0
By Asheer Malhotra, Justin Thattil and Kendall McKay. Transparent Tribe, also known as APT36 and Mythic Leopard, continues to create fake domains mimicking legitimate military and defense organizations as a core component of their operations. Cisco Talos' previous research has mainly linked this...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source Newsletter (May 13, 2021)

May 13, 2021, 11:00 am
$
0
0
  Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers.   In case you missed the Friday news drop last week, we have an update on the Lemon Duck cryptocurrency miner. It's not as eye-catching as the ransomware attacks that make the news, but Lemon Duck's...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos Takes Ep. #53: The broader lesson of those air fryer vulnerabilities

May 14, 2021, 5:26 am
$
0
0
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. It seemed like everyone on security Twitter had a joke when we disclosed a vulnerability in a WiFi-connected air fryer....

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for May 7 to May 14

May 14, 2021, 2:12 pm
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between May 7 and May 14. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Search

Case Study: Incident Response is a relationship-driven business

May 17, 2021, 5:00 am
$
0
0
Proof that incident response is "the ultimate team sport"  By Brad Garnett. Introduction  As a seasoned incident responder, and now IR business leader here at Cisco Talos Incident Response (CTIR), I have always said that incident response is the ultimate team sport. People are...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Beers with Talos Ep. #104: Supply chain has Matt hopping mad like a kangaroo

May 18, 2021, 8:06 am
$
0
0
  Beers with Talos (BWT) Podcast episode No. 104 is now available. Download this episode and subscribe to Beers with Talos:Apple Podcasts Google PodcastsSpotify  StitcherIf iTunes and Google Play aren't your thing, click here. By Mitch Neff. Recorded March 30,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos is hiring for several positions — Join our world-class security organization

May 19, 2021, 6:51 am
$
0
0
Cisco Talos continues to build an elite threat intelligence and research group, and we are looking for driven, innovative and diverse security enthusiasts to join us.  We are currently hiring for several positions, including multiple security engineer roles and a senior vulnerability...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Information disclosure vulnerability in macOS SMB server

May 19, 2021, 11:54 am
$
0
0
Aleksandar Nikolic of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.  Cisco Talos recently discovered an exploitable integer overflow vulnerability in Apple macOS’ SMB server that could lead to information disclosure.   Server Message Block (SMB) is a network...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Heap-based buffer overflow in Google Chrome could lead to code execution

May 20, 2021, 10:41 am
$
0
0
Marcin “Icewall” Noga of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.  Cisco Talos recently discovered an exploitable heap-based buffer overflow vulnerability in Google Chrome.   Google Chrome is a cross-platform web browser — and Chromium is the open-source...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source newsletter (May 20, 2021)

May 20, 2021, 11:00 am
$
0
0
Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers.   We know a lot of you may be tired of "content" after RSA week. But we have some more for you! And specifically related to RSA, Cisco Talos Incident Response has new case studies out detailing a few recent engagements...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos Takes Ep. #54: Incident response is just as much about the relationships as anything else

May 21, 2021, 7:03 am
$
0
0
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. Brad Garnett, Cisco Talos Incident Response's fearless leader, joins the show this week to expound more on his recent...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Search

Threat Roundup for May 14 to May 21

May 21, 2021, 12:27 pm
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between May 14 and May 21. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Multiple vulnerabilities in Trend Micro Home Network Security Station

May 24, 2021, 9:47 am
$
0
0
Carl Hurd and Kelly Leuschner of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.  Cisco Talos recently discovered multiple vulnerabilities in Trend Micro’s Home Network Security Station.  The Home Network Security Station is a device that monitors and protects home...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Elizabethan England has nothing on modern-day Russia

May 26, 2021, 7:16 am
$
0
0
This post was authored by Warren Mercer and Vitor Ventura The threat landscape is changing. Organizations need to defend against an ever-evolving tranche of threat actors. For a long time, the lines that distinguish state-sponsored and crimeware groups were well-defined. We believe this is...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source newsletter (May 27, 2021)

May 27, 2021, 11:00 am
$
0
0
Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers.   We're used to referring to attackers as either APTs or not APTs. And when something is an APT, it sounds a lot scarier and sexier. But it's our belief that that isn't going to cut it anymore. Therefore, we propose in a...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos Takes Ep. #55: How Transparent Tribe could evolve in the future

May 28, 2021, 7:30 am
$
0
0
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. We recently covered how the Transparent Tribe APT added another RAT to its arsenal. Where might they go from here? In...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Viewing all 1927 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>