Quantcast
Channel: Cisco Talos Blog
Viewing all 1927 articles
Browse latest View live

Threat Source newsletter (May 12, 2022) — Mandatory MFA adoption is great, but is it too late?

May 12, 2022, 11:00 am
$
0
0
By Jon Munshaw.  Welcome to this week’s edition of the Threat Source newsletter.  Mandatory multi-factor authentication is all the rage nowadays. GitHub just announced that all contributors would have to enroll in MFA by 2023 to log into their accounts. And Google announced as part of...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Search

EMEAR Monthly Talos Update: Wiper malware

May 13, 2022, 5:00 am
$
0
0
Cisco Talos and Cisco Secure are launching a new video series to fill you in on the latest cybersecurity trends. We’re thrilled to launch our first video in the new Talos Threat Update series, which you can watch above or over at this link, where Martin Lee and Hazel Burton talk about wiper...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for May 6 to May 13

May 13, 2022, 12:04 pm
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between May 6 and May 13. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Ransomware: How executives should prepare given the current threat landscape

May 16, 2022, 6:14 am
$
0
0
By Nate Pors. Top executives are increasingly dreading the phone call from their fellow employees notifying them that their company has been hit by a cyber attack. Nearly every week in 2021 and early 2022, a prominent organization has been in the media spotlight as their public relations team...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Multiple memory corruption vulnerabilities in NVIDIA GPU driver

May 17, 2022, 7:55 am
$
0
0
Piotr Bania of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.  Cisco Talos recently discovered four vulnerabilities in the NVIDIA D3D10 driver for graphics cards that could allow an attacker to corrupt memory and write arbitrary memory on the card.  NVIDIA graphics...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

The BlackByte ransomware group is striking users all over the globe

May 18, 2022, 6:13 am
$
0
0
News summary Cisco Talos has been monitoring the BlackByte Ransomware Group for several months, infecting victims all over the world, from North America to Colombia, Netherlands, China, Mexico and Vietnam.The FBI released a joint cybersecurity advisory in February 2022 warning about this group,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source newsletter (May 19, 2022) — Why I'm missing the days of iPods and LimeWire

May 19, 2022, 11:00 am
$
0
0
By Jon Munshaw.  Welcome to this week’s edition of the Threat Source newsletter.  I will openly admit that I still own a “classic” iPod — the giant brick that weighed down my skinny jeans in high school and did nothing except play music. There are dozens of hours of music on there that I...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for May 13 to May 20

May 20, 2022, 11:26 am
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between May 13 and May 20. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Search

Vulnerability Spotlight: Vulnerabilities in Open Automation Software Platform could lead to information disclosure, denial of service

May 25, 2022, 8:18 am
$
0
0
Jared Rittle of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.  Cisco Talos recently discovered eight vulnerabilities in the Open Automation Software Platform that could allow an adversary to carry out a variety of malicious actions, including improperly authenticating into...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source newsletter (May 26, 2022) — BlackByte adds itself to the grocery list of big game hunters

May 26, 2022, 11:00 am
$
0
0
By Jon Munshaw.  Welcome to this week’s edition of the Threat Source newsletter.  Given the recent tragedies in the U.S., I don’t feel it’s appropriate to open by being nostalgic or trying to be witty — let’s just stick to some security news this week.    The one big...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for May 20 to May 27

May 27, 2022, 1:38 pm
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between May 20 and May 27. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Researcher Spotlight: Martin Lee, EMEAR lead, Talos Strategic Communications

May 31, 2022, 6:00 am
$
0
0
Who knew you could connect Moses to threat intelligence?  By Jon Munshaw.  When the security community usually thinks about the origins of cybersecurity and threat intelligence, the conversation may quickly center around the codebreakers in World War II or the Creeper software developed...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Advisory: Zero-day vulnerability in Microsoft diagnostic tool MSDT could lead to code execution

June 1, 2022, 7:40 am
$
0
0
A recently discovered zero-day vulnerability in the Microsoft Windows Support Diagnostic Tool (MSDT) made headlines over the past few days. CVE-2022-30190, also known under the name "Follina," exists when MSDT is called using the URL protocol from an application, such as Microsoft Office, Microsoft...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source newsletter (June 2, 2022) — An RSA Conference primer

June 2, 2022, 11:00 am
$
0
0
By Jon Munshaw.  Welcome to this week’s edition of the Threat Source newsletter.  Many of you readers may be gearing up for a West Coast swing over the next few weeks through San Francisco and Las Vegas for RSA and Cisco Live, respectively. And we’re right behind you!   Talos...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for May 27 to June 3

June 3, 2022, 12:07 pm
$
0
0
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between May 27 and June 3. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Search

Threat Advisory: Atlassian Confluence zero-day vulnerability under active exploitation

June 3, 2022, 5:08 pm
$
0
0
Cisco Talos is monitoring reports of an actively exploited zero-day vulnerability in Confluence Data Center and Server. Confluence is a Java-based corporate Wiki employed by numerous enterprises. At this time, it is confirmed that all supported versions of Confluence are affected by this...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos EMEA monthly update: Business email compromise

June 9, 2022, 5:16 am
$
0
0
The latest edition of the Talos EMEA Monthly Update is available now on Cisco.com and Cisco's YouTube page. You can also view the episode in its entirety above. For June, Hazel and Martin got together to discuss business email compromise. BEC has quickly become the most lucrative attack vector for...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source newsletter (June 9, 2022) — Get ready for Cisco Live

June 9, 2022, 11:06 am
$
0
0
By Jon Munshaw.  Welcome to this week’s edition of the Threat Source newsletter.  Another week, another conference. We’re heading a few miles southeast from San Francisco to Las Vegas for Cisco Live. I hope everyone had a safe, healthy and enjoyable RSA, but the fun isn’t over just...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Microsoft Patch Tuesday for June 2022 — Snort rules and prominent vulnerabilities

June 14, 2022, 11:47 am
$
0
0
By Chetan Raghuprasad. Microsoft released its monthly security update Tuesday, disclosing 55 vulnerabilities in the company’s firmware and software. One of these vulnerabilities is considered critical, 40 are listed as high severity, and the remainder is considered "moderate."  The most...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Vulnerabilities in Anker Eufy Homebase could lead to code execution, authentication bypass

June 15, 2022, 12:14 pm
$
0
0
Lilith >_> of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.  Cisco Talos recently discovered three vulnerabilities in the Anker Eufy Homebase 2.  The Eufy Homebase 2 is the video storage and networking gateway that works with Anker’s Eufy Smarthome ecosystem....

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Viewing all 1927 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>