Clik here to view.
Booters with Chinese Characteristics: The Rise of Chinese Online DDoS Platforms
This post was authored by Dave LiebenbergIn the past few months, Talos has observed an uptick in the number of Chinese websites offering online DDoS services. Many of these websites have a nearly...
View ArticleClik here to view.
Threat Round-up for Aug 11 - Aug 18
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between August 11 and August 18. As with previous round-ups, this post isn't meant to be an in-depth analysis....
View ArticleClik here to view.
Vulnerability Spotlight: Lexmark Perceptive Document Filters Code Execution Bugs
OverviewTalos is disclosing a pair of code execution vulnerabilities in Lexmark Perceptive Document Filters. Perceptive Document Filters are a series of libraries that are used to parse massive amounts...
View ArticleClik here to view.
Beers with Talos EP11 - This is How the World Ends, Not with a Whimper but...
Beers with Talos (BWT) Podcast Episode 11 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing: www.talosintelligence.com/podcastBeers...
View ArticleClik here to view.
Vulnerability Spotlight: Code Execution Vulnerability in LabVIEW
Vulnerability discovered by Cory Duplantis of Cisco Talos.OverviewLabVIEW is a system design and development platform released by National Instruments. The software is widely used to create...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple Gdk-Pixbuf Vulnerabilities
OverviewToday, Talos is disclosing the discovery of two remote code execution vulnerabilities which have been identified in the Gdk-Pixbuf Toolkit. This toolkit used in multiple desktop applications...
View ArticleClik here to view.
Back to Basics: Worm Defense in the Ransomware Age
This post was authored by Edmund Brumaghin"Those who cannot remember the past are condemned to repeat it." - George SantayanaThe PrequelIn March 2017, Microsoft released a security update for various...
View ArticleClik here to view.
Threat Round Up for Aug 25 - Sep 1
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between August 25 and September 1. As with previous round-ups, this post isn't meant to be an in-depth analysis....
View ArticleClik here to view.
Graftor - But I Never Asked for This…
This post is authored by Holger Unterbrink and Matthew MolyettOverviewFree software often downloaded from large freeware distribution sites is a boon for the internet, providing users with...
View ArticleClik here to view.
Vulnerability Spotlight: Content Security Policy bypass in Microsoft Edge,...
The vulnerabilities were discovered by Nicolai Grødum of Cisco.Today, Talos is releasing details of vulnerabilities discovered in Microsoft Edge browser as well as older versions of Google Chrome...
View ArticleClik here to view.
Another Apache Struts Vulnerability Under Active Exploitation
This post authored by Nick Biasini with contributions from Alex Chiu.Earlier this week, a critical vulnerability in Apache Struts was publically disclosed in a security advisory. This new...
View ArticleClik here to view.
Vulnerability Spotlight: TALOS-2017-0430/0431: Multiple Vulnerabilities in...
Vulnerability discovered by Marcin Noga of Cisco TalosOverviewTalos has discovered two remote code execution vulnerabilities in the the FreeXL library. FreeXL is an open source C library to extract...
View ArticleClik here to view.
Microsoft Patch Tuesday - September 2017
Microsoft has released its monthly set of security advisories for vulnerabilities that have been identified and addressed in various products. This month's advisory release addresses 81 new...
View ArticleClik here to view.
Vulnerability Spotlight: LibOFX Tag Parsing Code Execution Vulnerability
This vulnerability was discovered by Cory Duplantis of TalosOverviewLibOFX is an open source implementation of OFX (Open Financial Exchange) an open format used by financial institutions to share...
View ArticleClik here to view.
Vulnerability Spotlight: YAML Parsing Remote Code Execution Vulnerabilities...
Vulnerabilities discovered by Cory Duplantis of Talos.Talos is disclosing the presences of remote code execution vulnerabilities in the processing of Yet Another Markup Language (YAML) content in...
View ArticleClik here to view.
Deep Dive in MarkLogic Exploitation Process via Argus PDF Converter
This post authored by Marcin Noga with contributions from William LargentTalos discovers and responsibly discloses software vulnerabilities on a regular basis. Occasionally we publish a deep technical...
View ArticleClik here to view.
Beers with Talos EP12 - IrmaGerd! The Internet Ate Our Podcast!
Beers with Talos (BWT) Podcast Episode 12 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing: www.talosintelligence.com/podcastBeers...
View ArticleClik here to view.
Threat Round Up For Sept 8 - Sept 15
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between September 08 and September 15. As with previous round-ups, this post isn't meant to be an in-depth analysis....
View ArticleClik here to view.
CCleanup: A Vast Number of Machines at Risk
This post was authored by: Edmund Brumaghin, Ross Gibb, Warren Mercer, Matthew Molyett, and Craig WilliamsUpdate 9/18: CCleaner Cloud version 1.07.3191 is also reported to be affectedUpdate 9/19: This...
View ArticleClik here to view.
Beers with Talos EP 13:A Vast CCleanup, Strutting Your Stuff, and the...
Beers with Talos (BWT) Podcast Episode 13 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing: www.talosintelligence.com/podcastBeers...
View Article