Clik here to view.
Threat Roundup for Nov. 23 to Nov. 30
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 23 and Nov. 30. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: Netgate pfSense system_advanced_misc.php...
Brandon Stultz of Cisco Talos. of Cisco Talos discovered these vulnerabilities.Executive summaryToday, Cisco Talos is disclosing a command injection vulnerability in Netgate pfSense...
View ArticleClik here to view.
An introduction to offensive capabilities of Active Directory on UNIX
Tim Wadhwa-Brown of Portcullis Labs authored this post.In preparation for our talk at Black Hat Europe, Security Advisory EMEAR would like to share the background on our recent research into some...
View ArticleClik here to view.
Threat Roundup for Nov. 30 to Dec. 7
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 30 and Dec. 07. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
in(Secure) messaging apps — How side-channel attacks can compromise privacy...
This blog post is authored by Vitor Ventura.Executive summaryMessaging applications have been around since the inception of the internet. But recently, due to the increased awareness around mass...
View ArticleClik here to view.
Microsoft Patch Tuesday — December 2018: Vulnerability disclosures and Snort...
Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 38 vulnerabilities, nine of which are rated...
View ArticleClik here to view.
Vulnerability Spotlight: Adobe Acrobat Reader DC text field remote code...
Aleksandar Nikolic of Cisco Talos discovered this vulnerability.Executive summaryAdobe Acrobat Reader DC contains a vulnerability that could allow an attacker to remotely execute code on the victim’s...
View ArticleClik here to view.
Cisco Coverage for Shamoon 2 & 3
Update Dec. 14, 2018 10:30 CST: Added new Shamoon 3 IOCsShamoon is a type of destructive malware that has been previously associated with attacks against various organizations in the oil and gas...
View ArticleClik here to view.
Threat Roundup for Dec. 7 to Dec. 14
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Dec. 07 and Dec. 14. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Bitcoin Bomb Scare Associated with Sextortion Scammers
This blog was written by Jaeson Schultz.Organizations across the country are on edge today after a flurry of phony bomb threats hit several public entities Thursday, such as universities, schools and...
View ArticleClik here to view.
Beers with Talos EP 43: Espionage, Encryption, and CISO Square One
Beers with Talos (BWT) Podcast Ep. #43 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Ep. #43 show notes: Recorded...
View ArticleClik here to view.
Connecting the dots between recently active cryptominers
Post authored by David Liebenberg and Andrew Williams.Executive SummaryThrough Cisco Talos' investigation of illicit cryptocurrency mining campaigns in the past year, we began to notice that many of...
View ArticleClik here to view.
As Cryptocurrency Crash Continues, Will Mining Threat Follow?
Post authored by Nick Biasini.Executive SummaryAs 2018 draws to a close, one technology has definitively left its mark on the year: cryptocurrencies. Digital currencies started the year out strong...
View ArticleClik here to view.
Microsoft Patches Out-of-Band Internet Explorer Scripting Engine...
OverviewMicrosoft released an out-of-band (OOB) patch on Wednesday related to a vulnerability in the scripting engine of Internet Explorer. This particular vulnerability is believed to be actively...
View ArticleClik here to view.
Vulnerability Spotlight : Multiple Vulnerabilities in WIBU-SYSTEMS WibuKey.sys
These vulnerabilities were discovered by Marcin 'Icewall' Noga of Cisco Talos.Executive SummaryWibuKey is a Digital Rights Management (DRM) solution that has been used in a large number of solutions...
View ArticleClik here to view.
Year in Malware 2018: The most prominent threats Talos tracked this year
It was easy to see a wild year coming in cybersecurity. It started with a bang, with Olympic Destroyer targeting the Winter Olympics in February in an attempt to disrupt the opening ceremonies. Things...
View ArticleClik here to view.
Submissions for talks at the 2019 Talos Threat Research Summit are now open
When Cisco Talos launched the first ever Talos Threat Research Summit last year, we never could have anticipated how popular it would be. Tickets sold out quickly, and our inaugural Talos-backed...
View ArticleClik here to view.
Threat Roundup for Dec. 14 to Dec. 21
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Dec. 14 and Dec. 21. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple privilege escalation vulnerabilities in...
p.p1 {margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Monaco; color: #000000; background-color: #ffffff} p.p2 {margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Monaco; color: #000000; background-color:...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple Apple IntelHD5000 privilege escalation...
Tyler Bohan of Cisco Talos discovered this vulnerability.Executive SummaryA memory corruption vulnerability exists in the IntelHD5000 kernel extension when dealing with graphics resources inside of...
View Article