Clik here to view.
Microsoft Patch Tuesday — January 2019: Vulnerability disclosures and Snort...
Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 49 vulnerabilities, seven of which are rated...
View ArticleClik here to view.
Why we want users' feedback on Snort rule documentation
Today, Talos is launching a new community survey to solicit feedback on SNORTⓇ documentation.When Snort alerts the end user, the rule documentation is their first and possibly only avenue to find...
View ArticleClik here to view.
Pylocky Unlocked: Cisco Talos releases PyLocky ransomware decryptor
This tool was developed by Mike Bautista.PyLocky is a family of ransomware written in Python that attempts to masquerade as a Locky variant. This ransomware will encrypt all files on a victim machine...
View ArticleClik here to view.
Vulnerability Deep Dive: TP-Link TL-R600VPN remote code execution...
Vulnerability discovery and research by Jared Rittle and Carl Hurd of Cisco Talos.IntroductionTP-Link recently patched three vulnerabilities in their TL-R600VPN gigabit broadband VPN router, firmware...
View ArticleClik here to view.
Emotet re-emerges after the holidays
While Emotet has been around for many years and is one of the most well-known pieces of malware in the wild, that doesn't mean attackers don't try to freshen it up. Cisco Talos recently discovered...
View ArticleClik here to view.
Dynamic Data Resolver (DDR) - IDA Plugin
This blog post was authored by Holger UnterbrinkExecutive SummaryStatic reverse-engineering in IDA can often be problematic. Certain values are calculated at run time, which makes it difficult to...
View ArticleClik here to view.
Beers with Talos EP44: Fun with 2018’s Worst and Talks We Want to Hear
Beers with Talos (BWT) Podcast Ep. #44 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Ep. #44 show notes: Recorded...
View ArticleClik here to view.
Cisco Talos' new reputation dispute system
We know users have been waiting for this feature for a while, and we are here to say: It’s ready. Cisco Talos’ new reputation system rolled out Jan. 14 on TalosIntelligence.com. We have been working...
View ArticleClik here to view.
What we learned by unpacking a recent wave of Imminent RAT infections using AMP
This blog post was authored by Chris MarczewskiCisco Talos has been tracking a series of Imminent RAT infections for the past two months following reported data from Cisco Advanced Malware Protection's...
View ArticleClik here to view.
Threat Roundup for Jan. 11 to Jan. 18
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 11 and Jan. 18. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Beers with Talos Ep. #45: SoHo attacks, IoT devices, and the cesspool setting
Beers with Talos (BWT) Podcast Ep. #45 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Ep. #45 show notes: Recorded...
View ArticleClik here to view.
AMP tracks new campaign that delivers Ursnif
This blog post was authored by John Arneson of Cisco TalosExecutive SummaryCisco Talos once again spotted the Ursnif malware in the wild. We tracked this information stealer after Cisco's Advanced...
View ArticleClik here to view.
Threat Roundup for Jan. 18 to Jan. 25
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 18 and Jan. 25. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple WIBU SYSTEMS WubiKey vulnerabilities
Marcin "Icewall" Noga of Cisco Talos discovered these vulnerabilities.Executive SummaryCisco Talos discovered two vulnerabilities that could allow remote code execution and memory disclosure at the...
View ArticleClik here to view.
Vulnerability Spotlight: Python.org certificate parsing denial-of-service
Colin Read and Nicolas Edet of Cisco Talos discovered these vulnerabilities.Executive summaryPython.org contains an exploitable denial-of-service vulnerability in its X509 certificate parser. A...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple vulnerabilities in coTURN
Nicolas Edet of Cisco discovered these vulnerabilities.Executive summaryToday, Cisco Talos is disclosing three vulnerabilities in coTURN. coTURN is an open-source implementation of TURN and STUN...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple vulnerabilities in ACD Systems Canvas Draw 5
Tyler Bohan of Cisco Talos discovered these vulnerabilities. Vanja Svajcer authored this blog post.Cisco Talos is disclosing several vulnerabilities in ACD Systems' Canvas Draw 5, a graphics-editing...
View ArticleClik here to view.
Fake Cisco Job Posting Targets Korean Candidates
Edmund Brumaghin and Paul Rascagneres authored this post, with contributions from Jungsoo An.Executive summaryCisco Talos recently observed a targeted malware campaign being leveraged in an attempt to...
View ArticleClik here to view.
Threat Roundup for Jan. 25 to Feb. 1
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 25 and Feb. 01. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Cyber Security Week in Review (Feb. 1)
Welcome to this week's Cyber Security Week in Review, where Cisco Talos runs down all of the news we think you need to know in the security world. For more news delivered to your inbox every week, sign...
View Article