Clik here to view.
Vulnerability Spotlight: Two bugs in KCodes NetUSB affect some NETGEAR routers
Dave McDaniel of Cisco Talos discovered these vulnerabilities.Executive summaryKCodes’ NetUSB kernel module contains two vulnerabilities that could allow an attacker to inappropriately access...
View ArticleClik here to view.
Threat Source newsletter (June 20, 2019)
Newsletter compiled by Jonathan Munshaw.Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.This week, we disclosed two...
View ArticleClik here to view.
Threat Roundup for June 14 to June 21
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between June 14 and June 21. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Beers with Talos Ep. #55: Live from San Diego!
Beers with Talos (BWT) Podcast Ep. #55 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Recorded June 12, 2019 — God...
View ArticleClik here to view.
Threat Source newsletter (June 27, 2019)
Newsletter compiled by Jonathan Munshaw.Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.You never want to fall behind on...
View ArticleClik here to view.
Welcome Spelevo: New exploit kit full of old tricks
Nick Biasini authored this post with contributions from Caitlyn Hammond.Executive summaryExploit kits are an ever-present and often forgotten threat on the landscape today. Their popularity seemed to...
View ArticleClik here to view.
Threat Roundup for June 21 to June 28
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between June 21 and June 28. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: Google V8 Array.prototype memory corruption...
The V8 JavaScript engine in Google Chrome contains a memory corruption vulnerability that could allow an attacker to gain the ability to execute arbitrary code on the victim’s machine. V8 is the core...
View ArticleClik here to view.
RATs and stealers rush through “Heaven’s Gate” with new loader
By Holger Unterbrink and Edmund Brumaghin. Executive summaryMalware is constantly finding new ways to avoid detection. This doesn't mean that some will never be detected, but it does allow adversaries...
View ArticleClik here to view.
Vulnerability Spotlight: Remote code execution vulnerabilities in Simple...
Marcin “Icewall” Noga of Cisco Talos discovered these vulnerabilities.Simple DirectMedia Layer contains two vulnerabilities that could an attacker to remotely execute code on the victim’s machine. Both...
View ArticleClik here to view.
Threat Source newsletter (July 3, 2019)
Newsletter compiled by Jonathan Munshaw.Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.We disclosed several vulnerabilities...
View ArticleClik here to view.
Beers with Talos Ep. #56 - Flatlined: Breach to Bankrupt
Beers with Talos (BWT) Podcast Ep. #56 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Recorded 6/24/19 - Back in the...
View ArticleClik here to view.
Threat Roundup for June 28 to July 5
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between June 28 and July 5. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Sea Turtle keeps on swimming, finds new victims, DNS hijacking techniques
By Danny Adamitis with contributions from Paul Rascagneres.Executive summary After several months of activity, the actors behind the "Sea Turtle" DNS hijacking campaign are not slowing down. Cisco...
View ArticleClik here to view.
Microsoft Patch Tuesday — July 2019: Vulnerability disclosures and Snort...
Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 77 vulnerabilities, 16 of which are rated...
View ArticleClik here to view.
Should governments pay extortion payments after a ransomware attack?
By Jonathan Munshaw. When it comes to ransomware attacks this year, it’s been a tale of three cities.In May, the city of Baltimore suffered a massive ransomware attack that took many of its systems...
View ArticleClik here to view.
Threat Source newsletter (July 11, 2019)
Newsletter compiled by Jonathan Munshaw.Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.Generally, when we write about a...
View ArticleClik here to view.
Threat Roundup for July 5 to July 12
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between July 5 and July 12. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
SWEED: Exposing years of Agent Tesla campaigns
By Edmund Brumaghin and other Cisco Talos researchers.Executive summaryCisco Talos recently identified a large number of ongoing malware distribution campaigns linked to a threat actor we're calling...
View ArticleClik here to view.
Beers with Talos Ep. #57 - It’s a business decision, not rocket science
Beers with Talos (BWT) Podcast Ep. #57 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Recorded July 8, 2019 — Matt...
View Article