Clik here to view.
Vulnerability Spotlight: Denial-of-service, information leak bugs in Mini-SNMPD
Aleksandar Nikolic of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.Multiple vulnerabilities exist in Mini-SNMPD, a lightweight implementation of a Simple Network Management...
View ArticleClik here to view.
Quarterly Report: Incident Response trends in fall 2019
By David Liebenberg and Kendall McKay.While many Cisco Talos Incident Response (CTIR) engagements have shown similar patterns over the past two quarters, we’re seeing a dangerous trend emerge this...
View ArticleClik here to view.
Threat Source newsletter (Feb. 6, 2020)
Newsletter compiled by Jon Munshaw.Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.There’s never been a better time to be...
View ArticleClik here to view.
Threat Roundup for January 31 to February 7
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 31 and Feb. 7. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: Accusoft ImageGear library code execution...
Emmanuel Tacheau of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.Cisco Talos recently discovered three code execution vulnerabilities in Accusoft ImageGear. The ImageGear library...
View ArticleClik here to view.
Introducing Cisco Talos Incident Response: Stories from the Field
By Jon Munshaw.As another way of bringing our boots-on-the-ground intelligence to defenders, customers and users, we are introducing a new video series called "Cisco Talos Incident Response: Stories...
View ArticleClik here to view.
Vulnerability Spotlight: Information leak vulnerability in Adobe Acrobat...
Aleksandar Nikolic of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Cisco Talos recently discovered an information leak vulnerability in Adobe Acrobat Reader. Acrobat supports a number...
View ArticleClik here to view.
Microsoft Patch Tuesday — Feb. 2020: Vulnerability disclosures and Snort...
By Jon Munshaw.Microsoft released its monthly security update today, disclosing vulnerabilities across many of its products and releasing corresponding updates. This month's Patch Tuesday covers 98...
View ArticleClik here to view.
Vulnerability Spotlight: Code execution vulnerability in Microsoft Excel
Marcin Noga of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Microsoft Excel contains a code execution vulnerability. This specific bug lies in the component of Excel that handles the...
View ArticleClik here to view.
Vulnerability Spotlight: Code execution vulnerability in Microsoft Media...
Marcin Noga of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Microsoft Media Foundation’s framework contains a code execution vulnerability. This specific bug lies in Media...
View ArticleClik here to view.
Vulnerability Spotlight: Use-after-free vulnerability in Windows 10 win32kbase
Marcin Towalski of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Cisco Talos is releasing the details of a use-after-free vulnerability in Windows 10. An attacker could exploit this...
View ArticleClik here to view.
Vulnerability Spotlight: Remote code execution vulnerability in Apple Safari
Marcin Towalski of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.The Apple Safari web browser contains a remote code execution vulnerability in its Fonts feature. If a user were to...
View ArticleClik here to view.
Loda RAT Grows Up
By Chris Neal.Over the past several months, Cisco Talos has observed a malware campaign that utilizes websites hosting a new version of Loda, a remote access trojan (RAT) written in AutoIT. These...
View ArticleClik here to view.
Threat Source newsletter (Feb. 13, 2020)
Newsletter compiled by Jon Munshaw.Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.This month’s Microsoft Patch Tuesday was...
View ArticleClik here to view.
Threat actors attempt to capitalize on coronavirus outbreak
By Nick Biasini and Edmund Brumaghin.Coronavirus is dominating the news and threat actors are taking advantage.Cisco Talos has found multiple malware families being distributed with Coronavirus lures...
View ArticleClik here to view.
Threat Roundup for February 7 to February 14
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Feb. 7 and Feb. 14. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Beers with Talos Ep. #72: Getting to Patch Day - Understanding Vulnerability...
Beers with Talos (BWT) Podcast episode No. 72 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Recorded Jan. 31,...
View ArticleClik here to view.
Building a bypass with MSBuild
NEWS SUMMARYLiving-off-the-land binaries (LoLBins) continue to pose a risk to security defenders.We analyze the usage of the Microsoft Build Engine by attackers and red team personnel.These threats...
View ArticleClik here to view.
Vulnerability Spotlight: Memory corruption, DoS vulnerabilities in CoTURN
Aleksandar Nikolic of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.CoTURN contains denial-of-service and memory corruption vulnerabilities in the way its web server parses POST...
View ArticleClik here to view.
Cisco Talos Incident Response "Stories from the Field" #2: When do lawyers...
The second video in our "Stories in the Field" series from Cisco Talos Incident Response is here, with Matt Aubert talking about lawyers.While getting a general counsel involved may seem like an...
View Article