Clik here to view.
A wolf in sheep's clothing: Actors spread malware by leveraging trust in...
By Vitor Ventura and Arnaud Zobec. Threat actors are impersonating the group Amnesty International and promising to protect against the Pegasus spyware as part of a scheme to deliver malware. Amnesty...
View ArticleClik here to view.
Threat Source newsletter (Sept. 30, 2021)
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers. In the latest example of attackers trying to capitalize on current headlines, we've spotted a group using the recent fervor around...
View ArticleClik here to view.
Talos Takes Ep. #70: Let's put a positive spin on this whole working from...
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. As part of National...
View ArticleClik here to view.
Threat Roundup for September 24 to October 1
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Sept. 24 and Oct. 1. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Threat hunting in large datasets by clustering security events
By Tiago Pereira. Security tools can produce very large amounts of data that even the most sophisticated organizations may struggle to manage. Big data processing tools, such as spark, can be a...
View ArticleClik here to view.
Threat Source newsletter (Oct. 7, 2021)
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers. Every day, we see mountains and mountains of data. So how do we comb through all of it to find out what's important to customers and...
View ArticleClik here to view.
Threat Advisory: Apache HTTP Server zero-day vulnerability opens door for...
A recently discovered vulnerability in Apache HTTP Server (CVE-2021-41733) is being actively exploited in the wild. This vulnerability is a path traversal and file disclosure vulnerability that could...
View ArticleClik here to view.
Talos Takes Ep. #71 (NCSAM edition): Reflecting on ransomware in 2021
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. We are from the first (or...
View ArticleClik here to view.
Threat Roundup for October 1 to October 8
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct. 1 and Oct. 8. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this...
View ArticleClik here to view.
Vulnerability Spotlight: Vulnerabilities in Anker Eufy Homebase could lead to...
Lilith >_> of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos recently discovered two vulnerabilities in the Anker Eufy Homebase. The Eufy Homebase 2 is the video...
View ArticleClik here to view.
Microsoft Patch Tuesday for Oct. 2021 — Snort rules and prominent...
By Jon Munshaw, with contributions from Asheer Malhotra. Microsoft released its monthly security update Tuesday, disclosing 78 vulnerabilities in the company’s various software, hardware and firmware...
View ArticleClik here to view.
Vulnerability Spotlight: Use-after-free vulnerability in Microsoft Excel...
Marcin “Icewall” Noga of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos recently discovered a use-after-free vulnerability in the ConditionalFormatting functionality of...
View ArticleClik here to view.
Vulnerability Spotlight: Code execution vulnerabilities in Nitro Pro PDF
A Cisco Talos team member discovered these vulnerabilities. Blog by Jon Munshaw. Cisco Talos recently discovered multiple vulnerabilities in the Nitro Pro PDF reader that could allow an attacker to...
View ArticleClik here to view.
Threat Source newsletter (Oct. 14, 2021)
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers. It's still Cybersecurity Awareness Month, and what better way to celebrate by patching and then patching some more? This week was...
View ArticleClik here to view.
Talos Takes Ep. #73 (NCSAM edition): Fight the phish from land, sea and air
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. Most people may think of...
View ArticleClik here to view.
Threat Roundup for October 8 to October 15
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct. 8 and Oct. 15. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple vulnerabilities in ZTE MF971R LTE router
Marcin “Icewall” Noga of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos recently discovered multiple vulnerabilities in the ZTE MF971R LTE portable router. The MF971R is...
View ArticleClik here to view.
Beers with Talos, Ep. #110: The 10 most-exploited vulnerabilities this year...
Beers with Talos (BWT) Podcast episode No. 110 is now available. Download this episode and subscribe to Beers with Talos:Apple Podcasts Google PodcastsSpotify StitcherIf iTunes and Google Play aren't...
View ArticleClik here to view.
Malicious campaign uses a barrage of commodity RATs to target Afghanistan and...
Cisco Talos recently discovered a threat actor using political and government-themed malicious domains to target entities in India and Afghanistan.These attacks use dcRAT and QuasarRAT for Windows...
View ArticleClik here to view.
Threat Source newsletter (Oct. 21, 2021)
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers. We're writing this on Wednesday for PTO reasons, so apologies if we miss any major news that happens after Wednesday afternoon....
View Article