Threat Source Newsletter (Nov. 18, 2021)
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers. This is our last newsletter before Thanksgiving in the U.S. next week, so now's as good of a time as any to remind you: If a deal...
View ArticleTalos Takes Ep. #77: How to connect to (and safely use) public WiFi
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. Whenever we walk into a...
View ArticleBeers with Talos, Ep. #111: We say goodbye to Craig and his killer robots
Beers with Talos (BWT) Podcast episode No. 111 is now available. Download this episode and subscribe to Beers with Talos: Apple Podcasts Google Podcasts Spotify StitcherIf iTunes and Google Play...
View ArticleThreat Roundup for November 12 to November 19
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 12 and Nov. 19. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleVulnerability Spotlight: PHP deserialize vulnerability in CloudLinux...
Marcin “Icewall” Noga of Cisco Talos. Blog by Jon Munshaw. Cisco Talos recently discovered a vulnerability in the Ai-Bolit functionality of CloudLinux Inc Imunify360 that could lead to arbitrary code...
View ArticleBack from the dead: Emotet re-emerges, begins rebuilding to wrap up 2021
Executive summary Emotet has been one of the most widely distributed threats over the past several years. It has typically been observed being distributed via malicious spam email campaigns, and often...
View ArticleVulnerability Spotlight: Multiple vulnerabilities in Advantech R-SeeNet
The Talos vulnerability research team discovered these vulnerabilities. Blog by Jon Munshaw. Cisco Talos recently discovered multiple vulnerabilities in the Advantech R-SeeNet monitoring software....
View ArticleA review of Azure Sphere vulnerabilities: Unsigned code execs, kernel bugs,...
Summary of all the vulnerabilities reported by Cisco Talos in Microsoft Azure Sphere By Claudio Bozzato and Lilith [>_>]. In May 2020, Microsoft kicked off the Azure Sphere Security Research...
View ArticleAttackers exploiting zero-day vulnerability in Windows Installer — Here’s...
Cisco Talos is releasing new SNORTⓇ rules to protect against the exploitation of a zero-day elevation of privilege vulnerability in Microsoft Windows Installer. This vulnerability allows an attacker...
View ArticleTalos Takes Ep. #78: Attackers would love to buy you a non-existent PS5 this...
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. We know this episode comes...
View ArticleAn Azure Sphere kernel exploit — or how I learned to stop worrying and love...
By Claudio Bozzato and Lilith [^.^];. As part of our continued research into Microsoft Azure Sphere, there are two vulnerabilities we discovered that we feel are particularly dangerous. For a full...
View ArticleCase Study: Catching threats ahead of time with a penetration test from the...
By Brad Garnett, Miguel Alvarez Esmoris, Terryn Valikodath and Bob Doyle. As we mentioned in a previous case study, relationships are tried and tested during incident response. So, when a customer...
View ArticleCisco named leader in Incident Response Services
By Brad Garnett. It has been more than two years already since Cisco Incident Response became a part of the Talos family. Since then, my team has continued a journey to simplify our offering for...
View ArticleVulnerability Spotlight: Use-after-free condition in Google Chrome could lead...
Marcin Towalski of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos recently discovered an exploitable use-after-free vulnerability in Google Chrome. Google Chrome is a...
View ArticleMagnat campaigns use malvertising to deliver information stealer, backdoor...
By Tiago Pereira. Talos recently observed a malicious campaign offering fake installers of popular software as bait to get users to execute malware on their systems. This campaign includes a set of...
View ArticleThreat Source Newsletter (Dec. 2, 2021)
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers. The Thanksgiving holiday in the U.S. didn't slow us down at all, even though we were all still trying to sleep off the food coma from...
View ArticleTalos Takes Ep. #79: Emotet's back with the worst type of holiday present
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. Emotet is back, and it...
View ArticleThreat Roundup for November 26 to December 3
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 26 and Dec. 3. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleCisco recognized by Forrester as cybersecurity incident response services...
By Brad Garnett. Cisco Talos Incident Response is proud to announce that Forrester has recognized us by including Cisco in the new Forrester report “Now Tech: Cybersecurity Incident Response Services,...
View ArticleThreat Source Newsletter (Dec. 9, 2021)
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers. The good news keeps rolling in for our Incident Response team, who received another accolade by being featured in Forrester's recent...
View Article