Clik here to view.
Alchimist: A new attack framework in Chinese for Mac, Linux and Windows
By Chetan Raghuprasad, Asheer Malhotra and Vitor Ventura, with contributions from Matt Thaxton.Cisco Talos discovered a new attack framework including a command and control (C2) tool called "Alchimist"...
View ArticleClik here to view.
Threat Source newsletter (Oct. 13, 2022) — Cybersecurity Awareness Month is...
By Jon Munshaw. Welcome to this week’s edition of the Threat Source newsletter. October is National Cybersecurity Awareness Month. Which, if you’ve been on social media at all the past 13 days or read...
View ArticleVideo: How propaganda can spread on social media via memes, fake news
Cisco Talos is well-known for its work in spotting and defeating fake news, disinformation and misinformation. And state-sponsored actors, unwitting social media users and even direct government...
View ArticleClik here to view.
Threat Roundup for October 7 to October 14
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct. 7 and Oct. 14. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
The benefits of taking an intent-based approach to detecting Business Email...
By Abhishek Singh.BEC is a multi-stage attack. Adversaries first identify targets, then they establish rapport with the victim before exploiting them for whatever their end goal is. In the case of BEC,...
View ArticleClik here to view.
Vulnerability Spotlight: Vulnerabilities in Abode Systems home security kit...
Matt Wiseman of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Cisco Talos recently discovered several vulnerabilities in the Abode Systems iota All-In-One Security Kit. This kit...
View ArticleClik here to view.
Threat Source newsletter (Oct. 20, 2022) — Shields Up! No seriously, Shields...
By Jon Munshaw. Welcome to this week’s edition of the Threat Source newsletter. I’m very excited about this video I’ve embedded below — it’s a project I’ve been working on with my team for a while now....
View ArticleClik here to view.
Threat Roundup for October 14 to October 21
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct. 14 and Oct. 21. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Quarterly Report: Incident Response Trends in Q3 2022
Ransomware and pre-ransomware engagements make up 40 percent of threats seen this quarterBy Caitlin Huey.For the first time since compiling these reports, Cisco Talos Incident Response saw an equal...
View ArticleClik here to view.
Threat Roundup for September 23 to September 30
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Sept. 23 and Sept. 30. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Threat Advisory: Microsoft warns of actively exploited vulnerabilities in...
Cisco Talos has released new coverage to detect and prevent the exploitation of two recently disclosed vulnerabilities collectively referred to as "ProxyNotShell," affecting Microsoft Exchange Servers...
View ArticleClik here to view.
Researcher Spotlight: Globetrotting with Yuri Kramarz
From the World Cup in Qatar to robotics manufacturing in east Asia, this incident responder combines experience from multiple arenasYuri “Jerzy” Kramarz helped secure everything from the businesses...
View ArticleClik here to view.
Developer account body snatchers pose risks to the software supply chain
Over the past several years, high-profile software supply chain attacks have increased in frequency. These attacks can be difficult to detect and source code repositories became a key focus of this...
View ArticleClik here to view.
Threat Source newsletter (Oct. 6, 2022) — Continuing down the Privacy Policy...
As I wrote about last week, I’ve been diving a lot into apps’ privacy policies recently. And I was recently made aware of a new type of app I never knew existed — family trackers.There are countless...
View ArticleClik here to view.
Threat Roundup for September 30 to October 7
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Sept. 30 and Oct. 7. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: Data deserialization in VMware vCenter could lead to...
Marcin “Icewall” Noga of Cisco Talos discovered this vulnerability.Cisco Talos recently discovered an exploitable data deserialization vulnerability in the VMware vCenter server platform.VMware is one...
View ArticleClik here to view.
Microsoft Patch Tuesday for October 2022 — Snort rules and prominent...
Microsoft released its monthly security update Tuesday, disclosing 83 vulnerabilities across the company’s hardware and software line, including seven critical issues in Windows’ point-to-point...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple issues in Robustel R1510 cellular router...
Francesco Benvenuto of Cisco Talos discovered these vulnerabilities.Cisco Talos recently discovered nine vulnerabilities in the Robustel R1510 industrial cellular router, several of which could allow...
View ArticleClik here to view.
Alchimist: A new attack framework in Chinese for Mac, Linux and Windows
Contributions from Matt Thaxton.Cisco Talos discovered a new attack framework including a command and control (C2) tool called "Alchimist" and a new malware "Insekt" with remote administration...
View ArticleVideo: How propaganda can spread on social media via memes, fake news
Cisco Talos is well-known for its work in spotting and defeating fake news, disinformation and misinformation. And state-sponsored actors, unwitting social media users and even direct government...
View Article