Clik here to view.
Quarterly Report: Incident Response Trends in Q4 2022
Syncro, a remote management and monitoring tool, emerges as an increasingly common tool for adversaries.By Caitlin Huey.Ransomware continued to be a top threat Cisco Talos Incident Response (Talos IR)...
View ArticleClik here to view.
Vulnerability Spotlight: OS command injection, directory traversal and other...
Francesco Benvenuto of Cisco Talos discovered these vulnerabilities.Cisco Talos recently discovered several vulnerabilities in the Siretta Quartz-Gold router. Talos also discovered vulnerabilities in...
View ArticleClik here to view.
What Old is New Again and What's Old is Me?
Welcome to this week’s edition of the Threat Source newsletter.What’s old is new again and what's old is still old. The fact that we are seeing a comeback of this USB thumb drive nonsense is giving me...
View ArticleClik here to view.
Threat Round up for January 20 to January 27
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 20 and Jan. 27. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
2022 Year in Review: Threat Landscape Livestream Replay
Did you miss our livestream covering the threat landscape section in the Cisco Talos Year in Review report? Join host Hazel Burton and special guests Caitlin Huey, Nick Biasini, and Tucker Favreau as...
View ArticleClik here to view.
Talos Takes 126: Year in Review - Threat Landscape Edition
We're back with another year in review focused episode. This time the focus will be the threat landscape generally and I'll be joined by threat researcher Caitlin Huey. In this episode we'll discuss...
View ArticleClik here to view.
Threat Source newsletter (Feb. 2, 2023): I bid you all adieu
Welcome to this week’s edition of the Threat Source newsletter.If you haven’t noticed yet we’ve had a few guest writers on this newsletter over the last few months. Alas my time covering the newsletter...
View ArticleClik here to view.
Threat Round up for January 27 to February 3
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 27 and Feb. 3. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Ransomware and Commodity Loader Topic Summary Report: Cisco Talos Year in...
The ransomware space is dynamic, continually adapting to changes in the geopolitical environment, actions by defenders, and efforts by law enforcement, which increased in scope and intensity in 2022....
View ArticleClik here to view.
2022 Year in Review: Ransomeware & Commodity Loaders Livestream Replay
Did you miss our livestream covering the ransomware and commodity loader section in the Cisco Talos Year in Review report? Join host Mitch Neff and special guests Aliza Johnson, Azim Khodjibaev, and...
View ArticleClik here to view.
Beyond the basics: Implementing an active defense
Active defense a key approach to protecting against major threatsHaving an active defense posture, where the defenders actively use threat intelligence and their own environment telemetry to uncover...
View ArticleClik here to view.
Threat Source newsletter (Feb. 9, 2023): Don't let criminals exploit your...
Welcome to this week’s edition of the Threat Source newsletter.Our hearts are with the people of Turkey and Syria and all those impacted by the tragic earthquake. The Cisco Foundation has launched a...
View ArticleClik here to view.
Talos Takes 128: Year in Review - Ransomeware and Commodity Loaders Edition
We're back with the final year in review focused episode. This time the focus is on the ever broadening ransomware landscape and the commodity malware loaders that often support it. I'll be joined by...
View ArticleClik here to view.
New MortalKombat ransomware and Laplas Clipper malware threats deployed in...
Since December 2022, Cisco Talos has been observing an unidentified actor deploying two relatively new threats, the recently discovered MortalKombat ransomware and a GO variant of the Laplas Clipper...
View ArticleClik here to view.
Microsoft Patch Tuesday for February 2023 — Snort rules and prominent...
Microsoft released its monthly security update on Tuesday, disclosing 73 vulnerabilities. Of these vulnerabilities, 8 are classified as “Critical”, 64 are classified as “Important”, one vulnerability...
View ArticleClik here to view.
Threat Source newsletter (Feb. 16, 2023) — Recapping what we may have missed...
Welcome to this week’s edition of the Threat Source newsletter.I am back after more than three months away from Talos on parental leave. Having a baby really resets your expectations for “keeping up”...
View ArticleClik here to view.
Threat Round up for February 10 to February 17
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Feb. 10 and Feb. 17. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: EIP Stack Group OpENer open to two remote code...
Jared Rittle of Cisco Talos discovered these vulnerabilities.Cisco Talos recently discovered three vulnerabilities in EIP Stack Group OpENer, an ethernet/IP stack for I/O adapter devices, that could...
View ArticleClik here to view.
Threat Source newsletter (Feb. 23, 2023) — Social media sites are making...
Welcome to this week’s edition of the Threat Source newsletter.Social media’s latest business plan seems to be charging for security.Twitter recently announced a plan to make SMS-based two-factor...
View ArticleClik here to view.
February 24th
Today marks one year since Russia invaded Ukraine. While there is much we could say, we will simply reiterate our unwavering support of our colleagues, partners, and the people of Ukraine as they...
View Article