πŸ”’
There are new articles available, click to refresh the page.
Today β€” 29 November 2021Research - Companies

An Azure Sphere kernel exploit β€” or how I learned to stop worrying and love the IoT

29 November 2021 at 15:00
By Claudio Bozzato and Lilith [^.^];. As part of our continued research into Microsoft Azure Sphere, there are two vulnerabilities we discovered that we feel are particularly dangerous. For a full rundown of the 31 vulnerabilities we’ve discovered over the past year, check out our full recap...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
Before yesterdayResearch - Companies

Talos Takes Ep. #78: Attackers would love to buy you a non-existent PS5 this holiday season

24 November 2021 at 14:01
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit theΒ Talos Takes page. We know this episode comes around every year, but people keep falling for scams, so we have to remind people how to...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

A review of Azure Sphere vulnerabilities: Unsigned code execs, kernel bugs, escalation chains and firmware downgrades

22 November 2021 at 19:05
Summary of all the vulnerabilities reported by Cisco Talos in Microsoft Azure Sphere By Claudio Bozzato and Lilith [>_>]. In May 2020, Microsoft kicked off the Azure Sphere Security Research Challenge, a three-month initiative aimed at finding bugs in Azure Sphere. In the first three months,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: PHP deserialize vulnerability in CloudLinux Imunity360 could lead to arbitrary code execution

22 November 2021 at 17:16
Marcin β€œIcewall” Noga of Cisco Talos. Blog by Jon Munshaw.Β  Cisco Talos recently discovered a vulnerability in the Ai-Bolit functionality of CloudLinux Inc Imunify360 that could lead to arbitrary code execution.Β  Imunify360 is a security platform for web-hosting servers that allows users...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Multiple vulnerabilities in Advantech R-SeeNet

23 November 2021 at 15:45
Yuri Kramarz discovered these vulnerabilities. Blog by Jon Munshaw.Β  Cisco Talos recently discovered multiple vulnerabilities in the Advantech R-SeeNet monitoring software.Β  R-SeeNet is the software system used for monitoring Advantech routers. It continuously collects information from...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Beers with Talos, Ep. #111: We say goodbye to Craig and his killer robots

19 November 2021 at 16:45
Beers with Talos (BWT) Podcast episode No. 111 is now available. Download this episode and subscribe to Beers with Talos: Apple PodcastsΒ Β Google PodcastsΒ Β SpotifyΒ Β StitcherIf iTunes and Google Play aren't your thing, clickΒ here. We apologize for holding onto this...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos Takes Ep. #77: How to connect to (and safely use) public WiFi

19 November 2021 at 16:18
Β  By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit theΒ Talos Takes page. Whenever we walk into a bar or restaurant, it's almost a given that we're going to ask the bartender or server:...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source Newsletter (Nov. 18, 2021)

18 November 2021 at 19:00
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers.Β Β  This is our last newsletter before Thanksgiving in the U.S. next week, so now's as good of a time as any to remind you: If a deal seems too good to be true, it probably is.Β  To prep online shoppers for the upcoming...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Multiple code execution vulnerabilities in LibreCAD

17 November 2021 at 20:03
Lilith >_> of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Β  Cisco Talos recently discovered three vulnerabilities in LibreCAD’s libdfxfw open-source library.Β  This library reads and writes .dxf and .dwg files β€” the primary file format for vector graphics in CAD...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Use-after-free vulnerability in Google Chrome could lead to code execution

18 November 2021 at 17:30
Β  Marcin Towalski of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Β  Cisco Talos recently discovered an exploitable use-after-free vulnerability in Google Chrome.Β Β  Google Chrome is a cross-platform web browser β€” and Chromium is the open-source version of the...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos’ tips for staying safe while shopping online this holiday season

17 November 2021 at 14:26
By Jon Munshaw.Β  Attackers will resort to all tactics to trick users into downloading malware, handing over credit card data or completing compromising their machine.Β  No topic is off-limits, and threat actors have resorted to using everything from PlayStation 5 sales, to COVID-19 cures...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Vulnerabilities in Lantronix PremierWave 2050 could lead to code execution, file deletion

16 November 2021 at 16:20
Matt Wiseman discovered these vulnerabilities. Blog by Jon Munshaw.Β  Cisco Talos recently discovered multiple vulnerabilities in Lantronix’s PremierWave 2050, an embedded Wi-Fi module.Β  There are several vulnerabilities in PremierWave 2050’s Web Manager, a web-accessible application that...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos Takes Ep. #76: What is Kimsuky phishing around for?

12 November 2021 at 16:37
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit theΒ Talos Takes page. Blog posts aren't just for sharing your darkest secrets from high school anymore. They're also used by attackers to...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source newsletter (Nov. 11, 2021)

11 November 2021 at 19:00
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers.Β Β  It's important to be proactive, and not reactive, with your security. It's always better to see the worst coming and block it than have to scramble to deal with the worst-case scenario in the moment. That's why it's so...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Microsoft Patch Tuesday for Nov. 2021 β€” Snort rules and prominent vulnerabilities

9 November 2021 at 22:27
By Jon Munshaw and Tiago Pereira.Β  Microsoft released its monthly security update Tuesday, disclosing 56 vulnerabilities in the company’s various software, hardware and firmware offerings, including one that’s actively being exploited in the wild.Β Β  November’s security update...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Cisco Talos finds 10 vulnerabilities in Azure Sphere’s Linux kernel, Security Monitor and Pluton

10 November 2021 at 08:55
By Claudio Bozzato and Lilith [-_-];. Following our previous engagements (see blog posts 1, 2, 3 and 4) with Microsoft's Azure Sphere IoT platform, we decided to take another look at the device, without all the rush and commotion that normally entails a hacking challenge.Β  Today, we’re...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source newsletter (Nov. 4, 2021)

4 November 2021 at 18:00
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers.Β Β  A series of vulnerabilities in Microsoft Exchange Server made waves earlier this year for coming under attack. And while they've come and gone from the headlines since then, attackers are still very much paying...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source newsletter (Oct. 28, 2021)

28 October 2021 at 18:00
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers.Β Β  Most people know about chicken and waffles. But what about squirrel and waffles? They may not be the most appetizing brunch, but they are teaming up for one heck of a spam campaign.Β  We have new research out...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Quarterly Report: Incident Response trends from Q3 2021

28 October 2021 at 12:00
Ransomware again dominated the threat landscape, while BEC grewΒ  By David Liebenberg and Caitlin Huey.Β  Once again, ransomware was the most dominant threat observed in Cisco Talos Incident Response (CTIR) engagements this quarter.Β Β  CTIR helped resolve several significant...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
❌