πŸ”’
There are new articles available, click to refresh the page.
Before yesterdayCisco Talos

Threat Roundup for January 7 to January 14

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 7 and Jan. 14. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos Takes Ep. #82: Log4j followed us in 2022

14 January 2022 at 15:16
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit theΒ Talos Takes page. It's a new year, but unfortunately, we're facing the same cybersecurity problems. Log4j followed us into the holidays,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source Newsletter (Jan. 13, 2022)

13 January 2022 at 19:00
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers.Β Β  Move out of the way, Log4j! Traditional malware is back with a bang in 2022. While Log4j is likely still occupying many defenders' minds, the bad guys are still out there doing not-Log4j things. We have new research out...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Beers with Talos, Ep. #114: And then there were two...

13 January 2022 at 15:22
Beers with Talos (BWT) Podcast episode No. 114 is now available. Download this episode and subscribe to Beers with Talos: Apple PodcastsΒ Β Google PodcastsΒ Β SpotifyΒ Β StitcherRecorded Dec. 9, 2021. If iTunes and Google Play aren't your thing, clickΒ here. We joked...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Nanocore, Netwire and AsyncRAT spreading campaign uses public cloud infrastructure

By Chetan Raghuprasad and Vanja Svajcer. Cisco Talos discovered a malicious campaign in October 2021 delivering variants of Nanocore, Netwire and AsyncRATs targeting user's information. According to Cisco Secure product telemetry, the victims of this campaign are primarily distributed across the...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Microsoft Patch Tuesday for Jan. 2022 β€” Snort rules and prominent vulnerabilities

11 January 2022 at 22:12
By Jon Munshaw and Vitor Ventura.Β  Microsoft released its monthly security update Tuesday, disclosing 102 vulnerabilities across its large collection of hardware and software. This is the largest amount of vulnerabilities Microsoft has disclosed in a monthly security update in eight months,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Two vulnerabilities in Adobe Acrobat DC could lead to arbitrary code execution

11 January 2022 at 17:09
Aleksandar Nikolic of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.Β  Cisco Talos recently discovered two vulnerabilities in Adobe Acrobat Reader DC that could allow an attacker to eventually gain the ability to execute arbitrary code.Β Β  Acrobat is one of the most...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Heap buffer overflow condition in Google Chrome could lead to code execution

11 January 2022 at 15:07
Marcin Towalski of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Β  Cisco Talos recently discovered an exploitable heap-based buffer overflow vulnerability in Google Chrome.Β Β  Google Chrome is a cross-platform web browser β€” and Chromium is the open-source version of...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Buffer overflow vulnerability in AnyCubic Chitubox plugin

10 January 2022 at 14:45
Carl Hurd of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Β  Cisco Talos recently discovered an exploitable heap-based buffer overflow vulnerability in the Chitubox AnyCubic plugin.Β  Chitubox is 3-D printing software for users to download and process models and send them...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for December 31 to January 7

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Dec. 31 and Jan. 7. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source Newsletter (Jan. 6, 2022)

6 January 2022 at 19:00
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers.Β Β  We hope everyone had some well-deserved, relaxing time off over the holidays. Unfortunately, we are all back now and Log4j is still an issue. And even though it seems like Log4j has already been in the news for a year,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

2021: Looking back on the year in malware and cyber attacks, from SolarWinds to Log4j

27 December 2021 at 14:00
By Jon Munshaw. It seems like we were just recovering from the aftermath of the massive SolarWinds campaign a month or two ago. And now suddenly, it’s been a year since one of the largest cyber attacks in history and moving onto another threat that could last for years.Β  That just seemed to be...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Vulnerabilities in DaVinci Resolve video editing software could lead to code execution

21 December 2021 at 15:21
A Cisco Talos team member discovered these vulnerabilities. Blog by Jon Munshaw.Β  Cisco Talos recently discovered two vulnerabilities in the DaVinci Resolve video editing software that could allow an adversary to execute code in the context of the application.Β  DaVinci Resolve is a...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Vulnerability Spotlight: Vulnerabilities in metal detector peripheral could allow attackers to manipulate security devices

20 December 2021 at 16:12
Matt Wiseman of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.Β  Cisco Talos recently discovered multiple vulnerabilities in a device from Garrett Metal Detectors that could allow remote attackers to bypass authentication requirements, manipulate metal detector...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Source Newsletter (Dec. 16, 2021)

16 December 2021 at 19:26
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers.Β Β  I'm just going to cut to the chase since I know all anyone wants to read about is Log4J. For the latest Talos research, continually check back on our blog post here. Above is the live stream we recorded Monday morning...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Beers with Talos, Ep. #112: A new host approaches!

15 December 2021 at 17:02
Beers with Talos (BWT) Podcast episode No. 112 is now available. Download this episode and subscribe to Beers with Talos: Apple PodcastsΒ Β Google PodcastsΒ Β SpotifyΒ Β StitcherIf iTunes and Google Play aren't your thing, clickΒ here. We promised it wouldn't be long...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Roundup for December 3 to December 10

10 December 2021 at 21:17
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Dec. 3 and Dec. 10. As with previous roundups, this post isn't meant tobifj be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Threat Advisory: Critical Apache Log4j vulnerability being exploited in the wild

Update History Date Description of UpdatesDec. 20, 2021Additional coverage and IOCs; additional detection capabilities for customers via Cisco Global Threat Alerts. Dec. 18, 2021Additional mitigation guidance; updated coverage information. Dec. 17, 2021Added additional vulnerability and...

[[ This is only the beginning! Please visit the blog for the complete entry ]]

Talos Takes Ep. #80: I'll have a blue Christmas without a CTIR retainer

10 December 2021 at 19:30
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit theΒ Talos Takes page. It's the holiday season, which means last-minute shopping, family time and cheer. Oh, and it's never a bad time to...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
❌