πŸ”’
There are new articles available, click to refresh the page.
βœ‡ Cisco Talos

Threat Roundup for November 26 to December 3

By: [email protected] (William Largent) β€”
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 26 and Dec. 3. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Talos Takes Ep. #79: Emotet's back with the worst type of holiday present

By: [email protected] (Jon Munshaw) β€”
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit theΒ Talos Takes page. Emotet is back, and it brought the worst possible holiday present (just in time for peak spam season, too!). We...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Threat Source Newsletter (Dec. 2, 2021)

By: n[email protected] (Jon Munshaw) β€”
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers.Β Β  The Thanksgiving holiday in the U.S. didn't slow us down at all, even though we were all still trying to sleep off the food coma from the long weekend. But we came back this week with lots of fun content. Cisco received...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Magnat campaigns use malvertising to deliver information stealer, backdoor and malicious Chrome extension

By: [email protected] (Tiago Pereira) β€”
By Tiago Pereira. Talos recently observed a malicious campaign offering fake installers of popular software as bait to get users to execute malware on their systems. This campaign includes a set of malware distribution campaigns that started in late 2018 and have targeted mainly Canada, along...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Vulnerability Spotlight: Use-after-free condition in Google Chrome could lead to code execution

By: [email protected] (Jon Munshaw) β€”
Marcin Towalski of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Β  Cisco Talos recently discovered an exploitable use-after-free vulnerability in Google Chrome.Β Β  Google Chrome is a cross-platform web browser β€” and Chromium is the open-source version of the browser...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Cisco named leader in Incident Response Services

By: [email protected] (Jon Munshaw) β€”
By Brad Garnett. It has been more than two years already since Cisco Incident Response became a part of the Talos family. Since then, my team has continued a journey to simplify our offering for consumption and make incident response the ultimate team sport.Β  That is why I could not be more...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Case Study: Catching threats ahead of time with a penetration test from the Cisco Talos Incident Response Red Team

By: [email protected] (Jon Munshaw) β€”
By Brad Garnett, Miguel Alvarez Esmoris, Terryn Valikodath and Bob Doyle.Β  As we mentioned in a previous case study, relationships are tried and tested during incident response. So, when a customer came to Cisco Talos Incident Response with concerns about their public-facing website, CTIR knew...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

An Azure Sphere kernel exploit β€” or how I learned to stop worrying and love the IoT

By: [email protected] (Jon Munshaw) β€”
By Claudio Bozzato and Lilith [^.^];. As part of our continued research into Microsoft Azure Sphere, there are two vulnerabilities we discovered that we feel are particularly dangerous. For a full rundown of the 31 vulnerabilities we’ve discovered over the past year, check out our full recap...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Talos Takes Ep. #78: Attackers would love to buy you a non-existent PS5 this holiday season

By: [email protected] (Jon Munshaw) β€”
By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit theΒ Talos Takes page. We know this episode comes around every year, but people keep falling for scams, so we have to remind people how to...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Attackers exploiting zero-day vulnerability in Windows Installer β€” Here’s what you need to know and Talos’ coverage

By: [email protected] (Jaeson Schultz) β€”
Cisco Talos is releasing new SNORTⓇ rules to protect against the exploitation of a zero-day elevation of privilege vulnerability in Microsoft Windows Installer. This vulnerability allows an attacker with a limited user account to elevate their privileges to become an administrator. This...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

A review of Azure Sphere vulnerabilities: Unsigned code execs, kernel bugs, escalation chains and firmware downgrades

By: [email protected] (Jon Munshaw) β€”
Summary of all the vulnerabilities reported by Cisco Talos in Microsoft Azure Sphere By Claudio Bozzato and Lilith [>_>]. In May 2020, Microsoft kicked off the Azure Sphere Security Research Challenge, a three-month initiative aimed at finding bugs in Azure Sphere. In the first three months,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Vulnerability Spotlight: PHP deserialize vulnerability in CloudLinux Imunity360 could lead to arbitrary code execution

By: [email protected] (Jon Munshaw) β€”
Marcin β€œIcewall” Noga of Cisco Talos. Blog by Jon Munshaw.Β  Cisco Talos recently discovered a vulnerability in the Ai-Bolit functionality of CloudLinux Inc Imunify360 that could lead to arbitrary code execution.Β  Imunify360 is a security platform for web-hosting servers that allows users...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Vulnerability Spotlight: Multiple vulnerabilities in Advantech R-SeeNet

By: [email protected] (Jon Munshaw) β€”
Yuri Kramarz discovered these vulnerabilities. Blog by Jon Munshaw.Β  Cisco Talos recently discovered multiple vulnerabilities in the Advantech R-SeeNet monitoring software.Β  R-SeeNet is the software system used for monitoring Advantech routers. It continuously collects information from...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Back from the dead: Emotet re-emerges, begins rebuilding to wrap up 2021

By: [email protected] (Unknown) β€”
Executive summary Emotet has been one of the most widely distributed threats over the past several years. It has typically been observed being distributed via malicious spam email campaigns, and often leads to additional malware infections as it provides threat actors with an initial foothold in an...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Threat Roundup for November 12 to November 19

By: [email protected] (William Largent) β€”
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 12 and Nov. 19. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Beers with Talos, Ep. #111: We say goodbye to Craig and his killer robots

By: [email protected] (Jon Munshaw) β€”
Beers with Talos (BWT) Podcast episode No. 111 is now available. Download this episode and subscribe to Beers with Talos: Apple PodcastsΒ Β Google PodcastsΒ Β SpotifyΒ Β StitcherIf iTunes and Google Play aren't your thing, clickΒ here. We apologize for holding onto this...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Talos Takes Ep. #77: How to connect to (and safely use) public WiFi

By: [email protected] (Jon Munshaw) β€”
Β  By Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit theΒ Talos Takes page. Whenever we walk into a bar or restaurant, it's almost a given that we're going to ask the bartender or server:...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Threat Source Newsletter (Nov. 18, 2021)

By: [email protected] (Jon Munshaw) β€”
Newsletter compiled by Jon Munshaw.Good afternoon, Talos readers.Β Β  This is our last newsletter before Thanksgiving in the U.S. next week, so now's as good of a time as any to remind you: If a deal seems too good to be true, it probably is.Β  To prep online shoppers for the upcoming...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
βœ‡ Cisco Talos

Vulnerability Spotlight: Multiple code execution vulnerabilities in LibreCAD

By: [email protected] (Jon Munshaw) β€”
Lilith >_> of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.Β  Cisco Talos recently discovered three vulnerabilities in LibreCAD’s libdfxfw open-source library.Β  This library reads and writes .dxf and .dwg files β€” the primary file format for vector graphics in CAD...

[[ This is only the beginning! Please visit the blog for the complete entry ]]
❌