Clik here to view.
IDA-minsc Wins Second Place in Hex-Rays Plugins Contest
IntroductionAli Rizvi-Santiago of Cisco Talos recently tied for second place in the IDA plugin contest with a plugin named "IDA-minsc." IDA is a multi-processor disassembler and debugger created by the...
View ArticleClik here to view.
Vulnerability Spotlight: Epee Levin Packet Deserialization Code Execution...
This vulnerability was discovered by Lilith (>_>) of Cisco Talos.OverviewThe Epee library, which is leveraged by a large number of cryptocurrencies, contains an exploitable code execution...
View ArticleClik here to view.
VPNFilter III: More Tools for the Swiss Army Knife of Malware
SummaryVPNFilter — a multi-stage, modular framework that has infected hundreds of thousands of network devices across the globe — is now known to possess even greater capabilities. Cisco Talos recently...
View ArticleClik here to view.
Threat Roundup Sept 21 - 28
Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we’ve observed this week — covering the dates between Sept. 21 and 28. As with previous roundups, this post...
View ArticleClik here to view.
Beers with Talos Ep. #38 — More fun with VPNFilter; Getting pwnd via spreadsheet
Beers with Talos (BWT) Podcast Ep. #38 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Ep. #38 show notes: Recorded...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple vulnerabilities in Atlantis Word Processor
Vulnerabilities discovered by Cory Duplantis and Ali Rizvi-Santiago of Cisco Talos.OverviewCisco Talos is disclosing several vulnerabilities discovered in Atlantis Word Processor. Atlantis Word...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
Vulnerabilities discovered by Aleksandar Nikolic of Cisco TalosOverviewCisco Talos is disclosing eightteen vulnerabilities in Foxit PDF Reader, a popular free program for viewing, creating and editing...
View ArticleClik here to view.
Vulnerability Spotlight: Adobe Acrobat Reader DC Collab reviewServer Remote...
Discovered by Aleksandar Nikolic of Cisco TalosOverviewToday, Cisco Talos is releasing details of a new vulnerability within Adobe Acrobat Reader DC. Adobe Acrobat Reader is the most popular and most...
View ArticleClik here to view.
BruCON Primer: 10 Years and Cisco Talos Talks
Cisco Talos will have a significant presence at the 10th edition of BruCON, which kicks off this week. Below, you will find the presentations that Talos researchers will give, along with a brief...
View ArticleClik here to view.
Vulnerability Spotlight: Google PDFium JBIG2 Image ComposeToOpt2WithRect...
Discovered by Aleksandar Nikolic of Cisco TalosOverviewCisco Talos is releasing details of a new vulnerability in Google PDFium's JBIG2 library. An exploitable out-of-bounds read on the heap...
View ArticleClik here to view.
Threat Roundup Sept 28 - Oct 5
Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we’ve observed this week — covering the dates between Sept. 28 and Oct. 5. As with previous roundups, this post...
View ArticleClik here to view.
Vulnerability in the Intel Unified Shader compiler for the Intel Graphics...
Vulnerabilities discovered by Piotr Bania of Cisco TalosTalos is disclosing a pointer corruption vulnerability in the Intel Unified Shader compiler for the Intel Graphics Accelerator.OverviewIn order...
View ArticleClik here to view.
Microsoft Patch Tuesday — October 18: Vulnerability disclosures and Snort...
Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 49 vulnerabilities, 12 of which are rated...
View ArticleClik here to view.
Vulnerability Spotlight: VMWare Workstation DoS Vulnerability
Today, Cisco Talos is disclosing a vulnerability in VMware Workstation that could result in denial of service. VMware Workstation is a widely used virtualization platform designed to run alongside a...
View ArticleClik here to view.
Microsoft WindowsCodecs.dll SniffAndConvertToWideString Information Leak...
These vulnerabilities were discovered by Marcin Noga of Cisco Talos.Today, Cisco Talos is disclosing a vulnerability in the WindowsCodecs.dll component of the Windows operating system.WindowsCodecs.dll...
View ArticleClik here to view.
GPlayed Trojan - .Net playing with Google Market
This blog post is authored byVitor Ventura.IntroductionIn a world where everything is always connected, and mobile devices are involved in individuals' day-to-day lives more and more often, malicious...
View ArticleClik here to view.
Threat Roundup for October 5 to October 12
Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we’ve observed this week — covering the dates between Oct. 5 and 12. As with previous roundups, this post isn’t...
View ArticleClik here to view.
Old dog, new tricks - Analysing new RTF-based campaign distributing Agent...
This blog post was authored by Edmund Brumaghin and Holger Unterbrink with contributions from Emmanuel Tacheau.Executive SummaryCisco Talos has discovered a new malware campaign that drops the...
View ArticleClik here to view.
Vulnerability Spotlight: Linksys ESeries Multiple OS Command Injection...
These vulnerabilities were discovered by Jared Rittle of Cisco Talos.Cisco Talos is disclosing several vulnerabilities in the operating system on the Linksys E Series of routers.Multiple exploitable OS...
View ArticleClik here to view.
Vulnerability Spotlight: Live Networks LIVE555 streaming media RTSPServer...
These vulnerabilities were discovered by Lilith Wyatt of Cisco Talos.Cisco Talos is disclosing a code execution vulnerability that has been identified in Live Networks LIVE555 streaming media...
View Article