Clik here to view.
Vulnerability Spotlight: Multiple remote vulnerabilities in TP-Link TL-R600VPN
Vulnerabilities discovered by Jared Rittle of Cisco Talos.Cisco Talos is disclosing multiple vulnerabilities in the TP-Link TL-R600VPN router. TP-Link produces a number of different types of small and...
View ArticleClik here to view.
What scams shoppers should look out for on Black Friday and Cyber Monday
Every year, more and more Americans are taking care of their holiday shopping on Cyber Monday.Last year, consumers spent a record $6.59 billion during the annual online shopping day, an all-time...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple remote code execution vulnerabilities in...
A member of Cisco Talos discovered these vulnerabilities.Executive summaryToday, Cisco Talos is disclosing three remote code execution vulnerabilities in the Atlantis Word Processor. Atlantis Word...
View ArticleClik here to view.
Beers with Talos EP42: To the Moon, Everyone!
Beers with Talos (BWT) Podcast Ep. #42 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Ep. #42 show notes: Recorded...
View ArticleClik here to view.
DNSpionage Campaign Targets Middle East
This blog post was authored by Warren Mercer and Paul Rascagneres.Update 2018-11-27 15:30:00 EDT: A Russian-language document has been removed. Subsequent analysis leads us to believe it is unrelated...
View ArticleClik here to view.
Threat Roundup for Nov. 23 to Nov. 30
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 23 and Nov. 30. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: Netgate pfSense system_advanced_misc.php...
Brandon Stultz of Cisco Talos. of Cisco Talos discovered these vulnerabilities.Executive summaryToday, Cisco Talos is disclosing a command injection vulnerability in Netgate pfSense...
View ArticleClik here to view.
An introduction to offensive capabilities of Active Directory on UNIX
Tim Wadhwa-Brown of Portcullis Labs authored this post.In preparation for our talk at Black Hat Europe, Security Advisory EMEAR would like to share the background on our recent research into some...
View ArticleClik here to view.
Threat Roundup for Nov. 30 to Dec. 7
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 30 and Dec. 07. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
in(Secure) messaging apps — How side-channel attacks can compromise privacy...
This blog post is authored by Vitor Ventura.Executive summaryMessaging applications have been around since the inception of the internet. But recently, due to the increased awareness around mass...
View ArticleClik here to view.
Microsoft Patch Tuesday — December 2018: Vulnerability disclosures and Snort...
Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 38 vulnerabilities, nine of which are rated...
View ArticleClik here to view.
Vulnerability Spotlight: Adobe Acrobat Reader DC text field remote code...
Aleksandar Nikolic of Cisco Talos discovered this vulnerability.Executive summaryAdobe Acrobat Reader DC contains a vulnerability that could allow an attacker to remotely execute code on the victim’s...
View ArticleClik here to view.
Cisco Coverage for Shamoon 2 & 3
Update Dec. 14, 2018 10:30 CST: Added new Shamoon 3 IOCsShamoon is a type of destructive malware that has been previously associated with attacks against various organizations in the oil and gas...
View ArticleClik here to view.
Threat Roundup for Dec. 7 to Dec. 14
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Dec. 07 and Dec. 14. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Bitcoin Bomb Scare Associated with Sextortion Scammers
This blog was written by Jaeson Schultz.Organizations across the country are on edge today after a flurry of phony bomb threats hit several public entities Thursday, such as universities, schools and...
View ArticleClik here to view.
Beers with Talos EP 43: Espionage, Encryption, and CISO Square One
Beers with Talos (BWT) Podcast Ep. #43 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Ep. #43 show notes: Recorded...
View ArticleClik here to view.
Connecting the dots between recently active cryptominers
Post authored by David Liebenberg and Andrew Williams.Executive SummaryThrough Cisco Talos' investigation of illicit cryptocurrency mining campaigns in the past year, we began to notice that many of...
View ArticleClik here to view.
As Cryptocurrency Crash Continues, Will Mining Threat Follow?
Post authored by Nick Biasini.Executive SummaryAs 2018 draws to a close, one technology has definitively left its mark on the year: cryptocurrencies. Digital currencies started the year out strong...
View ArticleClik here to view.
Microsoft Patches Out-of-Band Internet Explorer Scripting Engine...
OverviewOn December 19th, 2019 Microsoft released an out-of-band (OOB) patch related to a vulnerability in the scripting engine of Internet Explorer. This particular vulnerability is believed to be...
View ArticleClik here to view.
Vulnerability Spotlight : Multiple Vulnerabilities in WIBU-SYSTEMS WibuKey.sys
These vulnerabilities were discovered by Marcin 'Icewall' Noga of Cisco Talos.Executive SummaryWibuKey is a Digital Rights Management (DRM) solution that has been used in a large number of solutions...
View Article