Clik here to view.
Divergent: "Fileless" NodeJS Malware Burrows Deep Within the Host
Executive summaryCisco Talos recently discovered a new malware loader being used to deliver and infect systems with a previously undocumented malware payload called "Divergent." We first dove into this...
View ArticleClik here to view.
Threat Roundup for September 20 to September 27
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Sept. 20 and Sept. 27. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Vulnerability Spotlight: Foxit PDF Reader JavaScript Array.includes remote...
Aleksandar Nikolic of Cisco Talos discovered this vulnerability.Foxit PDF Reader contains a remote code execution vulnerability in its JavaScript engine. Foxit aims to be one of the most feature-rich...
View ArticleClik here to view.
Open Document format creates twist in maldoc landscape
By Warren Mercer and Paul Rascagneres.IntroductionCisco Talos recently observed attackers changing the file formats they use in an attempt to thwart common antivirus engines. This can happen across...
View ArticleClik here to view.
Threat Roundup for September 27 to October 4
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Sept. 27 and Oct. 4. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Microsoft Patch Tuesday — Oct. 2019: Vulnerability disclosures and Snort...
By Jon Munshaw.Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday discloses 60 vulnerabilities, nine of...
View ArticleClik here to view.
Vulnerability spotlight: Multiple vulnerabilities in Schneider Electric...
Jared Rittle and Patrick DeSantis of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.There are several vulnerabilities in the Schneider Electric Modicon M580 that could lead to a...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple remote code execution bugs in NitroPDF
Cory Duplantis and Aleksandar Nikolic of Cisco Talos discovered these vulnerabilities.Cisco Talos recently discovered multiple remote code execution vulnerabilities in NitroPDF. Nitro PDF allows users...
View ArticleClik here to view.
Talos takes home top research honors at Virus Bulletin conference
By Jon MunshawResearchers from Cisco Talos brought up the top award at this year’s Virus Bulletin conference.Talos received the Péter Ször Award— named for the prolific security researcher who was a...
View ArticleClik here to view.
New IDA Pro plugin provides TileGX support
By Jonas ZaddachOverviewCisco Talos has a new plugin available for IDA Pro that provides a new disassembler for TileGX binaries. This tool should assist researchers in reverse-engineering threats in...
View ArticleClik here to view.
Threat Source newsletter (Oct. 10, 2019)
Newsletter compiled by Jon Munshaw.Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.It’s that time again to update all your...
View ArticleClik here to view.
Beers with Talos Ep. #63: The third law of thermodynamics
Beers with Talos (BWT) Podcast episode No. 63 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Recorded Sept. 27, 2019...
View ArticleClik here to view.
Threat Roundup for October 4 to October 11
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct. 4 and Oct. 11. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Checkrain fake iOS jailbreak leads to click fraud
By Warren Mercer and Paul Rascagneres.IntroductionAttackers are capitalizing on the recent discovery of a new vulnerability that exists across legacy iOS hardware. Cisco Talos recently discovered a...
View ArticleClik here to view.
Vulnerability Spotlight: Another fix for Adobe Acrobat Reader DC text field...
Aleksandar Nikolic of Cisco Talos discovered this vulnerability.Cisco Talos once again would like to bring attention to a remote code execution vulnerability in Adobe Acrobat Reader. Acrobat, which is...
View ArticleClik here to view.
Threat Source newsletter (Oct. 17, 2019)
Newsletter compiled by Jon Munshaw.Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.It’s rare that iOS jailbreaks make it onto...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple vulnerabilities in YouPHPTube
Yuri Kramarz of Security Advisory EMEAR discovered these vulnerabilities. Post by Jon Munshaw.YouPHPTube contains multiple vulnerabilities that could allow an attacker to carry out a variety of...
View ArticleClik here to view.
Threat Roundup for October 11 to October 18
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct. 11 and Oct. 18. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead,...
View ArticleClik here to view.
Gustuff return, new features for victims
By Vitor Ventura with contributions from Chris Neal.Executive summaryThe Gustuff banking trojan is back with new features, months after initially appearing targeting financial institutions in...
View ArticleClik here to view.
CISO Advisory: Governance & Risk Management
Businesses are built on risk. No matter how prepared they are, there is no guarantee that any decision will result in the expected outcome. But through good management, the likelihood of success can be...
View Article