0-day

February 3, 2015

THREAT RESEARCH

Angler Exploit Kit – New Variants

2 min read

This post was authored by Nick Biasini On January 27th,  Talos researchers began observing a new Angler Exploit Kit (EK) campaign using new variants associated with (CVE-2015-0311). Based on our telemetry data the campaign lasted from January 26th until January 30th with the majority of the events occurring on January 28th & 29th.

January 23, 2015

THREAT RESEARCH

Flash 0-day Exploited by Angler Exploit Kit

3 min read

This post was authored by Nick Biasini, Earl Carter and Jaeson Schultz Flash has long been a favorite target among Exploit Kits (EK). In October 2014 the Angler EK was believed to be targeting a new Flash vulnerability. The bug that the Angler exploit kit was attempting to exploit had been “accidentally” patched by Adobe’s […]

January 13, 2015

THREAT RESEARCH

Microsoft Update Tuesday January 2015: Another Light Month, No IE Bulletins, More Changes to Reporting

3 min read

This post was written by Yves Younan. Microsoft’s first Update Tuesday of 2015 is pretty light, there’s a total of eight bulletins, all covering a single vulnerability. Seven of these bulletins are rated as important and just one is rated critical. No bulletin for IE is being released this month. Two of the vulnerabilities were […]

December 9, 2014

THREAT RESEARCH

Microsoft Patch Tuesday for December 2014: Light Month, Some Changes

3 min read

This post was authored by Yves Younan. Today, Microsoft is releasing their final Update Tuesday of 2014. Last year, the end of year update was relatively large. This time, it’s relatively light with a total of seven bulletins, covering 24 CVEs. Three of those bulletins are rated critical and four are considered to be important. […]

November 11, 2014

THREAT RESEARCH

Microsoft Update Tuesday November 2014: Fixes for 3 0-day Vulnerabilities

3 min read

This month Microsoft is releasing 14 security bulletins. Originally they had planned to release 16, but due to issues that emerged in late testing, two bulletins that were announced in the Advance Security Notification, MS14-068 and MS14-075, have been postponed. Of the 14 bulletins, four are considered critical, eight are important, while two are moderate. […]

October 16, 2014

THREAT RESEARCH

Weaponized Powerpoint in the Wild

1 min read

This post was written by Jaeson Schultz. On October 14th information related to a new Windows vulnerability, CVE-2014-4114, was published. This new vulnerability affects all supported versions of Microsoft Windows. Windows XP, however, is not affected by this vulnerability. The problem lies in Windows’ OLE package manager. When triggered it allows for remote code execution.

October 14, 2014

THREAT RESEARCH

Microsoft Update Tuesday October 2014: Fixes for 4 0-day Vulnerabilities

2 min read

This post was authored by Yves Younan Microsoft Tuesday is here once again and this month they are releasing a total of eight bulletins. Three of which are rated as critical, while the remaining five are rated as important. There’s a total of 24 CVEs this month, 20 of which were privately disclosed to Microsoft […]

April 28, 2014

SECURITY

IE Zero Day and VGX.dll

2 min read

Update 5-1-2014: We can confirm Cisco customers have been targets of this attack. For the latest coverage information and additional details see our new post on the VRT blog.  The recent discovery of a new Internet Explorer zero-day exploit underlines how exposed web browsers are to vulnerabilities for which a patch is yet to be released. Cisco is […]

June 5, 2013

SECURITY

Plesk 0-Day Targets Web Servers

2 min read

Update 6/6/2013: We’re seeing reports of exploitation of this vulnerability. We can confirm Global Correlation – Network Participation telemetry is seeing multiple exploitation attempts across many customers. Customers who participate in Global Correlation – Inspection have a higher chance of this signature blocking in the default configuration since the sensor will take the reputation of an attacker into account […]