malware

August 16, 2019

THREAT RESEARCH

Threat Roundup for August 9 to August 16

1 min read

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Aug. 9 and Aug. 16. As...

August 9, 2019

THREAT RESEARCH

Threat Roundup for August 2 to August 9

1 min read

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Aug. 2 and Aug. 9. As...

June 7, 2019

SECURITY

The Endless Scourge of Malicious Email

2 min read

Email: Click with Caution – How to protect against phishing, fraud, and other scams... We invite you to download our full report.

May 30, 2019

THREAT RESEARCH

10 years of virtual dynamite: A high-level retrospective of ATM malware

1 min read

It has been 10 years since the discovery of Skimer, first malware specifically designed to attack automated teller machines (ATMs). At the time, the learning curve for understanding its functionality...

May 23, 2019

THREAT RESEARCH

One year later: The VPNFilter catastrophe that wasn’t

1 min read

One year ago, Cisco Talos first disclosed the existence of VPNFilter on May 23, 2018. The malware made headlines across the globe, as it was a sophisticated piece of malware...

May 20, 2019

THREAT RESEARCH

Recent MuddyWater-associated BlackWater campaign shows signs of new anti-detection techniques

1 min read

This blog was authored by Danny Adamitis, David Maynor, and Kendall McKay Executive summary Cisco Talos assesses with moderate confidence that a campaign we recently...

April 25, 2019

THREAT RESEARCH

JasperLoader Emerges, Targets Italy with Gootkit Banking Trojan

1 min read

Nick Biasini and Edmund Brumaghin authored this blog post with contributions from Andrew Williams. Introduction to JasperLoader Malware loaders are playing an increasingly important role in malware distribution. They give...

April 23, 2019

THREAT RESEARCH

DNSpionage brings out the Karkoff

1 min read

In November 2018, Cisco Talos discovered an attack campaign, called DNSpionage, in which threat actors created a new remote administrative tool that supports HTTP and DNS communication with the attackers'...