Avatar

Talos Group

Talos Security Intelligence & Research Group

The Talos Security Intelligence and Research Group (Talos) is made up of leading threat researchers supported by sophisticated systems to create threat intelligence for Cisco products that detects, analyzes and protects against both known and emerging threats. Talos maintains the official rule sets of Snort.org, ClamAV, SenderBase.org and SpamCop. This blog profile is managed by multiple authors with expertise that spans software development, reverse engineering, vulnerability triage, malware investigation and intelligence gathering.

Talos is the primary team that contributes threat information to the Cisco Collective Security Intelligence (CSI) ecosystem. Cisco CSI is shared across multiple security solutions and provides industry-leading security protections and efficacy. In addition to threat researchers, CSI is driven by intelligence infrastructure, product and service telemetry, public and private feeds and the open source community.

Articles

October 18, 2018

THREAT RESEARCH

Vulnerability Spotlight: Live Networks LIVE555 streaming media RTSPServer code execution vulnerability

1 min read

These vulnerabilities were discovered by Lilith Wyatt of Cisco Talos. Cisco Talos is disclosing a code execution vulnerability that has been identified in Live Networks LIVE555 streaming media RTSPServer. LIVE555...

October 16, 2018

THREAT RESEARCH

Vulnerability Spotlight: Linksys ESeries Multiple OS Command Injection Vulnerabilities

1 min read

These vulnerabilities were discovered by Jared Rittle of Cisco Talos Today, Talos is disclosing several vulnerabilities that have been identified in Linksys E Series of routers operating system. Multiple exploitable...

October 15, 2018

THREAT RESEARCH

Old dog, new tricks – Analysing new RTF-based campaign distributing Agent Tesla, Loki with PyREbox

1 min read

This blog post was authored by Edmund Brumaghin and Holger Unterbrink with contributions from Emmanuel Tacheau. Executive Summary Cisco Talos has discovered a new malware campaign...

October 12, 2018

THREAT RESEARCH

Threat Roundup for October 5-12

1 min read

Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we’ve observed this week — covering the dates between Oct. 5 and 12....

October 9, 2018

THREAT RESEARCH

Vulnerability Spotlight: VMWare Workstation DoS Vulnerability

1 min read

Today, Talos is disclosing a vulnerability in VMWare Workstation that could result in Denial of Service. VMWare Workstation is a widely used virtualization platform designed to run alongside a...

October 9, 2018

THREAT RESEARCH

Microsoft Patch Tuesday — October 18: Vulnerability disclosures and Snort coverage

1 min read

Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 49 vulnerabilities, 12 of which are rated "critical,"...

October 9, 2018

THREAT RESEARCH

Vulnerability in the Intel Unified Shader compiler for the Intel Graphics Accelerator

1 min read

Vulnerabilities discovered by Piotr Bania of Cisco Talos Talos is disclosing a pointer corruption vulnerability in the Intel Unified Shader compiler for the Intel Graphics Accelerator. OVERVIEW In order for...

October 5, 2018

THREAT RESEARCH

Threat Roundup Sept 28 – Oct 5

1 min read

Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we’ve observed this week — covering the dates between Sept. 28 and Oct....

October 3, 2018

THREAT RESEARCH

Vulnerability Spotlight: Google PDFium JBIG2 Image ComposeToOpt2WithRect Information Disclosure Vulnerability

1 min read

Discovered by Aleksandar Nikolic of Cisco Talos Overview Cisco Talos is releasing details of a new vulnerability in Google PDFium's JBIG2 library. An exploitable out-of-bounds read on the heap...