Articles
Korea In The Crosshairs
2 min read
This article exposes the malicious activities of Group 123 during 2017. We assess with high confidence that Group 123 was responsible for six campaigns targeting both Korean and Non-Korean institutions.
Vulnerability Spotlight: Multiple Unpatched Vulnerabilities in Blender Identified
1 min read
Talos discloses multiple vulnerabilities identified in Blender that could allow an attacker to execute arbitrary code. Blender. Users opening a crafted file could trigger a vulnerability and be exploited or compromised.
Vulnerability Spotlight: Multiple Vulnerabilities in the CPP and Parity Ethereum Client
1 min read
Talos discloses vulnerabilities in CPP and Parity Ethereum clients: a denial of service vulnerability in libevm, plus a permissive cross-domain (CORS) whitelist policy vulnerability in the Ethereum Parity client.
Vulnerability Spotlight: Ruby Rails Gem XSS Vulnerabilities
1 min read
Talos has discovered two XSS vulnerabilities in Ruby Rails Gems. Rails is a Ruby framework designed to create web services or web pages. Ruby Gems is a package manager for distributing software packages as ‘gems’. The two XSS vulnerabilities were discovered in two different gem packages: delayed_job_web and rails_admin. Ruby is widely used as a […]
Meltdown and Spectre
1 min read
Cisco Talos is aware of three new vulnerabilities impacting Intel, AMD, Qualcomm and ARM processors used by almost all computers.
Threat Round Up for December 29 – January 5
1 min read
Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between December 29 and January 05. As with previous round-ups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavior characteristics, indicators of compromise, and how our customers are automatically […]
Not So Crystal Clear – Zeus Variant Spoils Ukrainian Holiday
1 min read
Talos has observed a cyber attack which was launched using the official website of the Ukraine-based accounting software developer Crystal Finance Millennium (CFM).
Vulnerability Spotlight: VMWare VNC Vulnerabilities
1 min read
Today, Talos is disclosing a pair of vulnerabilities in the VNC implementation used in VMWare’s products that could result in code execution. VMWare implements VNC for its remote management, remote access, and automation purposes in VMWare products including Workstation, Player, and ESXi which share a common VMW VNC code base. The vulnerabilities manifest themselves in […]
Virus Bulletin Publication And Presentation
1 min read
Virus Bulletin conference is a well regarded intimate technical conference focused on malware research. It provides a good balance between listening to technical talks and spending time exchanging experiences with colleagues from different companies; all working on the same task of making our computing environments more secure. This past October, Talos participated at the Virus […]