Talos Group's Articles
-
Threat ResearchArbitrary Code Execution Vulnerabilities in MuPDF Identified and Patched
Talos is disclosing the presence of two vulnerabilities in the Artifex MuPDF renderer. MuPDF is a lightweight PDF parsing and rendering library featuring high fidelity graphics, high speed, and compact
Read More -
Threat Research
Player 3 Has Entered the Game: Say Hello to ‘WannaCry’
This post was authored by Martin Lee, Warren Mercer, Paul Rascagneres, and Craig Williams. Executive Summary A major ransomware attack has affected many organizations across across the world reportedly including Telefonica in
Read More -
Threat Research
Threat Round-up for May 05 – May 12
Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between May 05 and May 12. As with previous round-ups, this post isn’t meant to be an
Read More -
Threat Research
Jaff Ransomware: Player 2 Has Entered The Game
This post was written by Nick Biasini, Edmund Brumaghin and Warren Mercer with contributions from Colin Grady Summary Talos is constantly monitoring the email threat landscape and tracking both new
Read More -
Threat Research
Vulnerability Spotlight: Hangul Word Processor Remote Code Execution Vulnerability
Talos is disclosing the presence of a vulnerability in Hangul Word Processor. Published by Hancom inc. the Hangul Office Suite, of which Hangul Word Processor is part, is the leading word
Read More -
Threat Research
Microsoft Patch Tuesday – May 2017
Today, Microsoft has release their monthly set of security updates designed to address vulnerabilities. This month’s release addresses 56 vulnerabilities with 15 of them rated critical and 41 rated important.
Read More -
Threat Research
Vulnerability Spotlight: WolfSSL library X509 Certificate Text Parsing Code Execution Vulnerability
Discovered by Aleksandar Nikolic of Cisco Talos Overview Talos is disclosing TALOS-2017-0293 / CVE 2017-2800, a code execution vulnerability in WolfSSL. WolfSSL is a lightweight SSL/TLS library targeted specifically for
Read More -
Threat Research
Vulnerability Spotlight: Power Software PowerISO ISO Code Execution Vulnerabilities
These vulnerabilities were discovered by Piotr Bania of Cisco Talos. Today, Talos is releasing details of a new vulnerability discovered within the Power Software PowerISO disk imaging software. TALOS-2017-0318 and
Read More -
Threat Research
Vulnerability Spotlight: AntennaHouse DMC Library Arbitrary Code Execution Flaws
These vulnerabilities were discovered by Marcin ‘Icewall’ Noga of Talos. Today, Talos is disclosing several vulnerabilities that have been identified in the AntennaHouse DMC library which is used in various
Read More -
Threat Research
Gmail Worm Requiring You To Give It A Push And Apparently You All Are Really Helpful
This post authored Sean Baird and Nick Biasini Attackers are always looking for creative ways to send large amount of spam to victims. A short-lived, but widespread Google Drive themed
Read More
