Security

Cryptocurrency miners aren’t dead yet: Documenting the voracious but simple “Panda”

Talos Group
September 17, 2019 - 0 Comments

By Christopher Evans and David Liebenberg. Executive summary A new threat actor named “Panda”…

Read More

• Cisco Talos
• Cryptomining
• Threat Research

Threat Roundup for September 6 to September 13

Talos Group
September 13, 2019 - 0 Comments

Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between Sep. 6. to Sep 13. As with previous roundups, this post isn’t meant to be an

Read More

• malware
• Talos
• Threat Roundup
• vulnerabilities

New Threat Grid App for IBM QRadar SIEM

Jessica Bair
September 11, 2019 - 0 Comments

Cisco’s Threat Grid App integrates with IBM’s QRadar SIEM, enabling analysts to quickly identify, understand and respond to system threats rapidly through the QRadar dashboard.

Read More

• AMP
• Cisco
• IBM
• Threat Grid

Watchbog and the Importance of Patching

Talos Group
September 11, 2019 - 0 Comments

Cisco Incident Response (CSIRS) recently responded to an incident involving the Watchbog cryptomining botnet. By Luke DuCharme and Paul Lee.

Read More

Ingredients Needed to Manage Network Tribbles

Amanda Rogerson
September 11, 2019 - 0 Comments

Cybersecurity – the final frontier, these are the trials and tribulations that network admins face on an ongoing basis. Network admins are like Starfleet captains navigating unknown galaxies as the infrastructure of organizations become more

Read More

• device visibility
• Duo
• ISE
• multi-factor authentication
• Zero Trust

The Value of Threat Hunting

Ben Nahorney
September 9, 2019 - 1 Comment

Threat hunting, i.e. looking for threats that somehow got past your defenses, is featured in our Cisco Cybersecurity Series, “Hunting for Hidden Threats: Incorporating Threat Hunting Into Your Security Program.”

Read More

• AMP
• cyrptomining
• Featured
• hunting
• threat
• umbrella

Threat Roundup for August 30 to September 6

Talos Group
September 6, 2019 - 0 Comments

Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between Aug. 30 and Sep. 6.

Read More

• malware
• Talos
• Threat Roundup
• vulnerabilities

GhIDA: Ghidra decompiler for IDA Pro

Talos Group
September 5, 2019 - 0 Comments

Executive Summary Cisco Talos is releasing two new tools for IDA Pro: GhIDA and Ghidraaas. GhIDA is an IDA Pro plugin that integrates the Ghidra decompiler…

Read More

• IDA
• Malware Analysis
• tool

The latest on BlueKeep and DejaBlue vulnerabilities — Using Firepower to defend against encrypted DejaBlue

Talos Group
September 3, 2019 - 0 Comments

Over the past few months, Microsoft has released several security updates for critical Remote Desktop Protocol (RDP)-related security bugs. These bugs are significant for IT infrastructure because they are classified…

Read More

• BlueKeep
• DejaBlue
• Microsoft
• RDP
• RDP vulnerabilities

New Forensic Investigation Procedures for First Responder Guides

Dan Maunz
August 30, 2019 - 1 Comment

Cisco announces a new series of guides that help customers and partners triage Cisco products that are suspected of being tampered with or compromised.

Read More

• ASA
• cybersecurity
• Featured
• first responder
• ftd
• IOS
• security