Security @ Cisco Blogs

Security

Vulnerability Spotlight: Adobe Acrobat Reader DC jpeg Decoder Vulnerability

Discovered by Aleksandar Nikolic of Cisco Talos Overview Talos is disclosing TALOS-2016-0259 / CVE-2017-2791 an uninitialized memory vulnerability in Adobe Acrobat Reader DC. Adobe Acrobat Reader is one of the largest and well known PDF readers

January 20, 2017 • 1 min read

Jason Lamar

Effective Endpoint Security – More than Meets the Eye

One of your sales people, Susan, is on the road putting some finishing touches on a presentation before a big meeting. Using the hotel Wi-Fi she does a quick search to see if there’s any relevant company or industry news she needs to know about before

January 20, 2017 • 4 min read

Omar Santos

Guidelines and Practices for Multi-Party Vulnerability Coordination Open to Review

Recent cyber attacks on organizations around the world have demonstrated the need for consistency in managing security vulnerabilities. To answer that demand, the Industry Consortium for the Advancement of Security on the Internet (ICASI) and the

January 20, 2017 • 1 min read

Veronica Valeros

Closing One Learning Loop: Using Decision Forests to Detect Advanced Threats

This blog post was authored by Veronica Valeros and Lukas Machlica Malicious actors are constantly evolving their techniques in order to evade detection. It is not only the sophistication or the rapid...

January 19, 2017 • 6 min read

Omar Santos

Scoring Cisco Security Vulnerabilities with CVSSv3

The Cisco Product Security Incident Response Team (PSIRT) is now scoring all security advisories addressing security vulnerabilities that affect Cisco products and multivendor vulnerability alerts using the Common Vulnerability Scoring System version

January 19, 2017 • 1 min read

Talos Group

Without Necurs, Locky Struggles

This post authored by Nick Biasini with contributions from Jaeson Schultz Locky has been a devastating force for the last year in the spam and ransomware landscape. The Locky variant of ransomware has been responsible for huge amounts of spam messages

January 18, 2017 • 1 min read

Talos Group

Vulnerability Spotlight: Multiple Code Execution Vulnerabilities in Oracle Outside In Technology

These vulnerabilities were discovered by Aleksandar Nikolic of Cisco Talos. Summary Oracle’s Outside In Technology (OIT) is a set of SDKs that software developers can use to perform various actions against a large number of different file

January 18, 2017 • 1 min read

Talos Group

Vulnerability Spotlight: Exploiting the Aerospike Database Server

Vulnerabilities discovered by Talos Talos is disclosing multiple vulnerabilities discovered in the Aerospike Database Server. These vulnerabilities range from memory disclosure to potential remote code execution. This software is used by various

January 12, 2017 • 1 min read

Jason Lamar

2016 – What a Year for Cisco Security

What a giant year for Cisco Security! In 2016, we pursued our effective security architecture with innovative solutions – from the network to the endpoint to the cloud. I couldn’t...

January 11, 2017 • 3 min read

Cisco Blogs

Security

Our Favorite Topics:

Security

Vulnerability Spotlight: Adobe Acrobat Reader DC jpeg Decoder Vulnerability

Effective Endpoint Security – More than Meets the Eye

Guidelines and Practices for Multi-Party Vulnerability Coordination Open to Review

Closing One Learning Loop: Using Decision Forests to Detect Advanced Threats

Scoring Cisco Security Vulnerabilities with CVSSv3

Without Necurs, Locky Struggles

Vulnerability Spotlight: Multiple Code Execution Vulnerabilities in Oracle Outside In Technology

Vulnerability Spotlight: Exploiting the Aerospike Database Server

2016 – What a Year for Cisco Security

Cisco Cybersecurity Viewpoints

Why Cisco Security?