Threat Research
- Our Favorite Topics:
Threat Roundup for Feb. 1 to Feb. 8
1 min read
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Feb. 1 and Feb. 8. As with previous roundups, this post isn't meant to be an...
2018 in Snort Signatures
1 min read
The cybersecurity field shifted quite a bit in 2018. With the boom of cryptocurrency, we saw a transition from ransomware to cryptocurrency miners. Talos researchers identified APT campaigns including VPNFilter,...
ExileRAT shares C2 with LuckyCat, targets Tibet
1 min read
Cisco Talos recently observed a malware campaign delivering malicious Microsoft PowerPoint document using a mailing list run by the Central Tibetan Administration (CTA), an organization officially representing the Tibetan government-in-exile....
Threat Roundup for Jan. 25 to Feb. 1
1 min read
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 25 and Feb. 1. As with previous roundups, this post isn't meant to be an...
Cisco Job Posting Targets Korean Candidates
1 min read
Edmund Brumaghin and Paul Rascagneres authored this post, with contributions from Jungsoo An. Executive summary Cisco Talos recently observed a targeted malware campaign being leveraged in an...
Vulnerability Spotlight: Multiple vulnerabilities in ACD Systems Canvas Draw 5
1 min read
Cisco Talos is disclosing several vulnerabilities in ACD Systems' Canvas Draw 5, a graphics-editing tool for Mac. The vulnerable component of Canvas Draw 5 lies in the handling of TIFF...
Vulnerability Spotlight: Multiple WIBU SYSTEMS WubiKey vulnerabilities
1 min read
Marcin "Icewall" Noga of Cisco Talos discovered these vulnerabilities. Executive Summary Cisco Talos discovered two vulnerabilities that could allow remote code execution and memory disclosure at the kernel level...
Threat Roundup for Jan. 18 to Jan. 25
1 min read
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 18 and Jan. 25. As with previous roundups, this post isn't meant to be an...
AMP tracks new campaign that delivers Ursnif
1 min read
This blog post was authored by John Arneson of Cisco Talos Executive Summary Cisco Talos once again spotted the Ursnif malware in the wild. We tracked this information stealer after...