Cisco Talos

Cryptocurrency miners aren’t dead yet: Documenting the voracious but simple “Panda”

A new threat actor named “Panda” has generated thousands of dollars worth of the Monero cryptocurrency through the use of remote access tools (RATs) and illicit cryptocurrency-mining malware.

Read More

Take bigger risks with the right trusted advisors

When you have a strong incident response plan in place, you are able to take bigger risks, but where do you start if you don’t have a plan?

Read More

Malvertising: Online Advertisings’ Darker Side

By Nick Biasini, Chris Neal and…

Read More

Let’s Destroy Democracy

Election security through an adversary’s eyes This post was authored by Matt Olney

Read More

Vulnerability Spotlight: Remote code execution vulnerabilities in Simple DirectMedia Layer

Simple DirectMedia Layer contains two vulnerabilities that could an attacker to remotely execute code on the victim’s machine. Both bugs are present in the SDL2_image library, which is used for…

Read More

Welcome Spelevo: New exploit kit full of old tricks

Nick Biasini authored this post with contributions from Caitlyn Hammond….

Read More

Security Happenings at Cisco Live U.S.

Here are the major security activities happening at Cisco Live from June 9 – 13 at the San Diego Convention Center. See you there next week!

Read More

Threat Roundup for May 17 to May 24

Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between May 17 and May 24. As…

Read More

Recent MuddyWater-associated BlackWater campaign shows signs of new anti-detection techniques

This blog was authored by Danny Adamitis, David Maynor, and Kendall McKay Executive summary Cisco Talos assesses with moderate confidence that a campaign we recently…

Read More

Enabling AMP in Cisco SD-WAN

Attain the ability to sandbox and block standard, polymorphic and file-less malware across the WAN, all from the Cisco SD-WAN console. Introducing Advanced Malware Protection (AMP) for Networks.

Read More