- + Only one critical vulnerability included in May’s Microsoft Patch Tuesday; One other zero-day in DWN Core—After a relatively hefty Microsoft Patch Tuesday in April, this month’s security update from the company only included one critical vulnerabi...
- + Talos joins CISA to counter cyber threats against non-profits, activists and other at-risk communities—Cisco Talos is delighted to share updates about our ongoing partnership with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to comba...
- + A new alert system from CISA seems to be effective — now we just need companies to sign up—One of the great cybersecurity challenges organizations currently face, especially smaller ones, is that they don’t know what they don’t...
- + Talos discloses multiple zero-day vulnerabilities, two of which could lead to code execution—Cisco Talos’ Vulnerability Research team recently disclosed three zero-day vulnerabilities that are still unpatched as of Wednesday, May 8. ...
- + What can we learn from the passwords used in brute-force attacks?—Brute force attacks are one of the most elementary cyber threats out there. Technically, anyone with a keyboard and some free time could launch one of...
- + Vulnerabilities in employee management system could lead to remote code execution, login credential theft—Cisco Talos’ Vulnerability Research team has disclosed more than a dozen vulnerabilities over the past three weeks, five in a device that allow...
- + Cisco Talos at RSAC 2024—With RSAC just a week away, Cisco Talos is gearing up for another year of heading to San Francisco to share in some of the latest major cybersecurity ...
- + James Nutland studies what makes threat actors tick, growing our understanding of the current APT landscape—If state-sponsored actors are after one thing, it’s to spread fear and uncertainty across the internet. There’s always money to b...
- + The private sector probably isn’t coming to save the NVD—I wrote last week about the problems arising from the massive backlog of vulnerabilities at the U.S. National Vulnerability Database. ...
- + Talos IR trends: BEC attacks surge, while weaknesses in MFA persist—Business email compromise (BEC) was the top threat observed by Cisco Talos Incident Response (Talos IR) in the first quarter of 2024, accounting for n...
- + ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices—ArcaneDoor is a campaign that is the latest example of state-sponsored actors targeting perimeter network devices from multiple vendors. Coveted by th...
- + Suspected CoralRaider continues to expand victimology using three information stealers—By Joey Chen, Chetan Raghuprasad and Alex Karkins. Cisco Talos discovered a new ongoing campaign since at least February 2024, operated by a ...
- + What’s the deal with the massive backlog of vulnerabilities at the NVD?—The National Vulnerability Database is usually the single source of truth for all things related to security vulnerabilities. But now, th...
- + Could the Brazilian Supreme Court finally hold people accountable for sharing disinformation?—If you’re a regular reader of this newsletter, you already know about how strongly I feel about the dangers of spreading fake news , disinform...
- + OfflRouter virus causes Ukrainian users to upload confidential documents to VirusTotal—During a threat-hunting exercise, Cisco Talos discovered documents with potentially confidential information originating from Ukraine. The documents c...
- + Large-scale brute-force activity targeting VPNs, SSH services with commonly used login credentials—Cisco Talos would like to acknowledge Brandon White of Cisco Talos and Phillip Schafer, Mike Moran, and Becca Lynch of the Duo Security Research team ...
- + The internet is already scary enough without April Fool’s jokes—I feel like over the past several years, the “holiday” that is April Fool’s Day has really died down. At this point, there are fe...
- + Vulnerability in some TP-Link routers could lead to factory reset—Cisco Talos’ Vulnerability Research team has disclosed 10 vulnerabilities over the past three weeks, including four in a line of TP-Link router...
- + April’s Patch Tuesday includes 150 vulnerabilities, 60 which could lead to remote code execution—In one of the largest Patch Tuesdays in years, Microsoft disclosed 150 vulnerabilities across its software and product portfolio this week, including ...
- + Starry Addax targets human rights defenders in North Africa with new malware—Cisco Talos is disclosing a new threat actor we deemed “Starry Addax” targeting mostly human rights activists associated with the Sahraw...
- + There are plenty of ways to improve cybersecurity that don’t involve making workers return to a physical office—As my manager knows, I’m not the biggest fan of working in a physical office. I’m a picky worker — I like my workspace to be bord...
- + CoralRaider targets victims’ data and social media accounts—Cisco Talos discovered a new threat actor we’re calling “CoralRaider” that we believe is of Vietnamese origin and financially mot...
- + Adversaries are leveraging remote access tools now more than ever — here’s how to stop them—Remote system management/desktop access tools such as AnyDesk and TeamViewer have grown in popularity since 2020. While there are many legitimate uses...
- + Enter the substitute teacher—Welcome to this week’s threat source newsletter with Jon out, you’ve got me as your substitute teacher. I’m taking you bac...
- + “Pig butchering” is an evolution of a social engineering tactic we’ve seen for years—Whether you want to call them “catfishing,” “pig butchering” or just good ‘old-fashioned “social engineering...
- + New details on TinyTurla’s post-compromise activity reveal full kill chain—Cisco Talos is providing an update on its two recent reports on a new and ongoing campaign where Turla, a Russian espionage group, deployed their ...
- + Netgear wireless router open to code execution after buffer overflow vulnerability—Cisco Talos’ Vulnerability Research team recently disclosed three vulnerabilities across a range of products, including one that could lead to ...
As of 5/16/24 2:28am. Last new 5/14/24 4:07pm. Score: 293
- Next feed in category: ThreatPost - Cryptography