SBOM is a 'massive galaxy of mess' for supply chain security
SCSW Talos team warns on third-party threats, but will it work? Betteridge's Law may apply
Systems28 Feb 2023 | 7
Talos
Microsoft closes another door to attackers by blocking Excel XLL files from the internet
More of them used by baddies since Redmond blocked VBA macros
Research25 Jan 2023 | 6
Microsoft took its macros and went home, so miscreants turned to Windows LNK files
Adapt or die
Research23 Jan 2023 | 6
Cisco’s Talos security bods predict new wave of Excel Hell
Criminals have noticed that spreadsheet's XLL files add custom functionality - including malware
Security21 Dec 2022 | 16
Ransomware down this year – but there's a catch
2021 was such a banner year for extortionists, 2022 is gonna look rosy in comparison
Cyber-crime26 Oct 2022 | 1
Dark Utilities C2 service draws thousands of cyber criminals
Nascent platform provides miscreants an easier and cheaper way to launch remote access, DDoS, and other attacks
Security08 Aug 2022 | 1
Talos names eight deadly sins in widely used industrial software
Entire swaths of gear relies on vulnerability-laden Open Automation Software (OAS)
Patches27 May 2022 | 6
This is a BlackCat you don't want crossing your path
Plus: Android trojan in 100,000+ app installs, Solaris malware
Security22 Mar 2022 | 3
India under attack by rapidly-evolving advanced persistent threat actor SideCopy, says Cisco Talos
Gang is using custom RATs malware to target government employees, and has an interest in Pakistan, too
Security08 Jul 2021 |
Imperva cloud firewall pwned, D-Link bug uncovered – plus more
Roundup Including: Visual Studio Code debug hole found
Security14 Oct 2019 | 2
Insane in the domain: Sea Turtle hackers pwn DNS orgs to dash web surfers on the rocks of phishing pages
Website settings altered to point visitors to malicious clones
Security17 Apr 2019 | 15
Running Elasticsearch 1.4.2 or earlier? There's targeted malware going for your boxen
Yes it's years out of date but there's no such thing as security through obscurity
Security27 Feb 2019 |
Q. What connects the global financial crisis, Ursnif malware, and Coldplay's Viva la Vida?
A. Bad things from 2008 we can't seem to shake
Security28 Jan 2019 | 6
'Bomb threat' scammers linked to earlier sextortion campaign
Scare tactic efforts may be the work of a single group
Security15 Dec 2018 | 29
UK white hats blacklisted by Cisco Talos after smart security code stumbles
Cisco gracefully says it won't charge for the privilege
Security13 Dec 2018 | 20
Cisco smells a RAT in Breaking Security's Remcos PC wrangler
Updated Researchers claim pentesting software being used for botnets
Security22 Aug 2018 | 8
VPNFilter router malware is a lot worse than everyone thought
More affected devices. More damage. And what looks like an escalation in attacks
Security07 Jun 2018 | 57
Advanced VPNFilter malware menacing routers worldwide
Cisco's Talos team says 500k already pwned and leaking data
Security23 May 2018 | 33
Russian malware harvesting Telegram Desktop creds, chats
Python programmer may have outed himself on YouTube
Security17 May 2018 | 10
Spectre shenanigans, Nork hackers upgrade, bad WD drives and more
Roundup Your weekly dose of infosec odds'n'sods
Security03 Feb 2018 | 14
Good news, everyone: Ransomware declining. Bad news: Miscreants are turning to crypto-mining on infected PCs
Screw asking for digi-coins. Craft 'em on 500,000 computers
Security01 Feb 2018 | 23
CCleaner targeted top tech companies in attempt to lift IP
Infected Avast tool's payload went after the likes of Microsoft, Intel and Cisco, hit 20 targets
Security21 Sep 2017 | 49
Microsoft won't patch Edge browser content security bypass
Tells Cisco's Talos it's a feature, not a bug. Apple and Google disagree and fixed it
Security07 Sep 2017 | 37
Apache Struts 2 needs patching, without delay. It's under attack now
Black hats testing remote code execution zero-day vulnerability
Security09 Mar 2017 | 5
Talos opens box, three Aerospike vulns fly out
NoSQL server, but a big unhappy Yes to the question of security worries
Security22 Feb 2017 | 2
Wavering about Apple's latest security fix? Don't, says Talos
The very image of a remote exploit
Software21 Jul 2016 | 13
Time for a patch: six vulns fixed in NTP daemon
What's the time? It's time to get ill. Unless you fix these beastly flaws
Security28 Apr 2016 | 7
SamSam ransomware shifts from hospitals to schools via JBoss hole
With 3.2 million unpatched servers, scum have a lot of targets
Security19 Apr 2016 | 4
'Malicious time source' can poison Network Time Protocol
Think of this as an evil TARDIS dropping servers into a time rift
Security22 Oct 2015 | 6
Cisco tool IDs malware in the firmware
Your SYNs, forgiven
Security25 Sep 2015 | 4
Cisco's RAT-catchers spot sysadmin-targeted phish
Tricks admin tool into sucking down the malware
Security27 Aug 2015 | 4
Coming in 2014: Scary super-soldier exoskeleton suits from the US military
Iron Man-esque armor prototypes next year, deployment in 2018
Legal31 Dec 2013 | 105
OCZ unsheathes Talos flash talons
Another flash drive clawing into HDD business
Channel01 Aug 2011 | 1
Biting the hand that feeds IT
