Looking Glasses with Bacon
This is my first post on the VRT blog and I would like to introduce myself. I am Mariano Graziano, an Italian third-year Ph.D. student at the Software and Systems Security Group at Institut Eurecom in...
View ArticleShellshock - Update Bash Immediately!
Shellshock is a serious vulnerability. Bash, arguably the most widely distributed shell on Linux systems, fails to correctly parse environment variables with function declarations. Why the fuss over...
View ArticleClik here to view.
Take the RIG Pill: Down the Rabbit Hole
This post is authored by Holger Unterbrink with contributions by Christopher Marczewski Executive SummaryTalos is monitoring the big notorious Exploit Kits(EK) on an ongoing basis. Since Angler...
View ArticleClik here to view.
Microsoft Patch Tuesday - November 2016
Today, Microsoft has released their monthly set of security bulletins designed to address security vulnerabilities within their products. For a detailed explanaiton of each of the categories listed...
View ArticleClik here to view.
Crashing Stacks Without Squishing Bugs: Advanced Vulnerability Analysis
This post is authored by Marcin Noga with contributions by Holger UnterbrinkOverviewCrash triaging can be a long and complicated process; by using proper tools and having an optimal approach, we can...
View ArticleClik here to view.
Vulnerability Spotlight: Multiple File Parsing Bugs in HDF5 File Library Patched
These vulnerabilities were discovered by the Talos Vulnerability Development Team.Today, Talos is disclosing the discovery of four vulnerabilities which have been identified in HDF5. HDF5 is a file...
View ArticleClik here to view.
Fareit Spam: Rocking Out to a New File Type
This post authored by Nick BiasiniTalos is constantly monitoring the threat landscape including the email threat landscape. Lately this landscape has been dominated with Locky distribution. During a...
View ArticleClik here to view.
Talos Responsible Disclosure Policy Update
Responsible disclosure of vulnerabilities is a key aspect of security research. Often, the difficulty in responsible disclosure is balancing competing interests - assisting a vendor with patching their...
View ArticleClik here to view.
Cerber Spam: Tor All the Things!
This post authored by Nick Biasini and Edmund Brumaghin with contributions from Sean Baird and Andrew Windsor.Executive SummaryTalos is continuously analyzing email based malware always looking at how...
View ArticleClik here to view.
Project FIRST: Share Knowledge, Speed up Analysis
Project FIRST is lead by Angel M. Villegas. This post is authored byHolger Unterbrink. Talos is pleased to announce the release of the Function Identification and Recovery Signature Tool (FIRST). It is...
View ArticleClik here to view.
Vulnerability Spotlight: ImageMagick Convert Tiff Out of Bounds Write
Vulnerability discovered by Tyler Bohan OverviewTalos is disclosing TALOS-2016-0216 / CVE-2016-8707, an out of bounds write vulnerability in ImageMagick. ImageMagick is a photo editing software...
View ArticleClik here to view.
Floki Bot Strikes, Talos and Flashpoint Respond
This blog post was authored by Ben Baker, Edmund Brumaghin, Mariano Graziano, and Jonas ZaddachExecutive Summary Floki Bot is a new malware variant that has recently been offered for sale on various...
View ArticleClik here to view.
Vulnerability Spotlight: Joyent SmartOS
Vulnerability discovered by Tyler BohanOverviewTalos is disclosing a series of vulnerabilities in Joyent SmartOS, specifically in the Hyprlofs filesystem. SmartOS is an open source hypervisor that is...
View ArticleClik here to view.
Microsoft Patch Tuesday - December 2016
The final patch Tuesday of 2016 has arrived. Today, Microsoft has released their monthly set of security bulletins designed to address security vulnerabilities within their products. This month's...
View ArticleClik here to view.
Vulnerability Spotlight: Local Denial of Service Bug in NVIDIA Windows Kernel...
Bugs are inevitable in complex systems and software. Operating systems and device drivers are prime examples where layers of abstraction help hide complexity and allow hardware and software to...
View ArticleClik here to view.
In the Eye of the Hailstorm
This blog post was authored by Jakob Dohrmann, David Rodriguez, and Jaeson Schultz.The Cisco Talos and Umbrella research teams are deploying a distributed hailstorm detection system which brings...
View ArticleClik here to view.
Vulnerabiity Spotlight: Tarantool Denial of Service Vulnerabilities
Vulnerabilities discovered by TalosTalos is disclosing two denial of service vulnerabilities (CVE-2016-9036 & CVE-2016-9037) in Tarantool. Tarantool is an open-source lua-based application server....
View ArticleClik here to view.
IEC 104 Protocol Detection Rules
IEC 60870-5-104 Protocol Detection RulesCisco Talos has released 33 Snort rules which are used to analyze/inspect IEC 60870-5-104 network traffic. These rules will help Industrial Control...
View ArticleClik here to view.
Cisco Coverage for 'GRIZZLY STEPPE'
Over the past several weeks, there have been ongoing discussions regarding cyber attacks that have occurred against several political, governmental, and private sector entities in the United States....
View ArticleClik here to view.
Microsoft Patch Tuesday - January 2017
Happy New Year to our readers! Today marks the first Patch Tuesday of 2017 with Microsoft releasing their monthly set of bulletins designed to address security vulnerabilities. This month's release is...
View Article