2024-08-20
How multiple vulnerabilities in Microsoft apps for macOS pave the way to stealing permissions https://blog.talosintelligence.com/ ... [image]
The Register
Cisco Talos says eight vulnerabilities in Microsoft's macOS apps could be abused by attackers to record video and sound from a device, log user input, and more
Windows giant tells Cisco Talos it isn't fixing them — Cisco Talos says eight vulnerabilities in Microsoft's macOS apps …
2023-10-17
Cisco has identified a critical vulnerability in the #IOSXE software. We urge customers to follow the guidance here https://blog.talosintelligence.com/ ... [image]
Ars Technica
Cisco says a zero-day flaw in its IOS XE software has been exploited in the wild since at least September 18; Shodan shows up to 80K devices could be affected
An unknown threat actor is exploiting the vulnerability to create admin accounts. — Cisco is urging customers to protect …
2023-08-27
#NorthKorea's Lazarus Group is back again, this time with two new remote access trojans. The attacker continues to use the same infrastructure, but is changing up their eventual payloads. More here: https://blog.talosintelligence.com/ ...
The Record
Cisco Talos: North Korea-backed Lazarus is using a new malware variant to target internet backbone infrastructure and health care entities in Europe and the US
Jonathan Greig / The Record :
Lazarus Group appears to be changing its tactics, increasingly relying on open-source tools and frameworks in the initial access phase of their attacks. We have a separate post up this morning on how that led us to the discovery of new #malware https://blog.talosintelligence.com/ ...
The Record
Cisco Talos: North Korea-backed Lazarus is using a new malware variant to target internet backbone infrastructure and health care entities in Europe and the US
Jonathan Greig / The Record :
2023-08-26
#NorthKorea's Lazarus Group is back again, this time with two new remote access trojans. The attacker continues to use the same infrastructure, but is changing up their eventual payloads. More here: https://blog.talosintelligence.com/ ...
The Record
Cisco Talos: North Korea's Lazarus is using a new malware variant to target internet backbone infrastructure and healthcare entities in Europe and the US
A notorious hacking group working on behalf of the North Korean government is using a new strain of malware to attack healthcare entities …
Lazarus Group appears to be changing its tactics, increasingly relying on open-source tools and frameworks in the initial access phase of their attacks. We have a separate post up this morning on how that led us to the discovery of new #malware https://blog.talosintelligence.com/ ...
The Record
Cisco Talos: North Korea's Lazarus is using a new malware variant to target internet backbone infrastructure and healthcare entities in Europe and the US
A notorious hacking group working on behalf of the North Korean government is using a new strain of malware to attack healthcare entities …
2023-04-20
A new state-sponsored campaign called “Jaguar Tooth” is part of a broader trend of adversaries targeting network infrastructure. Here is the latest information Talos has on these attacks and advice on protecting this infrastructure globally https://blog.talosintelligence.com/ ... https://twitter.com/...
BleepingComputer
The US, the UK, and Cisco warn Russian hacking group APT28 is deploying custom malware on Cisco IOS routers, allowing unauthenticated access to the devices
Lawrence Abrams / BleepingComputer :
2022-09-09
Continuing on our reporting on the #LazarusGroup, we also have new research out today on how this threat actor is using three different RATs to target users in the U.S., Canada and Japan https://blog.talosintelligence.com/ ... https://twitter.com/...
TechCrunch
Cisco Talos: the Lazarus group exploited the Log4j flaw in VMware Horizon servers of energy providers in the US, Canada, and Japan from February to July 2022
Security researchers have linked a new cyber espionage campaign targeting U.S., Canadian and Japanese energy providers …
Continuing on our reporting on the #LazarusGroup, we also have new research out today on how this threat actor is using three different RATs to target users in the U.S., Canada and Japan https://blog.talosintelligence.com/ ... https://twitter.com/...
CoinDesk
Chainalysis says it helped the US government recover about $30M stolen from Axie Infinity by the North Korea-linked hackers Lazarus Group earlier in 2022
2021-11-25
We are releasing new @snort coverage for a #zeroday #Microsoft #Windows Installer vulnerability that attackers are exploiting in the wild to gain admin privileges https://cs.co/... https://twitter.com/...
BleepingComputer
A Windows 10 and Windows 11 exploit allows an attacker with physical access to gain SYSTEM privileges, bypassing Microsoft's patch from earlier this month
Hackers Exploiting New Windows Installer Zero-Day Exploit in the Wild Brittany A. Roston / SlashGear : All Windows PCs at risk after Microsoft fails to fix zero-day exploit Elizabe...
2021-04-30
#Ransomware is not just financial extortion. It is crime that transcends business, academic and geographic boundaries. Talos was proud to assist with this #RansomwareTaskForce report that provides a path forward to mitigate this criminal enterprise https://cs.co/... https://twitter.com/...
Washington Post
A task force of 60+ experts from industry, government, nonprofits, and academia calls on the US and allies to take steps to fight a surge in ransomware attacks
the Secret Weapon to Combatting Ransomware Danny Palmer / ZDNet : Ransomware is now a national security risk. This group thinks it knows how to defeat it Duncan Riley / SiliconANG...