Category: Cisco Talos Blog

Hazel reflects on how to find balance while staying informed, then delivers practical updates and insights on the latest cybersecurity threats. This article has been indexed from Cisco Talos Blog Read the original article: I’m locked in!

Read more →

Microsoft has published three out-of-band (OOB) updates so far in January 2026. One of these updates was released to address a vulnerability, CVE-2026-21509, affecting Microsoft Office that has been reportedly exploited in the wild. This article has been indexed from Cisco Talos Blog Read…

Read more →

A drop in exploitation and ransomware, but a spike in phishing and credential abuse, show why timely patching and robust MFA matter more than ever. This article has been indexed from Cisco Talos Blog Read the original article: IR Trends…

Read more →

Cisco Talos has identified a new, regionally targeted campaign by UAT-8099 that leverages advanced persistence techniques and custom BadIIS malware variants to compromise IIS servers, particularly in Thailand and Vietnam. This article has been indexed from Cisco Talos Blog Read…

Read more →

In this week’s newsletter, Bill hammers home the old adage, “Know your environment” — even throughout alert fatigue. This article has been indexed from Cisco Talos Blog Read the original article: I scan, you scan, we all scan for… knowledge?

Read more →

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed three vulnerabilities in Foxit PDF Editor, one in the Epic Games Store, and twenty-one in MedDream PACS.. The vulnerabilities mentioned in this blog post have been patched by their respective vendors,…

Read more →

In this week’s newsletter, Martin examines the evolving landscape for 2026, highlighting key threats, emerging trends like AI-driven risks, and the continued importance of addressing familiar vulnerabilities. This article has been indexed from Cisco Talos Blog Read the original article:…

Read more →

Cisco Talos is closely tracking UAT-8837, a threat actor we assess with medium confidence is a China-nexus advanced persistent threat (APT) actor. This article has been indexed from Cisco Talos Blog Read the original article: UAT-8837 targets critical infrastructure sectors…

Read more →

Terryn’s path to cybersecurity started with a fascination for criminal forensics and a knack for jailbreaking his family’s tech — interests that eventually steered him toward the fast-paced world of digital investigations. This article has been indexed from Cisco Talos…

Read more →

Microsoft has released its monthly security update for January 2026, which includes 112 vulnerabilities affecting a range of products, including 8 that Microsoft marked as “critical”. This article has been indexed from Cisco Talos Blog Read the original article: Microsoft Patch Tuesday for January…

Read more →

Talos’ editor ditches the pressure of traditional New Year’s resolutions in favor of practical, in-the-moment changes, and finds more success by letting go of perfection. Plus, we break down the latest on UAT-7290, a newly disclosed threat actor targeting critical…

Read more →

Talos assesses with high confidence that UAT-7290 is a sophisticated threat actor falling under the China-nexus of Advanced Persistent Threat actors (APTs). UAT-7290 primarily targets telecommunications providers in South Asia. This article has been indexed from Cisco Talos Blog Read…

Read more →

What happens under the hood of Cisco’s security portfolio? Our reputation and detection services apply Talos’ real-time intelligence to detect and block threats. Here’s how. This article has been indexed from Cisco Talos Blog Read the original article: How Cisco…

Read more →

This week, Joe laments on 2025, and what we can think of in 2026 in the wild world of cybersecurity. This article has been indexed from Cisco Talos Blog Read the original article: Adios 2025, you won’t be missed

Read more →

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed vulnerabilities in Biosig Project Libbiosig, Grassroot DiCoM, and Smallstep step-ca. The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco’s third-party vulnerability…

Read more →

Cisco Talos is tracking the active targeting of Cisco AsyncOS Software for Cisco Secure Email Gateway, formerly known as Cisco Email Security Appliance (ESA), and Cisco Secure Email and Web Manager, formerly known as Cisco Content Security Management Appliance (SMA).…

Read more →

Lexi DiScola shares how her unconventional path led her to global cyber threat analysis and highlights the power of diverse backgrounds on an international team This article has been indexed from Cisco Talos Blog Read the original article: Lexi DiScola’s…

Read more →

Hazel embarks on a creative fitness journey, virtually crossing Middle-earth via The Conqueror app while sharing key cybersecurity insights. This article has been indexed from Cisco Talos Blog Read the original article: One newsletter to rule them all

Read more →

The Patch Tuesday for December of 2025 includes 57 vulnerabilities, including two that Microsoft marked as “critical.” The remaining vulnerabilities listed are classified as “important.” Microsoft assessed that exploitation of the two “critical” vulnerabilities is “less likely.” This article has…

Read more →

Cisco Talos has uncovered a new DeadLock ransomware campaign using a previously unknown BYOVD loader to exploit a Baidu Antivirus driver vulnerability, letting threat actors disable EDR defenses and escalate attacks. This article has been indexed from Cisco Talos Blog…

Read more →