Tag: Cisco Talos Blog

The 2025 Talos Year in Review is available now. Understand evolving adversary playbooks and how to strengthen your organization’s defenses. This article has been indexed from Cisco Talos Blog Read the original article: 2025 Talos Year in Review: Speed, scale,…

Read more →

The Beers with Talos team unpack the biggest cybersecurity threats of 2025, from React2Shell to ransomware and identity abuse, and what it all means for defenders going forward. This article has been indexed from Cisco Talos Blog Read the original…

Read more →

The Beers with Talos team unpack the biggest cybersecurity threats of 2025, from React2Shell to ransomware and identity abuse, and what it all means for defenders going forward. This article has been indexed from Cisco Talos Blog Read the original…

Read more →

The 2025 Talos Year in Review is available now. Understand evolving adversary playbooks and how to strengthen your organization’s defenses. This article has been indexed from Cisco Talos Blog Read the original article: 2025 Talos Year in Review: Speed, scale,…

Read more →

While a garlic and wooden stakes keep the vampires at bay in movies, they won’t save your network once an attacker has been “invited in.” Discover why identity is the new frontier of cyber horror in this week’s edition. This…

Read more →

Attackers use trusted tools for data theft, making traditional detection unreliable. The Exfiltration Framework enables defenders to spot exfiltration by focusing on behavioral signals across endpoints, networks, and cloud environments rather than static tool indicators. This article has been indexed…

Read more →

In this article, Cisco Talos presents DispatchLogger, a new open-source tool that delivers high visibility into late-bound IDispatch COM object interactions via transparent proxy interception. This article has been indexed from Cisco Talos Blog Read the original article: Transparent COM instrumentation for malware analysis

Read more →

This week, Joe talks about allyship and how being aware of an issue is the first step in helping to fix it. This article has been indexed from Cisco Talos Blog Read the original article: This one’s for you, Mom

Read more →

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed vulnerabilities in the BioSig Project Libbiosig library and OpenCFD OpenFOAM, as well as an unpatched vulnerability in Microsoft DirectX. The vulnerabilities mentioned in this blog post have been patched by their…

Read more →

The episode features Kri Dontje discussing her role in translating complex technical cybersecurity topics into clear, accessible documentation, emphasizing the importance of consistency, accuracy, and collaboration with subject matter experts. This article has been indexed from Cisco Talos Blog Read…

Read more →

There are many benefits and security risks of deploying agentic AI within organizations. This blog emphasizes the importance of robust risk management and threat modeling to defend against both internal operational errors and potential malicious exploitation. This article has been…

Read more →

Microsoft has released its monthly security update for March 2026 which includes 79 vulnerabilities, including three that Microsoft marked as “critical.” This article has been indexed from Cisco Talos Blog Read the original article: Microsoft Patch Tuesday for March 2026 — Snort rules and prominent vulnerabilities

Read more →

Thor analyzes CVE data from 2025 and provides recommendations for where and how organizations should strengthen their defenses. This article has been indexed from Cisco Talos Blog Read the original article: Patch, track, repeat: The 2025 CVE retrospective

Read more →

Cisco Talos is disclosing UAT-9244, who we assess with high confidence is a China-nexus advanced persistent threat (APT) actor closely associated with Famous Sparrow. This article has been indexed from Cisco Talos Blog Read the original article: UAT-9244 targets South…

Read more →

Cisco Talos continues to monitor the ongoing conflict in the Middle East. As always, we will be watching closely for any cyber-related incidents that are tied to the conflict. This article has been indexed from Cisco Talos Blog Read the…

Read more →

In this edition of the Threat Source newsletter, William draws parallels between Shakespeare’s Hotspur and the challenges of cybersecurity and AI, emphasizing the importance of risk-taking, learning from failure, and surrounding yourself with smart people. This article has been indexed…

Read more →

Cisco Talos discovered an ongoing malicious campaign since at least as early as December 2025 by a threat actor we track as “UAT-10027,” delivering a previously undisclosed backdoor dubbed “Dohdoor.” This article has been indexed from Cisco Talos Blog Read…

Read more →

Cisco Talos is tracking the active exploitation of CVE-2026-20127, a vulnerability in Cisco Catalyst SD-WAN Controller, formerly vSmart, that allows an unauthenticated remote attacker to bypass authentication and obtain administrative privileges. This article has been indexed from Cisco Talos Blog…

Read more →

In this week’s newsletter Martin considers how defenders can turn offensive AI tools against themselves. This article has been indexed from Cisco Talos Blog Read the original article: Using AI to defeat AI

Read more →

A Talos researcher used targeted emulation of the Socomec DIRIS M-70 gateway’s Modbus thread to uncover six patched vulnerabilities, showcasing efficient tools and methods for IoT security testing. This article has been indexed from Cisco Talos Blog Read the original…

Read more →