TalosSecurity

mttaggart, 1 month ago to random

Nice writeup by @TalosSecurity on a Chinese APT campaign using two new 0-days, and an unknown initial access vector.

We have not determined the initial access vector used in this campaign. We have not identified evidence of pre-authentication exploitation to date. Our investigation is ongoing, and we will provide updates, if necessary, in the security advisories or on this blog.

Well...yikes!

blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices/

xabean, 6 months ago to random

It's an AMA on Reddit with @TalosSecurity ! https://old.reddit.com/r/cybersecurity/comments/18gmjs8/we_are_cisco_talos_and_we_just_released_our_2023/

I am not behind the keyboard on this one, but if you ever wanted to ask Talos something, here's your opportunity.

CAPETOK, 7 months ago to android Spanish

Arid Viper disfraza software espía móvil como actualizaciones para aplicaciones de Android no maliciosas #MobileSecurity #Android #Seguridad

@TalosSecurity

https://blog.talosintelligence.com/arid-viper-mobile-spyware/

HexRaysSA, 8 months ago to random

Ghida performed really well in September, but we have a new leader! A big shout-out to tidy 👏 That’s how you make an entrance 🙌 Could you do better? Publish your #plugin on our #PluginRepository, and win a cool cap 🌐https://hex-rays.com/blog/the-plugin-submission-initiative/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=plugin-submission-initiative-04

#PluginRoundup #IDAPro #IDAPython
@thalium_team @TalosSecurity

TalosSecurity, 8 months ago to random

We recently discovered a new malware family we’re calling “HTTPSnoop” being deployed against telecommunications providers in the Middle East. This is part of a set of new backdoors and all link back to the same previously unknown group https://blog.talosintelligence.com/introducing-shrouded-snooper/

adamhotep, 9 months ago to random

Fun with #DNS: we registered a domain we shouldn't have been able to get and were inundated with automated and erroneous connections and emails. (My second @TalosSecurity blog post!)
https://blog.talosintelligence.com/whats-in-a-name/

VirusBulletin, 9 months ago to random

At #VB2023, @TalosSecurity's Chetan Raghuprasad will discuss a campaign in which a less sophisticated threat actor deploys ransomware and clipper malware to steal cryptocurrencies. Register now to join us in London! https://www.virusbulletin.com/conference/vb2023/abstracts/ransoming-and-clipping-illicit-cryptocurrency-gains/

HexRaysSA, 9 months ago to random

Ghida kept its leading position in August 🤩 Would that be the case in September 🤔 Publish your #plugin on our #PluginRepository, win a cool cap, and get in the game 🌐https://hex-rays.com/blog/the-plugin-submission-initiative/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=plugin-submission-initiative-03

#IDAPlugin #PluginRoundup #IDAPro #IDAPython @TalosSecurity @mandiant

TalosSecurity, 10 months ago to random

From new ransomware groups, a growing mercenary space, espionage campaigns, supply chain attacks, and new “as a service” tools popping up, there's a lot to talk about already in the first half of 2023. Get caught up on the top stories of the year so far with our Mid-Year in Review

https://blog.talosintelligence.com/half-year-in-review-2023/

TalosSecurity, 10 months ago to random

Since #VPNFilter several years ago, our vulnerability research team had a renewed focus on researching issues in popular wireless routers. Over the past four-plus years, we've helped disclose and patch more than 280 CVEs. Here's a rundown of the major issues we found and other lessons learned for users and hardware manufacturers https://blog.talosintelligence.com/router-researcher-vulnerability-spotlight-23/