Security I Trust, Information Security, IT Security

Boots text message scam

November 1, 2019November 1, 2019 admin 0 Comments

Many people across Ireland are receiving text messages that claim they have come from Boots and that you have won

IT Security News

42 Apps 8 Million Downloads all part of an Adware campaign

October 25, 2019 admin 0 Comments

42 apps on the Google Play Store created by a Vietnamese university student were identified by a cybersecurity researchers as

Emerging Threats Info Research

Antivirus Evasion with Python

July 18, 2019 admin 0 Comments AV

When deploying defense in depth security controls for your organization, you are likely to include antiviruses as part of the

Hacking attack Info

Russian Bears Need Less Than 20 Minutes To Hack Your Data

February 22, 2019 admin 0 Comments

Russian bears lead the way when it comes to gaining enough of a foothold in your networks to perform a

IT Security News

Microsoft: Russia’s Fancy Bear Working to Influence EU Elections

February 22, 2019 admin 0 Comments

As hundreds of millions of Europeans prepare to go to the polls in May, Fancy Bear ramps up cyber-espionage and

Info IT Security News

Password Manager Firms Blast Back at ‘Leaky Password’ Revelations

February 22, 2019February 22, 2019 admin 0 Comments

1Password, Dashlane, KeePass and LastPass each downplay what researchers say is a flaw in how the utilities manage memory. Secure

Info IT Security News

AV-TEST Awards 2018 go to TrendMicro

February 22, 2019February 22, 2019 admin 0 Comments

Only the best IT protection solutions are contenders for the internationally recognized AV-TEST Awards. After all, with this award, the

IT Security News News

Cryptocurrency Exchange loses access to €130m in funds

February 5, 2019February 5, 2019 admin 0 Comments

Where is the safest place to store cryptocurrency has always been a debated issue, some say offline, others say online,

Info

Cryptomining Malware Uninstalls Cloud Security Products

January 23, 2019January 23, 2019 admin 0 Comments

New samples of cryptomining malware performs a never-before-seen function: uninstalling cloud security products. Researchers say they have discovered a unique

Info

Google Fined $57M in Largest GDPR Slap Yet

January 23, 2019January 23, 2019 admin 0 Comments

The French Data Protection Authority (DPA) found a lack of transparency when it comes to how Google harvests and uses

← Previous

January Patch Tuesday: Update List Includes Fixes for Internet Explorer, Remote Desktop, Cryptographic Bugs January 15, 2020
2020 starts off with a relatively heavy list of patches for Microsoft users. January is typically a light month for fixes, but Microsoft released patches for 49 vulnerabilities (eight of which are Critical and all the remaining classified as Important) in this cycle. None of these vulnerabilities are known to be under attack at this... […]
First Active Attack Exploiting CVE-2019-2215 Found on Google Play, Linked to SideWinder APT Group January 6, 2020
We found three malicious apps in the Google Play store that work together to compromise a victim’s device and collect user information. One of these apps, called Camero, exploits CVE-2019-2215, a vulnerability that exists in Binder (the main Inter-Process Communication system in Android). This is the first known active attack in the wild that uses […]
Looking into Attacks and Techniques Used Against WordPress Sites December 23, 2019
This blog post lists different kinds of attacks against WordPress, by way of payload examples we observed in the wild, and how attacks have used hacked admin access and API, Alfa-Shell deployment, and SEO poisoning to take advantage of vulnerable sites. The post Looking into Attacks and Techniques Used Against WordPress Sites appeared first on […]
Why Running a Privileged Container in Docker Is a Bad Idea December 20, 2019
In this blog post, we will explore how running a privileged yet unsecure container may allow cybercriminals to gain a backdoor in an organization’s system. The post Why Running a Privileged Container in Docker Is a Bad Idea appeared first on .
DDoS Attacks and IoT Exploits: New Activity from Momentum Botnet December 16, 2019
We found new details on the tools and techniques the Momentum botnet is currently using to compromise devices and perform distributed denial-of-service (DDoS) attacks, and propagate with numerous exploits. The post DDoS Attacks and IoT Exploits: New Activity from Momentum Botnet appeared first on .

Threat Roundup for January 10 to January 17 January 17, 2020
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 10 and Jan. 17. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics, indicators of compromise, and discussing how our customers are […]
Microsoft Patch Tuesday — Jan. 2020: Vulnerability disclosures and Snort coverage January 17, 2020
By Jon Munshaw.Updated January 15th: Added an Advanced Custom Detection (ACD) signature for AMP that can be used to detect exploitation of CVE-2020-0601 by spoofing certificates masquerading as a Microsoft ECC Code Signing Certificate Authority.Microsoft released its monthly security update today, disclosing vulnerabilities across many of its products and releasing corresponding updates. This month's Patch Tuesday […]
JhoneRAT: Cloud based python RAT targeting Middle Eastern countries January 17, 2020
By Warren Mercer, Paul Rascagneres and Vitor Ventura with contributions from Eric Kuhla.Updated January 17th: the documents do not exploit the CVE-2017-0199 vulnerability. Executive SummaryToday, Cisco Talos is unveiling the details of a new RAT we have identified we're calling "JhoneRAT." This new RAT is dropped to the victims via malicious Microsoft Office documents. The dropper, […]
Threat Source newsletter (Jan. 26, 2019) January 16, 2020
Newsletter compiled by Jon Munshaw.Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.This wasn’t your average Patch Tuesday. Microsoft’s monthly security update was notable for a few reasons. For starters, it’s really time to give up Windows 7, since this is […]
Beers with Talos Ep. #70: Semper Vigilantes - Strategic Defense in a Cyber Conflict January 16, 2020
By Mitch Neff.Beers with Talos (BWT) Podcast episode No. 70 is now available. Download this episode and subscribe to Beers with Talos:If iTunes and Google Play aren't your thing, click here.Recorded Jan. 6, 2020There is a looming cyber conflict on the horizon between the U.S. and Iran. We use all our time this week to discuss […]