Articles
Threat Round Up for April 27 to May 04
Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between April 27 and May 4. As with previous roundups, this post isn’t meant to be an in-depth analysis. We’ll summarize the threats we’ve observed by highlighting key behavioral characteristi…
Talos Threat Round Up for April 20-27
Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between April 06 and April 13. As with previous round-ups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavior…
GravityRAT – The Two-Year Evolution Of An APT Targeting India
This blog post is authored by Warren Mercer and Paul Rascagneres. Summary Today, Cisco Talos is uncovering a new piece of malware, which has remained under the radar for the past two years while it continues to be developed. Several weeks ago, we identified the use of the latest version of this RAT…
Vulnerability Spotlight: Hyland Perceptive Document Filters Multiple Vulnerabilites
Vulnerabilities discovered by Marcin ‘Icewall’ Noga from Talos Overview Talos has discovered multiple vulnerabilities in Hyland Perceptive Document Filters software. This software is a toolkit that allows developers to read and extract metadata from a file. It supports a large set of com…
Cryptomining Campaign Returns Coal and Not Diamond
Soon after a launch of a new cryptocurrency, Bitvote, in January, Talos discovered a new mining campaign affecting systems in India, Indonesia, Vietnam and several other countries that was tied to Bitvote. Apart from the fact that the attackers have chosen to target the new bitcoin fork in order to…
Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
Overview Talos is disclosing five vulnerabilities in Foxit PDF Reader. Foxit PDF Reader is a popular free program for viewing, creating, and editing PDF documents. It is commonly used as an alternative to Adobe Acrobat Reader and has a widely used browser plugin available. Details Read More >>…
Updates for BASS
This blog post was authored by Jonas Zaddach and Mariano Graziano. Cisco Talos has rolled out a series of improvements to the BASS open-source framework aimed at speeding up its ability to provide coverage for new malware families. Talos released BASS, (pronounced “bæs”) an open-source f…
Vulnerability Spotlight: Foscam IP Video Camera Firmware Recovery Unsigned Image Vulnerability
This vulnerability was discovered by Claudio Bozzato of Cisco Talos. Executive Summary The Foscam C1 Indoor HD Camera is a network-based camera that is marketed for a variety of uses, including as a home security monitoring device. Talos recently identified 32 vulnerabilities present in these device…
Talos Threat Round Up for April 06-13
Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between April 06 and April 13. As with previous round-ups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavior…
2