RSS und Atom Feed Reader Online

a coffee for RSS und Atom Feed Reader OnlineBuy me a coffee
Spenden / Donate for RSS und Atom Feed Reader OnlineSpenden / Donate

Cisco Talos Blog

Talos intelligence and world-class threat research team better protects you and your organization against known and emerging cybersecurity threats.
Feed Art ist RSS / Codierung: UTF-8 / Ihr Feed enthält 15 Feed Objekte / Copyright: n/a

A tale of two eras

In this week’s newsletter, Amy reminisces on the tech toys of their childhood, inspired by a hilarious lesson about why your digital privacy shouldn't be left on an open channel.
Veröffentlicht am 11.06.2026 um 20:00:49 Uhr - Kategorie: Threat Source newsletter - Autor: Amy Ciminnisi

Microsoft Patch Tuesday for June 2026 — Snort rules and prominent vulnerabilities

Microsoft Patch Tuesday details for June 2026.
Veröffentlicht am 09.06.2026 um 23:21:00 Uhr - Kategorie: Patch Tuesday - Autor: Chetan Raghuprasad

Reporting from Vegas: Networking, AI, and good boys

Joe’s on-the-ground report from Cisco Live U.S. is here, complete with therapy dog pictures and tips on handling conference overstimulation.
Veröffentlicht am 04.06.2026 um 20:00:59 Uhr - Kategorie: Threat Source newsletter - Autor: Joe Marshall

Winning the cyber marathon with Tony Giandomenico

Tony Giandomenico, Senior Director of Product Management, joins Amy to discuss the Talos Threat Hunting launch what he's excited about for the future of cybersecurity, and, of course, his Ironman triathlons.
Veröffentlicht am 04.06.2026 um 14:05:31 Uhr - Kategorie: Humans of Talos - Autor: Amy Ciminnisi

Hypotheses, telemetry, and human judgment: Inside Cisco Talos Threat Hunting

Learn how Cisco Talos Threat Hunting uses hypothesis-driven methods and multi-domain telemetry correlation to find stealthy threats operating below automated detection thresholds.
Veröffentlicht am 04.06.2026 um 14:05:05 Uhr - Kategorie: Headlines - Autor: Cisco Talos

Less panic patching, more precision

In this newsletter, Thor breaks down why you should stop relying solely on CVSS and start using EPSS and GCVE to focus your patching efforts on the threats that actually matter.
Veröffentlicht am 28.05.2026 um 20:00:27 Uhr - Kategorie: Threat Source newsletter - Autor: Thorsten Rosendahl

DICOM, Pydicom, GDCM, and Orthanc: A technical tour of what really happens in the heap

This white paper presents a concrete case study demonstrating the creation of a heap overflow vulnerability through the exploitation of the DICOM file format.
Veröffentlicht am 28.05.2026 um 12:00:52 Uhr - Kategorie: Vulnerability Deep Dive - Autor: Emmanuel Tacheau

MediaArea heap-based buffer overflow vulnerabilities

Talos researchers find 4 heap-based buffer overflow vulnerabilities in MediaArea's MediaInfoLib.
Veröffentlicht am 27.05.2026 um 16:00:14 Uhr - Kategorie: Vulnerability Roundup - Autor: Kri Dontje

Introducing EvidenceForge: Synthetic security logs that don’t look (as) fake

EvidenceForge generates high-quality, realistic, and consistent datasets across multiple log formats, enabling teams to effectively train personnel and validate detection models without the need for complex manual simulations.
Veröffentlicht am 27.05.2026 um 12:00:47 Uhr - Kategorie: Tool Talk - Autor: David J. Bianco

The art of being ungovernable

In this edition of the Threat Source newsletter, William explores the value of being "ungovernable" in a professional setting, sharing how challenging the status quo and seeking out the smartest people in the room can lead to a more fulfilling and successful career.
Veröffentlicht am 21.05.2026 um 20:00:14 Uhr - Kategorie: Threat Source newsletter - Autor: William Largent

TP-Link, Photoshop, OpenVPN, Norton VPN vulnerabilities

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed eight vulnerabilities in TP-Link, and one each in Adobe Photoshop, OpenVPN, and Gen Digital's Norton VPN.
Veröffentlicht am 19.05.2026 um 17:39:37 Uhr - Kategorie: Vulnerability Roundup - Autor: Kri Dontje

From PDB strings to MaaS: Tracking a commodity BadIIS ecosystem used by Chinese-speaking threat

Cisco Talos has uncovered a BadIIS variant — identifiable by its embedded "demo.pdb" strings — that functions as commodity malware, likely sold or shared among multiple Chinese-speaking cyber crime groups operating under a malware-as-a-service (MaaS) model for continuous monetization.
Veröffentlicht am 19.05.2026 um 12:00:20 Uhr - Kategorie: Threat Spotlight - Autor: Joey Chen

The time of much patching is coming

In this week’s newsletter, Martin reflects on what the next iteration of AI tools means for vulnerability discovery and our ability to manage large-scale patch releases.
Veröffentlicht am 14.05.2026 um 20:00:24 Uhr - Kategorie: Threat Source newsletter - Autor: Martin Lee

Ongoing exploitation of Cisco Catalyst SD-WAN vulnerabilities

Cisco Talos is tracking the active exploitation of CVE-2026-20182, an authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage.
Veröffentlicht am 14.05.2026 um 18:02:36 Uhr - Kategorie: Threat Advisory - Autor: Cisco Talos

Breaking things to keep them safe with Philippe Laulheret

Philippe shares his unique journey from French engineering school to the front lines of cybersecurity, explaining how his lifelong love for solving puzzles helps him uncover critical security flaws before they can be exploited.
Veröffentlicht am 13.05.2026 um 12:00:54 Uhr - Kategorie: Humans of Talos - Autor: Amy Ciminnisi