Threat Roundup for October 19-26

By Talos Group Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we’ve observed this week — covering the dates between Oct. 19 and 26.

Source:: Cisco Security Notice

Vulnerability Spotlight: Talos-2018-0694 – MKVToolNix mkvinfo read_one_element Code Execution Vulnerability

By Talos Group Piotr Bania, Cory Duplantis and Martin Zeiser of Cisco Talos discovered this vulnerability. Today, Cisco Talos is disclosing a vulnerability that we identified in the MKVToolNix mkvinfo utility that parses

Source:: Cisco Security Notice

Layers of Security

By Ken Daniels Do you remember the movie “Die Hard”? Arguably the best Christmas movie ever. All kidding aside, this movie has a great correlation into Security best practices.

Source:: Cisco Security Notice

Vulnerability Spotlight: TALOS-2018-0635/0636 – Sophos HitmanPro.Alert memory disclosure and code execution vulnerabilities

By Talos Group Overview Cisco Talos is disclosing two vulnerabilities in Sophos HitmanPro.Alert, a malware detection and protection tool. Both vulnerabilities lie in the input/output control (IOCTL) message handler. One could allow an

Source:: Cisco Security Notice

Tackling the Growing Threat Landscape of ICS and the IIoT

By Edna Conway It is no secret that the proliferation of connected devices and sensors has introduced new and growing security challenges across every industry and enterprise.

Source:: Cisco Security Notice

Using Threat Intelligence Effectively in Security Automation and Orchestration with DFLabs and Cisco Security

By Jessica Bair When a security incident occurs, it is unlikely that the entire scope and chain of events will be obvious from the outset.

Source:: Cisco Security Notice

War Games: A WOPR of a Security Test (part 1)

By Tim (Wadhwa-)Brown In what was an interesting change to the usual technical and risk/compliance focused consultancy, the Team carried out a War Games exercise – similar to a „Red Team“ engagement.

Source:: Cisco Security Notice

Threat Roundup for October 12-19

By Talos Group Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we’ve observed this week — covering the dates between Oct. 12 and 19.

Source:: Cisco Security Notice

Tracking Tick Through Recent Campaigns Targeting East Asia

By Talos Group Since 2016, an advanced threat group that Cisco Talos is tracking has carried out cyberattacks against South Korea and Japan. This group is known by several different names: Tick, Redbaldknight

Source:: Cisco Security Notice

Vulnerability Spotlight: Live Networks LIVE555 streaming media RTSPServer code execution vulnerability

By Talos Group These vulnerabilities were discovered by Lilith Wyatt of Cisco Talos. Cisco Talos is disclosing a code execution vulnerability that has been identified in Live Networks LIVE555 streaming media RTSPServer. LIVE555

Source:: Cisco Security Notice