Vulnerabilities
Pair of Artifex MuPDF memory corruption vulnerabilities patched
If exploited, both could lead to arbitrary code executive, the company reported.
About SC Media
Your search for Talos returned 159 results
Vulnerabilities
IrfanView plug-in updated to fix arbitrary code execution flaw
The jpeg2000 (JP2) plug-in for the Windows-based image viewing and editing application IrfanView has been updated to address a vulnerability that can lead to arbitrary code execution, Cisco's Talos division has reported.
Cybercrime, Security News
74 Facebook groups for cybercriminals found
There are Facebooks groups for moms, people who like trains, or old photographs of Chicago so it should come as no surprise that cybercriminals also use the social media network to discuss what they like. Cisco Talos found 74 Facebook groups with more than 385,000 members with dedicated to acts ranging from shady to illegal.…
Vulnerabilities
Hack-It Ralph? Circle with Disney parental filter filled with exploitable flaws
A Disney-branded internet filter underwent automatic patching after researchers discovered multiple vulnerabilities that could have exposed users to cyberattacks, researchers from Talos have reported.
Cybercrime, Security News
Sextortion gang found to be behind email bomb threat spree
Cisco Talos believes it has tied a recent wave of emailed bomb threats to the same group that was conducting a sextortion campaign earlier this year, and revealed that most recent campaign was a financial bust for the malicious actors. A nationwide wave of bomb threat emails demanding a bitcoin payment to halt the explosion…
APTs/cyberespionage, Cybercrime, Security News
Sea Turtle DNS hijackers linked to breach of Greece’s ccTLD organization
Despite being publicly exposed earlier this year, the actors behind the malicious Sea Turtle DNS hijacking campaign continue to unabashedly rack up new victims, and apparently added a new technique to their repertoire, a new report states. The group made waves last April when researchers at Cisco’s Talos unit reported that the attackers have been…
Security News
Talos: 3.2 million machines vulnerable to malicious JexBoss exploit tool
A deeper probe into the JBoss server vulnerabilities linked to recent Samsam ransomware attacks has uncovered 3.2 million unpatched machines that are potentially susceptible to this attack vector.
Vulnerabilities
Patched Acrobat Reader heap overflow flaw could result in remote code execution
One of the vulnerabilities patched in Adobe's most recent software update was a flaw in the JPEG decoder and parser of Adobe Acrobat Reader, which could have been exploited to execute code remotely.
Malware
Gozi ISFB malware spreading more havoc in 2018
After monitoring the malware distributor for the past six months, Talos said in a blog post that Gozi ISFB remains active in 2018 leveraging a wider distribution surface in attack recent campaigns.
Network Security, Security News
Researchers disclose six privilege escalation bugs in Shimo VPN client
The Shimo VPN client for Mac systems contains six privilege escalation vulnerabilities that have yet to be patched by its developers, researchers from Cisco’s Talos division reported yesterday. Shimo is a product that allows users to connect multiple VPN accounts to a single application. Discovered by Cisco Labs researcher Tyler Bohan, all six flaws were…
Next post in Network Security
