logo

Cisco Talos

ID: 22bdb9b5-39e8-5994-8da9-62d9763af2f3

STIX ID: identity--22bdb9b5-39e8-5994-8da9-62d9763af2f3

Feed Type: rss

Earliest post: 2024-01-24

Latest post: 2026-07-14

Talos intelligence and world-class threat research team better protects you and your organization against known and emerging cybersecurity threats.

01/01/2020
07/15/2026
Title Date Published Describes IncidentAuthorVisible
Microsoft Patch Tuesday for July 2026 — Snort rules and prominent vulnerabilities2026-07-14TrueCisco TalosTrue
The serpent’s tongue: Luring the Python out of its den2026-07-14TrueOnur Mustafa ErdoganTrue
UAT-7810 continues building ORB networks using new malware2026-07-07TrueJungsoo AnTrue
Catan and Mouse2026-07-02TrueWilliam LargentTrue
ARToken: Inside an EvilTokens affiliate panel targeting Microsoft 3652026-07-01TrueMichael KelleyTrue
Beyond IOCs: AI-enabled threat intelligence2026-06-25TrueMartin LeeTrue
Introduction to COM usage by Windows threats2026-06-25TrueVanja SvajcerTrue
Close Encounters of the Human Kind2026-06-18TrueHazel BurtonTrue
A tale of two eras2026-06-11TrueAmy CiminnisiTrue
Microsoft Patch Tuesday for June 2026 — Snort rules and prominent vulnerabilities2026-06-09TrueChetan RaghuprasadTrue
Reporting from Vegas: Networking, AI, and good boys2026-06-04TrueJoe MarshallTrue
Hypotheses, telemetry, and human judgment: Inside Cisco Talos Threat Hunting2026-06-04TrueCisco TalosTrue
Less panic patching, more precision2026-05-28TrueThorsten RosendahlTrue
DICOM, Pydicom, GDCM, and Orthanc: A technical tour of what really happens in the heap2026-05-28TrueEmmanuel TacheauTrue
MediaArea heap-based buffer overflow vulnerabilities2026-05-27TrueKri DontjeTrue
The art of being ungovernable2026-05-21TrueWilliam LargentTrue
TP-Link, Photoshop, OpenVPN, Norton VPN vulnerabilities2026-05-19TrueKri DontjeTrue
From PDB strings to MaaS: Tracking a commodity BadIIS ecosystem used by Chinese-speaking threat2026-05-19TrueJoey ChenTrue
The time of much patching is coming2026-05-14TrueMartin LeeTrue
Ongoing exploitation of Cisco Catalyst SD-WAN vulnerabilities2026-05-14TrueCisco TalosTrue
Microsoft Patch Tuesday for May 2026 — Snort rules and prominent vulnerabilities2026-05-12TrueJaeson SchultzTrue
State-sponsored actors, better known as the friends you don’t want2026-05-12TrueElio BiasiottoTrue
Unplug your way to better code2026-05-07TrueAmy CiminnisiTrue
Insights into the clustering and reuse of phone numbers in scam emails2026-05-06TrueOmid MirzaeiTrue
UAT-8302 and its box full of malware2026-05-05TrueJungsoo AnTrue
CloudZ RAT potentially steals OTP messages using Pheno plugin2026-05-05TrueAlex KarkinsTrue
Great responsibility, without great power2026-04-30TrueHazel BurtonTrue
It pays to be a forever student2026-04-23TrueJoe MarshallTrue
UAT-4356's Targeting of Cisco Firepower Devices2026-04-23TrueCisco TalosTrue
IR Trends Q1 2026: Phishing reemerges as top initial access vector, as attacks targeting public administration persist2026-04-22TrueAliza JohnsonTrue
[Podcast] It's not you, it's your printer: State-sponsored and phishing threats in 20252026-04-21TrueAmy CiminnisiTrue
Phishing and MFA exploitation: Targeting the keys to the kingdom2026-04-21TrueKri DontjeTrue
Bad Apples: Weaponizing native macOS primitives for movement and execution2026-04-21TrueWilliam Charles GibsonTrue
Foxit, LibRaw vulnerabilities2026-04-16TrueKri DontjeTrue
The Q1 vulnerability pulse2026-04-16TrueThorsten RosendahlTrue
PowMix botnet targets Czech workforce2026-04-16TrueChetan RaghuprasadTrue
The n8n n8mare: How threat actors are misusing AI workflow automation2026-04-15TrueSean GallagherTrue
Microsoft Patch Tuesday for April 2026 - Snort Rule and Prominent Vulnerabilities2026-04-14TrueNick BiasiniTrue
State-sponsored threats: Different objectives, similar access paths2026-04-14TrueHazel BurtonTrue
[Video] The TTP Ep. 22: The Collapse of the Patch Window2026-04-10TrueHazel BurtonTrue
The threat hunter’s gambit2026-04-09TrueWilliam LargentTrue
From the field to the report and back again: How incident responders can use the Year in Review2026-04-09TrueJerzy ‘Yuri’ KramarzTrue
New Lua-based malware “LucidRook” observed in targeted attacks against Taiwanese organizations2026-04-08TrueAshley ShenTrue
The Trojan horse of cybercrime: Weaponizing SaaS notification pipelines2026-04-07TrueCisco TalosTrue
Year in Review: Vulnerabilities old and new and something React22026-04-07TrueKri DontjeTrue
Do not get high(jacked) off your own supply (chain)2026-04-03TrueDave LiebenbergTrue
Axios NPM supply chain incident2026-04-03TrueNick BiasiniTrue
The democratisation of business email compromise fraud2026-04-02TrueMartin LeeTrue
UAT-10608: Inside a large-scale automated credential harvesting operation targeting web applications2026-04-02TrueAsheer MalhotraTrue
Qilin EDR killer infection chain2026-04-02TrueTakahiro TakedaTrue

1–50 of 232