Hot Topics

Cisco Talos

‘Predator’ — Nasty Android Spyware Revealed

‘Predator’ — Nasty Android Spyware Revealed

| | android spyware, Cisco Talos, Cytrox, Intellexa, iOS spyware, nation-state, SB Blogwatch, spyware, Talos
Intellexa mercenary spyware chains five unpatched bugs—plus ‘Alien’ technology ...
Security Boulevard
Wormable Flaw, 0days Lead Sept. 2022 Patch Tuesday

Wormable Flaw, 0days Lead Sept. 2022 Patch Tuesday

| | Asheer Malhotra, Cisco Talos, Dustin Childs, iOS 16, Jon Munshaw, Kevin Breen, Lily Hay Newman, Lockdown Mode, Microsoft Patch Tuesday September 2022, Pangu Lab, Safety Check, Satnam Narang, Security Tools, Time to Patch, Trend Micro, Xinru Chi
This month's Patch Tuesday offers a little something for everyone, including security updates for a zero-day flaw in Microsoft Windows that is under active attack, and another Windows weakness experts say could ...
Krebs on Security
Wazawaka responds.

Wazawaka Goes Waka Waka

| | A Little Sunshine, Babuk, Babuk ransomware, Biba99, Boriselcin, Cisco Talos, CVE-2021-20028, Dmitry Smilyanets, Groove ransom, Mikhail Pavlovich Matveev, Ne'er-Do-Well News, Orange, RaidForums, RAMP, Ransomware, SonicWall VPN, [email protected], ToX, Verified, Washington Metropolitan Police Department, Wazawaka
In January, KrebsOnSecurity examined clues left behind by "Wazawaka," the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. Wazawaka has since "lost his mind" according to his ...
Krebs on Security
Getting the most out of your NIDS

Getting the most out of your NIDS

| | Cisco Talos, CMDB, CVE, dns, HTTPS, ids, IOC, NDR, network security monitoring, NIDS, NTA, OPEN ruleset, Proofpoint Emerging Threats, ServiceNow, SOAR, SOC, Suricata, Windows Server, Zeek
By Jon Natkins, Product Manager, Corelight Network Intrusion Detection Systems (NIDS) are widely deployed by the most sophisticated blue teams in the world. For well-funded organizations, there is little question about the ...
Bright Ideas Blog
Is ‘REvil’ the New GandCrab Ransomware?

Is ‘REvil’ the New GandCrab Ransomware?

| | Cisco Talos, gandcrab, Intel471, Kaspersky Lab, Ne'er-Do-Well News, rEvil, Sodin, Sodinokibi, Tesorion, The Coming Storm
The cybercriminals behind the GandCrab ransomware-as-a-service (RaaS) offering recently announced they were closing up shop and retiring after having allegedly earned more than $2 billion in extortion payments from victims. But a ...
Krebs on Security
A Year Later, Cybercrime Groups Still Rampant on Facebook

A Year Later, Cybercrime Groups Still Rampant on Facebook

| | A Little Sunshine, Cisco Talos, cybercrime groups, facebook, Latest Warnings, Ne'er-Do-Well News, Privacy, security, UpGuard
Almost exactly one year ago, KrebsOnSecurity reported that a mere two hours of searching turned up more than 100 Facebook groups with some 300,000 members openly advertising services to support all types ...
Krebs on Security
A Deep Dive on the Recent Widespread DNS Hijacking Attacks

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

| | A Little Sunshine, APNIC, Bill Woodcock, Cisco Talos, Comodo, CrowdStrike, Data breaches, DHS, DNSpionage, DNSSEC, EPP, extensible provisioning protocol, Farsight Security, fireeye, Frobbit, ICANN, John Crain, Key Systems, Lars Michael Jogbäck, LetsEncrypt, Netnod, Packet Clearing House, Patrik Fältström, PCH, SecurityTrails, The Coming Storm, U.S. Department of Homeland Security
The U.S. government — along with a number of leading security companies — recently warned about a series of highly complex and widespread attacks that allowed suspected Iranian hackers to siphon huge ...
Krebs on Security
Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

| | A Little Sunshine, Amazon Web Services, Cisco Talos, Digital Ocean, dns, GoDaddy, google cloud, Matthew Bryant, mozilla firefox, Mozilla Foundation, Ron Guilmette, Spammy Bear, The Coming Storm, Web Fraud 2.0
Two of the most disruptive and widely-received spam email campaigns over the past few months -- including an ongoing sextortion email scam and a bomb threat hoax that shut down dozens of ...
Krebs on Security
Facebook

The Shared Security Podcast Weekly Blaze – Real-time Location Tracking, VPNFilter Router Malware, Apple’s GDPR Updates

| | Apple, Cisco Talos, GDPR, Hacking, LocationSmart, Malware, Podcast Episodes, Privacy, Routers, Survaillance, VPNFilter, Weekly Blaze Podcast, wifi
This is the Shared Security Weekly Blaze for May 28, 2018 sponsored by Security Perspectives – Your Source for Tailored Security Awareness Training and Assessment Solutions, Silent Pocket and CISOBox. This episode ...
Shared Security