Korea In The Crosshairs

Cisco Blog > Threat Research Threat Research This blog post is authored by Warren Mercer and Paul Rascagneres and with contributions from Jungsoo An. This article exposes the malicious activities of Group 123 during 2017. We assess with high confidence that Group 123 was responsible for the following six…

Cisco Application Centric Infrastructure (ACI) 2017-2018 Updates

Bookmark this blog! Future videos will be added.  Cisco ACI helps customers manage and excel in complex environments by increasing operational efficiencies, delivering network automation, and improving security for any combination of on-premises data centers, private, and public clouds. With ACI, customers can increase business…

Multiple Unpatched Vulnerabilities in Blender Identified

Cisco Blog > Threat Research Threat Research Technology has evolved in incredible ways that has helped people to create and visualize media like never before. Today, people can use tools such as Blender to visualize, model, and animate 3D content, especially since it’s free and…

Ruby Rails Gem XSS Vulnerabilities

Cisco Blog > Threat Research Threat Research Talos has discovered two XSS vulnerabilities in Ruby Rails Gems. Rails is a Ruby framework designed to create web services or web pages. Ruby Gems is a package manager for distributing software packages as ‘gems’. The two XSS…

Multiple Vulnerabilities in the CPP and Parity Ethereum Client

Cisco Blog > Threat Research Threat Research Talos is disclosing the presence of multiple vulnerabilities in the CPP and the Parity Ethereum clients. TALOS-2017-0503 / CVE-2017-14457 describes a denial of service vulnerability and potential memory leak in libevm. The function is not currently enabled in…

Threat Round Up for December 29 – January 5

Cisco Blog > Threat Research Threat Research Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between December 29 and January 05. As with previous round-ups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the…

Not So Crystal Clear – Zeus Variant Spoils Ukrainian Holiday

Cisco Blog > Threat Research Threat Research This post was authored by Edmund Brumaghin with contributions from Ben Baker, Dave Maynor and Matthew Molyett. Talos has observed a cyber attack which was launched using the official website of the Ukraine-based accounting software developer Crystal Finance Millennium (CFM). This vector is…

Technical reading from the Cloudflare blog for the holidays

During 2017 Cloudflare published 172 blog posts (including this one). If you need a distraction from the holiday festivities at this time of year here are some highlights from the year. CC BY 2.0 image by perzon seo The WireX Botnet: How Industry Collaboration Disrupted…

2018 and the Internet: our predictions

At the end of 2016, I wrote a blog post with seven predictions for 2017. Let’s start by reviewing how I did. Public Domain image by Michael Sharpe I’ll score myself with two points for being correct, one point for mostly right and zero for…

Copyright © 2018 NETWORKFIGHTS.COM