Cisco Talos Blog

March 5, 2024 15:30

Badgerboard: A PLC backplane network visibility module

Analysis of the traffic between networked devices has always been of interest since devices could even communicate with one another.  As the complexity of networks grew, the more useful dedicated traffic analysis tools became. Major advancements have been made over the years wit

January 18, 2024 08:00

Exploring malicious Windows drivers (Part 1): Introduction to the kernel and drivers

Malicious drivers are difficult to detect and successfully leveraging one can give an attacker full access to a system.

December 19, 2023 08:00

Year in Malware 2023: Recapping the major cybersecurity stories of the past year

Relive Talos' top stories from the past year as we recap the top malware and other threats that came our way.

October 9, 2023 08:00

How looking at decades of spam led Jaeson Schultz from Y2K to the metaverse and cryptocurrency

“I’m completely interested in the creative ways computers can break down,” Schultz jokes.

September 11, 2023 08:00

You can try to hide your firmware from Kelly Patterson, but she’ll find it (and break it)

Patterson and her teammates are responsible for helping to disclose and patch more than 200 security vulnerabilities a year, some of which affect devices used in thousands of households around the world.

August 3, 2023 08:00

Half-Year in Review: Recapping the top threats and security trends so far in 2023

We've seen threat actors utilize every chance they get to steal sensitive data, to be used in future attacks and/or to manipulate victims into paying up before their data ends up on the dark web.

June 29, 2023 08:00

How Talos IR’s Purple Team can help you prepare for the worst-case scenario

A Purple Team exercise is a collaborative approach between offensive (Red) teams and defensive (Blue) teams.

May 8, 2023 08:00

Researcher Spotlight: Jacob Finn creates his own public-private partnership at Talos

Today, Finn combs through Talos’ various intelligence sources, open-source research, partner resources, and Cisco product telemetry to track major attacker trends and emerging threats.

March 13, 2023 08:00

Researcher Spotlight: How David Liebenberg went from never having opened Terminal to hunting international APTs

When Dave Liebenberg started his first day at Talos, he had never even opened Terminal on a Mac before — let alone written a Snort rule or infiltrated a dark web forum.