News

When Does Software Start Becoming Malware?
When Does Software Start Becoming Malware?
This post was authored by Earl Carter, Alex Chiu, Joel Esler, Geoff Serrao, and Brandon Stultz. Defining what is malware relies on determining when
Sept. 15, 2015
Microsoft Patch Tuesday – September 2015
Microsoft Patch Tuesday – September 2015
Today, Microsoft has released their monthly set of security bulletins designed to address security vulnerabilities within their products. This month’s
Sept. 8, 2015
Malware Meets SysAdmin – Automation Tools Gone Bad
Malware Meets SysAdmin – Automation Tools Gone Bad
This post was authored by Alex Chiu and Xabier Ugarte Pedrero. Talos recently spotted a targeted phishing attack with several unique characteristics that
Aug. 25, 2015
Microsoft Patch Tuesday – August 2015
Microsoft Patch Tuesday – August 2015
Microsoft has released their monthly set of security bulletins designed to address security vulnerabilities within their products. This month’s release
Aug. 11, 2015
Research Spotlight: Detecting Algorithmically Generated Domains
Research Spotlight: Detecting Algorithmically Generated Domains
This post was authored by Mahdi Namazifar and Yuxi Pan Once a piece of malware has been successfully installed on a vulnerable system one of the first
Aug. 8, 2015
Your Files Are Encrypted with a “Windows 10 Upgrade”
Your Files Are Encrypted with a “Windows 10 Upgrade”
This post was authored by Nick Biasini with contributions from Craig Williams & Alex Chiu Update 8/1: To see a video of this threat in action
July 31, 2015
Microsoft Patch Tuesday – July 2015
Microsoft Patch Tuesday – July 2015
Today, Microsoft has released their monthly set of security bulletins designed to address security vulnerabilities within their products. This month’s
July 14, 2015
Ding! Your RAT has been delivered
Ding! Your RAT has been delivered
This post was authored by Nick Biasini Talos is constantly observing malicious spam campaigns delivering various different types of payloads. Common
July 8, 2015
Hook, Line & Sinker: Catching Unsuspecting Users Off Guard
Hook, Line & Sinker: Catching Unsuspecting Users Off Guard
This post was authored by Earl Carter. Attackers are constantly looking for ways to monetize their malicious activity. In many instances this involves
June 24, 2015
Domain Shadowing Goes Nuclear: A Story in Failed Sophistication
Domain Shadowing Goes Nuclear: A Story in Failed Sophistication
This post was authored by Nick Biasini Exploit Kits are constantly altering their techniques to compromise additional users while also evading detection.
June 16, 2015
Angler EK: More Obfuscation, Fake Extensions, and Other Nonsense
Angler EK: More Obfuscation, Fake Extensions, and Other Nonsense
This post was authored by Nick Biasini Late last week Talos researchers noticed a drastic uptick in Angler Exploit Kit activity. We have covered Angler
June 5, 2015
My Resume Protects All Your Files
My Resume Protects All Your Files
This post was authored by Nick Biasini Talos has found a new SPAM campaign that is using multiple layers of obfuscation to attempt to evade detection.
June 5, 2015