Talos ThreatSource is a regular intelligence update from Cisco Talos, highlighting the biggest threats each week and other security news.
Oracle releases critical patches, 254 vulnerabilities found
Synopsis: Join Nick Biasini as he takes part in a day-long education event on all things Cisco. Nick will be specifically highlighting the work that Talos does as one of the many breakout sessions offered at Cisco Connect. This session will cover a brief overview of what Talos does and how we operate. Additionally, we'll discuss the threats that are top of mind for our researchers, and the trends that you, as defenders, should be most concerned about.
Synopsis: The security threat landscape is constantly in flux as attackers evolve their skills and tactics. During this tal, Earl will examine various threats that Talos has examined over the past year to show how attackers are continually becoming more sophisticated. Understanding how these actors are evolving and how they are targeting networks is vital to protecting your network. People can only begin to harden their networks against these increasingly sophisticated attacks if they understand the evolving threat landscape and the attack vectors that threat actors are using.
Synopsis: Join us in Orlando prior to Cisco Live for the first ever Cisco Talos Threat Research Summit, a one-day conference by defenders, for defenders, designed to give you actionable insights to keep your users and network safer. Throughout the summit, you will hear from leading researchers at Talos and cyber security experts from across the industry. Lurene A. Grenier, an industry veteran, will be the keynote speaker, and will be speaking about why many businesses are not taking their security seriously enough.
Description: Oracle released its monthly critical patch update this week, fixing vulnerabilities across hundreds of products. In all, Oracle found 254 new security vulnerabilities. Some of the products with the most fixes include Oracle Fusion Middleware, Oracle Retail Applications and Oracle Financial Applications. Oracle users are urged to download these patches as quickly as possible.
Description: Cisco released a patch for the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software that could allow an attacker to gain the ability to remotely execute code. The vulnerability is due to improper validation of packet data. The patch this week is a continuation of a previous advisory that Cisco released in late March alerting customers of vulnerabilities involving the Smart Install client.
Description: VMware has patched two vulnerabilities in the cloud management suite vRealize Automation. The patches cover CVE-2018-6958 and CVE-2018-6959. Users are urged to update to the most recent version of vRealize Automation as soon as possible. The two vulnerabilities could lead to the host machine being compromised, or the hijacking of the user’s session in vRealize, respectively.
U.S., U.K. cyber officials warn of Russian attacks on private routers
https://mashable.com/2018/04/17/russian-router-warning-us-uk/#buS9rzZsjsqT
Microsoft, Facebook among major tech firms to vow to not aid governments in cyber attacks
https://www.reuters.com/article/us-usa-cyber-microsoft/tech-firms-including-microsoft-facebook-vow-not-to-aid-government-cyber-attacks-idUSKBN1HO283
Why vulnerabilities keep coming up in Adobe Flash, despite a decline in usage
https://securingtomorrow.mcafee.com/mcafee-labs/despite-decline-use-adobe-flash-vulnerabilities-will-continue-cause-concern/
IBM releases new open-source software to protect AI systems from attacks
https://www.securityweek.com/ibm-releases-open-source-ai-security-tool
Cryptomining surpasses ransomware as most popular malware so far in 2018
https://threatpost.com/cryptominer-malware-threats-overtake-ransomware-report-warns/131237/