Talos ThreatSource is a regular intelligence update from Cisco Talos, highlighting the biggest threats each week and other security news.
Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.
This was a crazy week of vulnerabilities for us.
On Tuesday, Microsoft released its monthly security update that fixed 53 vulnerabilities, 17 of which are rated critical. We have coverage for these that you can read all about here.
The same day, Adobe also released a torrent of fixes for many of its products, but we specifically helped them solve multiple vulnerabilities in Acrobat. You can read about those here.
We also disclosed six vulnerabilities in Antenna House Office Server Document Converter. The vulnerabilities can be exploited to locally execute code, or even remotely if the product is used in batch mode by the owners. There’s also a new post out covering multiple bugs in Computerinsel Photoline.
Finally, we also have our weekly Threat Roundup, which you can find on the blog every Friday afternoon. There, we go over the most prominent threats we’ve seen (and blocked) over the past week.
If you want to see one of our researchers out and about, be sure to check below for upcoming public engagements where Talos will be represented.
Location: Mandalay Bay Convention Center, Las Vegas, Nevada
Synopsis: Cisco Talos will be represented at the Black Hat conference for all six days. On Aug. 8, from 3 to 5 p.m., Paul and Warren will be delivering a talk in Business Hall Theater B covering supply chain attacks.
Location: Fairmont The Queen Elizabeth hotel in Montreal, Quebec, Canada
Synopsis: Paul and Warren are hosting a joint talk on the Olympic Destroyer malware from earlier this year, and will cover why it is so difficult to attribute the attack. Vanja will also be hosting a workshop on manual kernel mode malware analysis.
Description: Microsoft released its monthly set of security advisories today for vulnerabilities that have been identified and addressed in various products. This month's release addresses 53 new vulnerabilities, 17 of which are rated critical, 34 are rated important, one is rated moderate, and one is rated as low severity. These vulnerabilities impact Windows Operating System, Edge, Internet Explorer and more.
Description: Adobe has released security updates for a wide variety of its products, including Flash Player, Experience Manager, Connect, Acrobat and Reader. Several of the bugs were rated as critical, including multiple flaws in Acrobat and Reader that could lead to arbitrary code execution.
https://helpx.adobe.com/security/products/flash-player/apsb18-24.html https://helpx.adobe.com/security/products/acrobat/apsb18-21.html https://helpx.adobe.com/security/products/connect/apsb18-22.html https://helpx.adobe.com/security/products/experience-manager/apsb18-23.html
Description: Apple has released patches for a variety of security updates in its latest version of iOS for iPhones and iPads. The specifics of the bugs have not yet been detailed. Additionally, it patched in USB Restricted Mode, which makes it more difficult for anyone to break into the iPhone through the Lightning port on the bottom of the phone. Updates were also released for iCloud for Windows, iTunes for Windows and macOS High Sierra.
Keep up with all things Talos by following us on Twitter and Facebook. You can also subscribe to the Beers with Talos podcast, which comes out bi-weekly, here (as well as on your favorite podcast app). And, if you’re not already, you can also subscribe to the weekly Threat Source newsletter here.