Talos ThreatSource is a regular intelligence update from Cisco Talos, highlighting the biggest threats each week and other security news.
Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.
First up, an announcement. This will be the last edition of the Threat Source newsletter in its current form. Anyone receiving this email today will begin receiving a broader Cisco Security newsletter each week. It will still contain links to Talos, but will also promote other content across the Cisco Security portfolio.
We will be converting the Talos Threat Source newsletter into a regular post on the Talos blog. Please bookmark blog.talosintelligence.com to check for regular updates and our latest research. We will eventually be returning Threat Source to its newsletter form, but please be patient with us in the meantime.
Finally, we also have our weekly Threat Roundup, which you can find on the blog every Friday afternoon. There, we go over the most prominent threats we’ve seen (and blocked) over the past week.
If you want to see one of our researchers out and about, be sure to check below for upcoming public engagements where they will represent Talos.
Description: WordPress patched two vulnerabilities in two of the most popular plugins available on the content management system. They both could allow an attacker to run extensions on top of affected websites. While WordPress has patched these bugs, the two plugins still appear to be downloaded often. Snort SIDs: 49541 - 49543
Description: Security researchers recently discovered that the IcedID banking trojan and the Trickbot dropper may be more closely related than once thought. Ties between the two malware families may even date back to six years ago, although they were discovered about a year apart. Researchers with IBM’s X-Force say there’s been a recent uptick in threat actors working together to deliver different kinds of banking trojans. Snort SIDs: 49544 - 49547, 49549 - 49551
Keep up with all things Talos by following us on Twitter and Facebook. You can also subscribe to the Beers with Talos podcast, which comes out bi-weekly, here (as well as on your favorite podcast app). And, if you’re not already, you can also subscribe to the weekly Threat Source newsletter here.