talosblog - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 10	TALOSBLOG:51F51...	Ongoing exploitation of Cisco Catalyst SD-WAN vulnerabilities_TALOSBLOG:51F5173F108B01EE2E227083EBCF7F20 * Cisco Talos is tracking the active exploitation of CVE-2026-20182, an authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller, fo...	N/A	N/A	May 14, 2026	TALOSBLOG
NONE	TALOSBLOG:D24FC...	Breaking things to keep them safe with Philippe Laulheret_TALOSBLOG:D24FCD0640C07B256B43BFBC1EBBC862 ![Breaking things to keep them safe with Philippe Laulheret](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2...	N/A	N/A	May 13, 2026	TALOSBLOG
CRITICAL 9.9	TALOSBLOG:187FB...	Microsoft Patch Tuesday for May 2026 — Snort rules and prominent vulnerabilities_TALOSBLOG:187FBC7C258433B121C653EA471B58C2 ![Microsoft Patch Tuesday for May 2026 — Snort rules and prominent vulnerabilities](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c14...	N/A	N/A	May 12, 2026	TALOSBLOG
NONE	TALOSBLOG:2172E...	State-sponsored actors, better known as the friends you don’t want_TALOSBLOG:2172EC2EE2D51687C3D432D96EA39D30 * State-sponsored actors don't break in. They log in, and they use your own tools to stay invisible for months. * Responding to a state-sponsored...	N/A	N/A	May 12, 2026	TALOSBLOG
NONE	TALOSBLOG:6EFE5...	Unplug your way to better code_TALOSBLOG:6EFE569CB664E297B1BBF9DEA8D5A144 ![Unplug your way to better code](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/05/threat_source.jpg) ...	N/A	N/A	May 7, 2026	TALOSBLOG
NONE	TALOSBLOG:DB4EB...	Insights into the clustering and reuse of phone numbers in scam emails_TALOSBLOG:DB4EB0E163084DB9978DD87B500E4E57 * Cisco Talos has recently started to collect and gather intelligence around phone numbers within emails as an additional indicator of compromise (...	N/A	N/A	May 6, 2026	TALOSBLOG
NONE	TALOSBLOG:A4591...	CloudZ RAT potentially steals OTP messages using Pheno plugin_TALOSBLOG:A4591E106611BA7C43738E176B05A875 * Cisco Talos discovered an intrusion, active since at least January 2026, where an unknown attacker implanted a CloudZ remote access tool (RAT) an...	N/A	N/A	May 5, 2026	TALOSBLOG
HIGH 8.8	TALOSBLOG:020A2...	UAT-8302 and its box full of malware_TALOSBLOG:020A25DD60D96C7E56A1B3E8D9E474F6 * Cisco Talos is disclosing UAT-8302, a sophisticated, China-nexus advanced persistent threat (APT) group targeting government entities in South Am...	N/A	N/A	May 5, 2026	TALOSBLOG
NONE	TALOSBLOG:798A0...	Great responsibility, without great power_TALOSBLOG:798A0CC4F3BC4929C91EC80925B1CD3D ![Great responsibility, without great power](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/04/threat_so...	N/A	N/A	Apr 30, 2026	TALOSBLOG
HIGH 10	TALOSBLOG:3B7E9...	AI-powered honeypots: Turning the tables on malicious AI agents_TALOSBLOG:3B7E994C7DB017A6CCDCFCBF99530732 * Generative AI allows defenders to instantly create diverse honeypots, like Linux shells or Internet of Things (IoT) devices, using simple text pr...	N/A	N/A	Apr 29, 2026	TALOSBLOG