talosblog - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.9	TALOSBLOG:D9BDE...	UAT-4356’s Targeting of Cisco Firepower Devices_TALOSBLOG:D9BDE3C6C4ADDAC14DFAE91F6E1A93A1 ![UAT-4356's Targeting of Cisco Firepower Devices](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/04/arc...	N/A	N/A	Apr 23, 2026	TALOSBLOG
NONE	TALOSBLOG:AD8D1...	IR Trends Q1 2026: Phishing reemerges as top initial access vector, as attacks targeting public administration persist_TALOSBLOG:AD8D177E84BE813E494BD255FDC81642 * Phishing reemerged as the most observed means of gaining initial access, accounting for over a third of the engagements where initial access coul...	N/A	N/A	Apr 22, 2026	TALOSBLOG
NONE	TALOSBLOG:8BD5A...	Phishing and MFA exploitation: Targeting the keys to the kingdom_TALOSBLOG:8BD5A612B91D848D75D095D38849BA92 ![Phishing and MFA exploitation: Targeting the keys to the kingdom](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/i...	N/A	N/A	Apr 21, 2026	TALOSBLOG
NONE	TALOSBLOG:3912D...	[Podcast] It’s not you, it’s your printer: State-sponsored and phishing threats in 2025_TALOSBLOG:3912D7A8119B69801AB2E518AB1D6B25 ![\[Podcast\] It's not you, it's your printer: State-sponsored and phishing threats in 2025](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d...	N/A	N/A	Apr 21, 2026	TALOSBLOG
NONE	TALOSBLOG:645C7...	Bad Apples: Weaponizing native macOS primitives for movement and execution_TALOSBLOG:645C7AE0017C44E0317DBD2A68A4202A * As macOS adoption grows among developers and DevOps, it has become a high value target; however, native "living-off-the-land" (LOTL) techniques f...	N/A	N/A	Apr 21, 2026	TALOSBLOG
NONE	TALOSBLOG:26CBE...	The Q1 vulnerability pulse_TALOSBLOG:26CBE8FFE24A362B48C96418914D3580 ![The Q1 vulnerability pulse](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/04/threat_source-2.jpg) We...	N/A	N/A	Apr 16, 2026	TALOSBLOG
CRITICAL 9.8	TALOSBLOG:BE0E8...	Foxit, LibRaw vulnerabilities_TALOSBLOG:BE0E87FAEA20A16ABC6D061A32B0C608 ![Foxit, LibRaw vulnerabilities](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/04/vuln_roundup.jpg) Ci...	N/A	N/A	Apr 16, 2026	TALOSBLOG
NONE	TALOSBLOG:D8CDB...	PowMix botnet targets Czech workforce_TALOSBLOG:D8CDBB2B313EF4B9F975C5F39C8DD265 * Cisco Talos discovered an ongoing malicious campaign, operating since at least December 2025, affecting a broader workforce in the Czech Republic...	N/A	N/A	Apr 16, 2026	TALOSBLOG
NONE	TALOSBLOG:047E1...	More than pretty pictures: Wendy Bishop on visual storytelling in tech_TALOSBLOG:047E1B480A52957C94E3DB4D313A2F6D ![More than pretty pictures: Wendy Bishop on visual storytelling in tech](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/con...	N/A	N/A	Apr 16, 2026	TALOSBLOG
NONE	TALOSBLOG:27B58...	The n8n n8mare: How threat actors are misusing AI workflow automation_TALOSBLOG:27B58F4DC0FB1436C316E6D374F1A8C4 * Cisco Talos research has uncovered agentic AI workflow automation platform abuse in emails. Recently, we identified an increase in the number of ...	N/A	N/A	Apr 15, 2026	TALOSBLOG