Talos ThreatSource is a regular intelligence update from Cisco Talos, highlighting the biggest threats each week and other security news.
Researcher Discloses New Local Privilege Escalation 0-Day Vulnerability In Apple macOS
Synopsis: Cisco's Talos team specializes in early-warning intelligence and threat analysis necessary for maintaining a secure network. People responsible for defending networks realize that the security threat landscape is constantly in flux as attackers evolve their skills. Talos advances the overall efficacy of all Cisco security platforms by aggregating data, cooperating with teams of security experts, and applying the cutting-edge big data technology to security. In this talk we will perform deep analysis of recent threats and see how Talos leverages large datasets to deliver product improvements and mitigation strategies.
Description: A researcher has disclosed a new 0-day vulnerability in Apple macOS that could allow an attacker to conduct a privilege escalation attack. This vulnerability manifests in the IOHIDFamily macOS kernel driver, which handles various types of user interaction, and can could be used to gain root access. As this vulnerability is a local privilege escalation flaw, it can only be exploited if an attacker has physical access to the host or if the attacker already has compromised the device. Updates that address this flaw are expected to be released in the next Security Update for macOS
Description: VMware has released a security advisory for vSphere Data Protection (VDP) to address three critical vulnerabilities. These flaws are identified as CVE-2017-15548, an authentication bypass vulnerability; CVE-2017-15549, an arbitrary file upload vulnerability; and CVE-2017-15550, a path traversal vulnerability. VMware has released a software update that addresses these vulnerabilities.
34C3 (34th Chaos Communications Congress) Talks
Black Hat Europe 2017 Videos
Why TLS 1.3 isn't in browsers yet
Kansas Man Killed In ‘SWATting’ Attack