Duping Cloud Functions: An emerging serverless attack vector - Summary and backgroundGoogle Cloud Platform (GCP) Cloud Functions are event-triggered, se... https://blog.talosintelligence.com/duping-cloud-functions-an-emerging-serverless-attack-vector/ #vulnerabilityspotlight

Badgerboard: A PLC backplane network visibility module - Analysis of the traffic between networked devices has always been of interest sinc... https://blog.talosintelligence.com/badgerboard-research/ #vulnerabilityspotlight #features

The many vulnerabilities Talos discovered in SOHO and industrial wireless routers post-VPNFilter - Since the discovery of the widespread VPNFilter malware in 2018, Cisco Talos researchers ... https://blog.talosintelligence.com/router-researcher-vulnerability-spotlight-23/ #vulnerabilityspotlight #vpnfilter

Uncovering weaknesses in Apple macOS and VMWare vCenter: 12 vulnerabilities in RPC implementation - Cisco Talos discovered 12 memory corruption vulnerabilities in MSRPC implementatio... https://blog.talosintelligence.com/weaknesses-mac-os-vmware-msrpc/ #vulnerabilityspotlight #vulnerabilitydeepdive

Taking over Milesight UR32L routers behind a VPN: 22 vulnerabilities and a full chain - Cisco Talos discovered 17 vulnerabilities (63 CVEs) in the Milesight UR32L router and fiv... https://blog.talosintelligence.com/talos-discovers-17-vulnerabilities-in-milesight/ #vulnerabilityspotlight

Vulnerability Spotlight: Use-after-free condition in Google Chrome WebGL - Cisco Talos recently discovered an exploitable use-after-free vulnerability in Google Chr... https://blog.talosintelligence.com/vuln-spotlight-chrome-webgl-use-after-free-june-23/ #vulnerabilityspotlight

Two remote code execution vulnerabilities disclosed in Microsoft Excel - Cisco Talos recently discovered two vulnerabilities in the Microsoft Excel spreadsheet ma... https://blog.talosintelligence.com/two-remote-code-execution-vulnerabilities-disclosed-in-microsoft-excel/ #vulnerabilityspotlight

Memory corruption vulnerability in Mitsubishi PLC could lead to DoS, code execution - Cisco Talos recently discovered a memory corruption vulnerability in the Mitsubishi MELSE... https://blog.talosintelligence.com/vulnerability-in-mitsubishi-plc-could-lead-to-dos-code-execution/ #vulnerabilityspotlight

Vulnerability Spotlight: Authentication bypass, use-after-free vulnerabilities found in a library for the µC/OS open-source operating system - Kelly Leuschner of Cisco Talos discovered these vulnerabilities.Cisco Talos recently disc... https://blog.talosintelligence.com/vulnerability-spotlight-authentication-bypass-use-after-free-vulnerabilities-found-in-uc/ #vulnerabilityspotlight

Microsoft Patch Tuesday for May 2023 — Fewest vulnerabilities disclosed in a month in three-plus years - Microsoft disclosed 38 vulnerabilities across its suite of products and software Tuesday,... https://blog.talosintelligence.com/microsoft-patch-tuesday-for-may-2023/ #vulnerabilityspotlight #patchtuesday

Vulnerability Spotlight: Vulnerabilities in IBM AIX could lead to command injection with elevated privileges - Tim Brown of Cisco Security Advisory EMEA discovered these vulnerabilities and contribute... https://blog.talosintelligence.com/vuln-spotlight-ibm-aix-privilege-escalation/ #vulnerabilityspotlight

Vulnerability Spotlight: Hard-coded password vulnerability could allow attacker to completely take over Lenovo Smart Clock - Kelly Leuschner and Thorsten Rosendahl discovered this vulnerability.Cisco Talos research... https://blog.talosintelligence.com/vulnerability-spotlight-hard-coded-password-vulnerability-could-allow-attacker-to-completely-take-over-lenovo-smart-clock/ #vulnerabilityspotlight

Microsoft Patch Tuesday for April 2023 — Snort rules and prominent vulnerabilities - Microsoft released its monthly round of security updates and patches today, continuing it... https://blog.talosintelligence.com/microsoft-patch-tuesday-for-april-2023/ #vulnerabilityspotlight #patchtuesday

Vulnerability Spotlight: Vulnerabilities in popular Japanese word processing software could lead to arbitrary code execution, other issues - A Cisco Talos researcher discovered these vulnerabilities.Cisco Talos recently discovered... https://blog.talosintelligence.com/vuln-spotlight-justsystems-ichitaro/ #vulnerabilityspotlight #securex

Vulnerability Spotlight: Buffer overflow vulnerability in ADMesh library - Francesco Benvenuto of Cisco Talos discovered this vulnerability.Cisco Talos recently dis... https://blog.talosintelligence.com/vulnerability-spotlight-buffer-overflow-vulnerability-in-admesh-library/ #vulnerabilityspotlight #securex

Vulnerability Spotlight: Vulnerability in ManageEngine OpManager could lead to XXE attack - Marcin “Icewall” Noga of Cisco Talos discovered this vulnerability.Cisco Talos recently d... https://blog.talosintelligence.com/vulnerability-spotlight-vulnerability-in-manageengine-opmanager-could-lead-to-xxe-attack/ #vulnerabilityspotlight

Vulnerability Spotlight: Specially crafted files could lead to denial of service, information disclosure in OpenImageIO parser - Lilith >_> of Cisco Talos discovered these vulnerabilities.Cisco Talos recently dis... https://blog.talosintelligence.com/vulnerability-spotlight-specially-crafted-files-could-lead-to-denial-of-service-information-disclosure-in-openimageio-parser/ #vulnerabilityspotlight

Vulnerability Spotlight: SNIProxy contains remote code execution vulnerability - Keane O’Kelley of Cisco ASIG discovered this vulnerability.Cisco ASIG recently discovered... https://blog.talosintelligence.com/vulnerability-spotlight-sniproxy-contains-remote-code-execution-vulnerability/ #vulnerabilityspotlight

Vulnerability Spotlight: Netgear Orbi router vulnerable to arbitrary command execution - Christopher McBee and Dave McDaniel of Cisco Talos discovered these vulnerabilities.Cisco... https://blog.talosintelligence.com/vulnerability-spotlight-netgear-orbi-router-vulnerable-to-arbitrary-command-execution/ #vulnerabilityspotlight

Vulnerability Spotlight: WellinTech ICS platform vulnerable to information disclosure, buffer overflow vulnerabilities - Carl Hurd of Cisco Talos discovered these vulnerabilities.Cisco Talos recently discovered... https://blog.talosintelligence.com/vulnerability-spotlight-wellintech-ics-platform-vulnerable-to-information-disclosure-buffer-overflow-vulnerabilities/ #vulnerabilityspotlight