• Living on the Edge

    Co-authored by Neil Jenkins and Natasha Cohen  In May 2018, Cisco Talos shared threat indicators and analysis with other CTA members around a new threat: VPNFilter. VPNFilter is a sophisticated modular malware system that targeted networking equipment, ultimately infecting at least 500,000 devices at its peak. Its activity was ultimately severely degraded due to coordinated… View Article
  • They’re Drinking Your Milkshake: CTA’s Joint Analysis on Illicit Cryptocurrency Mining

    In April, we blogged about CTA’s role in disrupting malicious cyber activity. We introduced the idea of routinely bringing our members together to develop Joint Analysis reports on specific threats and campaign activity, the same way our early members came together to report on the threat from Cryptowall Version 3 in 2015. Our goal with… View Article
  • CTA Actions Around VPNFilter

    On May 23, 2018, Cisco’s Talos Group released a blog on a new sophisticated modular malware system called “VPNFilter.” This malware is targeting networking equipment all over the world and has recently begun a large-scale infection of devices in Ukraine. VPNFilter is troubling for a number of reasons, as it allows for theft of website… View Article