William Largent's Avatar

William Largent

@securitywill.bsky.social

Cisco Talos Threat Research

70 Followers  |  74 Following  |  18 Posts  |  Joined: 24.07.2023  |  1.9772

Latest posts by securitywill.bsky.social on Bluesky

Post image

From a wave of ToolShell incidents, to a rise in post-exploitation phishing and the creative misuse of legitimate tools like Velociraptor, this episode of the TTP is packed with insights from Q3: www.youtube.com/watch?v=q7yV...

28.10.2025 15:31 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

you need this in your life.

27.10.2025 17:01 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

they won't even open betting lines for DNS as the RFO on these things.

24.10.2025 15:45 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
22.10.2025 20:25 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
A promotional graphic for a Reddit AMA by Cisco Talos. It features the text: 'Join our Reddit AMA. Get your questions answered by Talos researchers and incident responders. October 30th on reddit.com/r/cybersecurity.' The background is dark with a blue map design.

A promotional graphic for a Reddit AMA by Cisco Talos. It features the text: 'Join our Reddit AMA. Get your questions answered by Talos researchers and incident responders. October 30th on reddit.com/r/cybersecurity.' The background is dark with a blue map design.

Save the date: Cisco Talos is hosting a live Reddit AMA on r/cybersecurity on October 30! Our team members will be on standby to answer your questions about our latest Incident Response Quarterly Trends Report, today’s threat landscape, and more.

17.10.2025 14:00 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Video thumbnail

Talos is serving up a special episode of Beers with Talos! VP Christopher Marshall (the β€œreal Marshall,” much to Joe’s displeasure) joins Hazel, Bill, and Joe for a very real conversation about leading a large team when the world won’t stop moving: cs.co/63325AFR3x

16.10.2025 16:01 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Video thumbnail

gene kelly is antifa

14.10.2025 00:07 β€” πŸ‘ 10780    πŸ” 1706    πŸ’¬ 258    πŸ“Œ 131
Did people really memorize phone numbers before cell phones, or is that just a movie thing? 2? Questions I was watching some old shows from the 90s and noticed people would just dial numbers from memory - like they'd call their friends or family without looking anything up. Made me wonder if that was actually normal back then? Did people genuinely have all their important numbers memorized, or did most folks keep a little address book or written list nearby?

Did people really memorize phone numbers before cell phones, or is that just a movie thing? 2? Questions I was watching some old shows from the 90s and noticed people would just dial numbers from memory - like they'd call their friends or family without looking anything up. Made me wonder if that was actually normal back then? Did people genuinely have all their important numbers memorized, or did most folks keep a little address book or written list nearby?

If anyone needs me I will be in the museum, lying down next to the bog bodies.

13.10.2025 17:58 β€” πŸ‘ 23921    πŸ” 4900    πŸ’¬ 1550    πŸ“Œ 1815

Boop. Always boop.

13.10.2025 15:44 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Trying to imagine the level of derangement in thinking Bob Dylan is cooler than Johnny Cash - and I just can't get there. Holy fucking dumbfuck. Even as clickbait garbage this is painfully stupid and Fasman is way too old to be cut any slack for this. Jettisoned to the sun.

10.10.2025 16:35 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Pearls firmly clutched.

11.09.2025 22:09 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Support your public library. Defend your public library. Slay the enemies of your public library.

19.08.2025 23:41 β€” πŸ‘ 8534    πŸ” 2527    πŸ’¬ 147    πŸ“Œ 78

Ozzy Osbourne visited my magic shop. He said he'd like to buy some stink bombs. How many? All of them. I had to go through drawers finding every last one. He bought 900 of them. To sign the credit card slip I handed him a shock pen, which he thought was hilarious and bought that too. RIP

22.07.2025 18:29 β€” πŸ‘ 16429    πŸ” 3213    πŸ’¬ 88    πŸ“Œ 96

This. Read this and repeat it over and over to yourself if you need to do so.

22.07.2025 20:35 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Look, I'm not going to say that this is a personal attack ...

... it is. This is a personal attack.

11.07.2025 14:44 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

We’re halfway through 2025, and vulnerability reporting is evolving fast. Check out the latest Threat Source newsletter as Thorsten breaks down record CVE volumes and new reporting challenges: blog.talosintelligence.com/patch-track-...

10.07.2025 18:07 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
A Marco Rubio impostor is using AI voice to call high-level officials An imposter using AI to pose as Secretary of State Marco Rubio contacted three foreign ministers, a U.S. governor and a member of Congress, according to a State Department cable.

Threat actor deepfakes Marco Rubio's voice to approach foreign officials on Signal

www.washingtonpost.com/national-sec...

08.07.2025 11:43 β€” πŸ‘ 20    πŸ” 10    πŸ’¬ 1    πŸ“Œ 2
Post image

Join us for a deep dive into how Cisco Talos uncovered two critical vulnerabilities in the AsIO3.sys driver powering ASUS Armory Crate: blog.talosintelligence.com/decrement-by...

26.06.2025 13:45 β€” πŸ‘ 4    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Post image

Cisco Talos uncovered zero-day vulnerabilities in catdoc, plus vulnerabilities in Parallel, NVIDIA, and High-Logic FontCreator 15β€”all now patched:
blog.talosintelligence.com/catdoc-zero-...

11.06.2025 16:44 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
GitHub - dest-3/Chronos: Time-Based Detection and Response for Safety-Critical Real-Time Embedded Systems - EDR Kernel Extension for FreeRTOS Time-Based Detection and Response for Safety-Critical Real-Time Embedded Systems - EDR Kernel Extension for FreeRTOS - dest-3/Chronos

Security researcher Michalis Antoniades has released Chronos, a kernel extension to support EDR-like capabilities on RTOS embedded systems

github.com/dest-3/Chronos

01.05.2025 15:01 β€” πŸ‘ 5    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Video thumbnail

Cisco Talos’ 2024 Year in Review is available now! With visibility into more than 886 billion security events per day, the report features our key insights. Read the full report here: http://cs.co/63320FzuMG

31.03.2025 12:05 β€” πŸ‘ 7    πŸ” 4    πŸ’¬ 1    πŸ“Œ 1
Preview
Why We Need More Women and Intersectional Diversity in Cyber (And How to Get There) Representation matters in cybersecurity. Here’s whyβ€”and what we can do about it.

I really hate this archaic nonsense is still a part of the community - but this is a really good post from a couple of Splunk/SURGe folks.

I am so lucky to work on a team that is very diverse across the board but I am very aware that we are flying in the face of the norm.

28.03.2025 20:41 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Video thumbnail

From threat hunting, detection building, vulnerability discoveries and incident response, Cisco Talos shows up every day to try and make the internet a safer place. Watch our full overview here: http://cs.co/633280m3rs

19.03.2025 16:13 β€” πŸ‘ 6    πŸ” 3    πŸ’¬ 0    πŸ“Œ 1

"The PureCrypter malware found in this intrusion is a Windows dynamic-link library obfuscated with Eziriz’s .NET Reactor obfuscator. It has resources of encrypted binaries of legitimate DLLs, including Protobuf-net and Microsoft task scheduler DLL along with the TorNet backdoor. "

28.01.2025 15:45 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

the accuracy

20.12.2024 17:46 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Supply Chain Attack Detected in Solana's web3.js Library - S... A supply chain attack has been detected in versions 1.95.6 and 1.95.7 of the popular @solana/web3.js library.

Supply Chain Attack Detected in Solana's web3.js Library:
socket.dev/blog/supply-...

Solana blamed it on a phishing attack: github.com/solana-labs/...

04.12.2024 21:55 β€” πŸ‘ 19    πŸ” 6    πŸ’¬ 1    πŸ“Œ 0

<Bangs drum like Animal on a bender>

04.12.2024 15:41 β€” πŸ‘ 5    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

Ack.

02.12.2024 19:04 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

FBI confirms that despite the Chinese-sounding name, the BianLian ransomware gang and its affiliates operate out of Russia

PDF: www.ic3.gov/CSA/2024/241...

21.11.2024 11:40 β€” πŸ‘ 270    πŸ” 85    πŸ’¬ 6    πŸ“Œ 5
Preview
Talos Speed Dating (the episode we never set out to make but did anyway) - Beers with Talos Podcast Mitch, Matt and Lurene were almost about to be in the same physical space at the same time to record an episode, and then Lurene couldn't make it...so we made this instead! Mitch is joined by Azim Kho...

Want to actually know what it's like to work at Talos? Like truly understand? Listen to the podcast linked here - you get A LOT of Talos people from disparate groups and in listening you can understand the Talos culture isn't buzzword bullshit. I fucking love my team. Ride or die.

20.12.2023 16:04 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@securitywill is following 19 prominent accounts