Cisco Talos Intelligence Group - Comprehensive Threat Intelligence
Emulate less, discover more
Sometimes "good enough" works best! In this blog, learn how targeted emulation of a single thread led to the discovery of six CVEs in a critical IIoT gateway.
Phishing frenzy, ransomware retreat
Ransomware cases dropped in Q4 2025, but phishing went up. Discover what’s catching defenders off guard and how you can outsmart attackers in 2026.
Building bridges
Meet the technical diplomat connecting Cisco’s products to rigorous external test labs. Ryan Liles reveals the secrets of building trust, handling tough conversations, and why relationships matter most in cybersecurity.
Let the bad bots bite
In this week's newsletter, Martin asks, "Could defensive teams use AI avatars and fake profiles to bait threat actors, uncover their tactics, and stay ahead of the curve?"
Zero-day sprints
From lightning-quick exploits to targeted phishing campaigns, see what incidents made headlines this quarter and what defenders need to know next.
Threat Research
Cisco Talos uncovered “DKnife,” a fully featured gateway-monitoring and adversary-in-the-middle (AitM) framework comprising seven Linux-based implants. Learn More
Cisco Talos is closely tracking UAT-8837, a threat actor we assess with medium confidence is a China-nexus advanced persistent threat (APT) actor. Learn More
Talos assesses with high confidence that UAT-7290 is a sophisticated threat actor falling under the China-nexus of advanced persistent threat actors (APTs). UAT-7290 primarily targets telecommunications providers in South Asia. Learn More
Fortify Your Defense
Evolve your incident response with intelligence-led proactive services and deep expertise that only Talos can offer, before –and during– an active emergency. Anyone can stand behind you – Talos IR stands beside you, every step of the way.
Together, we can reduce downtime and mitigate risk. Get started today.
Latest Beers with Talos Podcast Episodes
December 4, 2025 | Ep. 153
Ranksgiving has returned! The team, with much discourse, ranks their top five Thanksgiving dishes.
October 16, 2025 | Ep. 152
Two Marshalls, one podcast! Meet Talos' VP, Christopher Marshall.
Why Cisco Talos?
Talos is Cisco's threat intelligence research organization, an elite group of security experts devoted to providing superior protection for our customers, products and services.
Our job is your defense.
Talos powers the Cisco portfolio with comprehensive intelligence.
Every customer environment, every event, every single day, all around the world.