Talos Takes

Talos’ spin on security news

Every week, host Jon Munshaw brings on a new guest from Talos or the broader Cisco Secure world to break down a complicated security topic in just five or 10 minutes. We cover everything from breaking news to attacker trends and emerging threats.

Subscribe
  • Talos Takes : Episode 111
    2022-09-02

    Talos Takes Ep. #111 (XL Edition): An update on Talos' efforts in Ukraine

    This week, we have the audio version of our recent livestream for Ukraine Independence Day. Talos assembled a panel of experts who have been working hands-on to defend critical Ukraine systems and its citizens from cyber threats. JJ Cummings, Ashlee Benge and Dmytro Krozhevin answer questions from Hazel Burton about the current security threats Ukraine faces, what Talos has done to hunt for threats in the region and how Cisco is supporting its employees in Ukraine.

    Hosted By:
    Hazel Burton@HazeBurton
    Featuring:
    Dmytro Korzhevin@dkorzhevin, JJ Cummings, and Ashlee Benge@ashlee_benge
    Download
    Run Time: 55:44

    Keywords
    • Ukraine

  • Talos Takes : Episode 110
    2022-08-26

    Talos Takes Ep. #110: The kinetic and cyber threats Ukrainian agriculture faces

    An underrated aspect of Russia’s invasion of Ukraine is the effect it’s had on the global food supply chain. Ukraine is a major importer and exporter of grain and other food staples, but the industry now faces kinetic and cyber threats. Joe Marshall of Talos has spent months learning all about agricultural cybersecurity and the unique position farming equipment and infrastructure is in. Joe recently wrote about these threats for the Talos blog and joins Talos Takes to talk about how important Ukraine is to the global food supply chain and what law enforcement and global governments can do to prepare for potential state-sponsored attacks.

    Hosted By:
    Jon Munshaw
    Featuring:
    Joe Marshall@ImmortanJo3
    Download
    Run Time: 08:18

    Keywords
    • Ukraine
    • agriculture
    • supply chain
    • state-sponsored

  • Talos Takes : Episode 109
    2022-08-19

    Talos Takes Ep. #109: Why cybercrime is going small-time

    The public traditionally thinks about cyber attacks as being from some well-funded, state-sponsored actor. But increasingly small-time criminals are turning to the internet to make their money. Increasingly, they’re not carrying out one-off robberies, and instead are working on insurance fraud scams and spam emails. Nick Biasini joins Talos Takes this week to discuss his recent research into this topic and shares what the data shows about the growth of small-time cybercrime.

    Hosted By:
    Jon Munshaw
    Featuring:
    Nick Biasini@InfoSec_Nick
    Download
    Run Time: 08:25

    Keywords
    • cybercrime
    • spam
    • fraud

  • Talos Takes : Episode 108
    2022-08-12

    Talos Takes Ep. #108 (XL Edition): On Air with Cisco Talos Incident Response

    This week’s episode of Talos Takes is a special extra large edition. We’ve got the audio version of our recent Cisco Talos Incident Response On Air stream where some of our responders got together to discuss the past threats of the top quarter. Liz Waddell and other team members covered everything from recent ransomware actor drama, to the importance of saving logs and other tips they picked up over the past few months.

    Hosted By:
    Liz Waddell@vlsin
    Featuring:
    Brett Ellis@Brett_M_Ellis and Nate Pors
    Download
    Run Time: 42:56

    Keywords
    • Incident Response
    • trends
    • CTIR
    • stream
    • ransomware

  • Talos Takes : Episode 107
    2022-08-05

    Talos Takes Ep. #107: Infostealers 101

    It’s been a while since we re-visited our Malware 101 series. So we’re going back to class to learn about information-stealers. Aliza Johnson from the Talos Threat Intelligence & Interdiction team joins the show to talk about her recent research into and overview of infostealers. Although the name is pretty self-explanatory, this type of malware comes in many shapes and sizes for many purposes.

    Hosted By:
    Jon Munshaw
    Featuring:
    Aliza Johnson
    Download
    Run Time: 08:08

    Keywords
    • malware
    • cyber attack
    • infostealers
    • data theft

  • Talos Takes : Episode 106
    2022-07-29

    Talos Takes Ep. #106: The top attacker trends from the past quarter

    Nate Pors joins the show this week to recap the recently released Cisco Talos Incident Response Quarterly Report. He and Jon recap the top attacker trends from the past quarter, including highlighting which types of attacks CTIR saw in the field and what new techniques adversaries are using. Topics discussed include the increased targeting of telecommunications companies, a decline in ransomware attacks and more business email compromise.

    Hosted By:
    Jon Munshaw
    Featuring:
    Nate Pors
    Download
    Run Time: 08:08

    Keywords
    • Incident response
    • ransomware
    • malware
    • quarterly trends
    • APTs
    • BEC

  • Talos Takes : Episode 105
    2022-07-22

    Talos Takes Ep. #105: We return once more to Transparent Tribe

    Yes, this is the third time we’ve talked about Transparent Tribe on Talos Takes, you’re not going crazy. But they keep giving us reasons to bring them up! This time, Nick Biasini joins the show to discuss the latest evolution of this threat actor: The targeting of higher education institutions in India. Jon and Nick discuss why colleges are always a high-priority target and what this could mean for the evolution of the actor.

    Hosted By:
    Jon Munshaw
    Featuring:
    Nick Biasini@InfoSec_Nick
    Download
    Run Time: 06:34

    Keywords
    • Transparent Tribe
    • threat actor
    • colleges
    • higher education
    • intellectual property

  • Talos Takes : Episode 104
    2022-07-15

    Talos Takes Ep. #104: The psychology of multi-factor authentication

    We go back to college this week with a Psychology 101 class. And today, we’re covering multi-factor authentication. Jon has Dave Lewis, one of Cisco Duo’s advisory CISOs, on the show to talk about the psychology behind using these apps and talking to users about implementing it across their environments. They discuss moving around the accept and reject buttons in the UI, how we communicate the benefits of MFA to administrators and the recent wave of brute-force attacks.

    Hosted By:
    Jon Munshaw
    Featuring:
    Dave Lewis@gattaca
    Download
    Run Time: 09:21

    Keywords
    • MFA
    • multi-factor authentication
    • brute force

  • Talos Takes : Episode 103
    2022-07-08

    Talos Takes Ep. #103: What we can learn from a recent AvosLocker attack

    Chris Neal from Talos Outreach recently dove into a recent AvosLocker ransomware attack in the wild. This week, he joins the show to recap his major takeaways from this attack that other potential targets can learn from. He and Jon talk about the current ransomware-as-a-service landscape, the use of living-off-the-land binaries and other calling cards from this actor to keep an eye out for.

    Hosted By:
    Jon Munshaw
    Featuring:
    Chris Neal
    Download
    Run Time: 08:28

    Keywords
    • LoLBins
    • ransomware
    • AvosLocker
    • cyber attack
    • ransomware-as-a-service

  • Talos Takes : Episode 102
    2022-07-01

    Talos Takes Ep. #102: Unmasking ransomware groups on the dark web

    Paul Eubanks joins this week’s episode of Talos Takes to look at his recent blog post on de-anonymizing ransomware groups on the whispers dark web. Paul and his team recently used several tactics to unmask several threat actors and disclosure their tactics to stay hidden. Jon interviews Paul about ransomware actors’ usual operations on the dark web, the specific tools and tactics he used and the pros and cons of calling out actors for their opsec failures.

    Hosted By:
    Jon Munshaw
    Featuring:
    Paul Eubanks@paul_eubanks
    Download
    Run Time: 08:17

    Keywords
    • ransomware
    • dark web
    • APTs

  • Talos Takes : Episode 101
    2022-06-17

    Talos Takes Ep. #101: Cisco Live Talos roundup

    Jon reports live from the floor of Cisco Live U.S. this week. He interviewed several Talos speakers about their talks at Cisco Live and some of the major takeaways from conversations with users and customers this week.

    Hosted By:
    Jon Munshaw
    Featuring:
    Joe Marshall@ImmortanJo3 and Alexis Merritt
    Download
    Run Time: 5:05

    Keywords
    • Cisco Live
    • ICS
    • cybersecurity
    • incident response
    • CTIR

  • Talos Takes : Episode 100
    2022-06-10

    Talos Takes Ep. #100: Cisco Live U.S. preview

    Get ready for Cisco Live next week in Vegas with a quick primer on everything Talos has going on at the conference. We’re excited to be back in person interacting with customers and users. Jon has a complete rundown of the Talos space at the conference, some talk highlights and other things you should know before you go. For a complete agenda, check out the Cisco Live Session Catalog.

    Hosted By:
    Jon Munshaw
    Featuring:
    Alexis Merritt
    Download
    Run Time: 05:32

    Keywords
    • conferences
    • news
    • Cisco Live

  • Talos Takes : Episode 99
    2022-06-03

    Talos Takes Ep. #99: A primer on Talos at RSA

    We’re doing something a bit different this week — it’s just Jon for a few minutes talking about Talos’ plans at the RSA Conference coming up next week. Catch up on our plans for the week and here about some special events we have planned. To stay up-to-date on the latest, follow us on Twitter. And if you prefer a written preview, read this week’s Threat Source newsletter.

    Hosted By:
    Jon Munshaw
    Featuring:
    Nick Biasini@InfoSec_Nick
    Download
    Run Time: 04:41

    Keywords
    • conferences
    • RSA
    • RSAC
    • podcasts

  • Talos Takes : Episode 98
    2022-05-26

    Talos Takes Ep. #98: Maybe don't panic about that F5 BIG-IP vulnerability

    The recently disclosed vulnerability in F5 BIG-IP took security Twitter by storm two weeks ago, and continues to make headlines now. It immediately prompted warnings from CISA and security researchers everywhere warning users to patch as soon as possible. Of course, it’s important to patch. But maybe we started panicking a little too early that this was going to be the next PrintNightmare. On this week’s episode of Talos Takes, Jon is joined by Jerry Gamblin from Kenna Security to talk about the ins and outs of this vulnerability and while it is serious, it’s incredibly unlikely that an attacker can or would exploit it in the wild.

    Hosted By:
    Jon Munshaw
    Featuring:
    Jerry Gamblin@JGamblin
    Download
    Run Time: 08:08

    Keywords
    • vulnerabilities
    • patching
    • Kenna
    • BIG-IP

  • Talos Takes : Episode 97
    2022-05-20

    Talos Takes Ep. #97: MustangPanda stays agnostic

    See people, this is what happens when you finally let a panda drive a sports car! This week’s episode of Talos Takes covers the basics of MustangPanda, a Chinese state-sponsored actor we wrote about recently. Asheer Maholtra joins the show to go over his research into this group. Mainly, we discuss why this actor, despite being aligned with China, is targeting Russian government entities and organizations. Though the two countries seem to be allies, all is fair in love and cyber espionage.

    Hosted By:
    Jon Munshaw
    Featuring:
    Asheer Malhotra@asheermalhotra
    Download
    Run Time: 08:00

    Keywords
    • MustangPanda
    • APTs
    • state-sponsored
    • ransomware
    • trojans