Talos Takes

Talos’ spin on security news

Every week, host Jon Munshaw brings on a new guest from Talos or the broader Cisco Secure world to break down a complicated security topic in just five or 10 minutes. We cover everything from breaking news to attacker trends and emerging threats.

Subscribe
  • Talos Takes
    2022-08-12

    Talos Takes Ep. #77: How to safely connect to (and use) public WiFi

    For the first time in Talos Takes’ history, we have a formal crossover with Beers with Talos. Mitch Neff, the host of BWT, joins the show to talk about his horror stories using public WiFi networks. He and Jon discuss the safest ways to interact with large, public network in places like libraries, parks and airports, and potential alternatives to public hotspots.

    Download
    Run Time: 00:08:40

    Keywords
    • WiFi
    • cybersecurity
    • tips
    • cybersecurity basics

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #76: What type of secrets could Kimsuky be after?

    Jon took a break from listening to “Red (Taylor’s Version)” to turn this podcast around quickly to align with our recent research on the Kimsuky APT. This North Korean state-sponsored actor is in the wild again targeting South Korean organizations that house potentially sensitive information. The group set up fake Blogger sites to lure in the victims to read about news related to nuclear disarmament and relations on the Korean peninsula, but instead were hit with infostealing malware. Assheer Malhotra, who helped research and write our latest blog, joins the show to discuss this group’s motivations, what information they may have been looking for, and how Talos helped put a stop to their actions.

    Download
    Run Time: 00:08:16

    Keywords
    • Kimsuky
    • malware
    • APTs
    • state-sponsored
    • spam

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #74 (NCSAM Edition AND XL Edition): Q&A session with Talos Incident Response

    This is a double special Talos Takes episode — it’s XL-sized and continues our Cybersecurity Awareness Month theme. This is a recording of our live stream from earlier this week with Brad Garnett, the general manager of Talos Incident Response. Even if you’ve never worked with an incident response team before, or have no idea what IR is, this is a perfect place to start. We provide the tl;dr of the IR process, talk building an IR plan and answer audience questions.

    Download
    Run Time: 00:44:23

    Keywords
    • incident response
    • CTIR
    • IR
    • ransomware
    • hybrid work

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #73 (NCSAM edition): Fight back against the phish

    We continue our special series for National Cybersecurity Awareness Month by addressing everyone’s worst nightmare: phish. Who among us hasn’t gotten the call, “We’re trying to reach out about your car’s extended warranty?” In this Talos Takes, Jaeson Schultz, Talos’ foremost spam and phish expert, breaks down spam emails, phone calls and messages for any user. We discuss new trends we’re seeing from attackers in 2021, talk about the best software solutions available and give advice to Jon’s 77-year-old grandmother.

    Download
    Run Time: 00:10:35

    Keywords
    • spam
    • phishing
    • spear-phishing
    • email

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #72: Emergency Apache HTTP Server episode

    Sorry for dropping two episodes in the feed in one day, but we also needed to find time to talk about the critical zero-day vulnerability in Apache HTTP Server. An attacker could exploit this vulnerability to perform path traversal and eventually remote code execution. Patch for this one as soon as possible, and use the Snort rule we have available now.

    Download
    Run Time: 00:05:05

    Keywords
    • Apache
    • patching
    • vulnerabilities

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #71 (NCSAM Edition): 2021 in ransomware

    We are from the first (or last) people to say this, but 2021 is the year of ransomware. It’s by far the biggest story on the security landscape right now. And everything from oil pipelines, to grain co-ops, to hospitals and schools have been targeted by ransomware this year. Azim Khodjibaev joins the show for National Cybersecurity Awareness Month to wrap up everything we’ve seen on the ransomware landscape this year. Azim reflects on his interview with a LockBit operator, the research he’s done into “double extortion campaigns,” and discusses the lessons defenders can learn from the past 10 months.

    Download
    Run Time: 00:06:57

    Keywords
    • ransomware
    • cybersecurity
    • extortion
    • ransom
    • cyber attacks