Talos Takes

Talos’ spin on security news

Every week, host Jon Munshaw brings on a new guest from Talos or the broader Cisco Secure world to break down a complicated security topic in just five or 10 minutes. We cover everything from breaking news to attacker trends and emerging threats.

Subscribe
  • Talos Takes

    Talos Takes Ep. #78: Attackers know you are still looking for a PS5 this holiday season

    We know, we know. We do one of these every year. But people still falling for scams, so we still have to keep reminding people how to shop safely online! This year is a bit different than past Black Fridays and Cyber Mondays because of the issues around the supply chain. Attackers are sure to try to convince you that the big gift you want this year won’t arrive on time so you have to “ACT NOW!” Plus, there’s the continued frenzy to find PlayStation 5s and XBOX Series X/S’s. Jon and Nick talk about scams you’re likely to see while shopping online over the long weekend and provide some helpful tips that anyone can use.

    Download
    Run Time: 00:05:16

    Keywords
    • Black Friday
    • Cyber Monday
    • shopping
    • e-commerce
    • scams
    • spam

  • Talos Takes

    Talos Takes Ep. #72: Emergency Apache HTTP Server episode

    Sorry for dropping two episodes in the feed in one day, but we also needed to find time to talk about the critical zero-day vulnerability in Apache HTTP Server. An attacker could exploit this vulnerability to perform path traversal and eventually remote code execution. Patch for this one as soon as possible, and use the Snort rule we have available now.

    Download
    Run Time: 00:05:05

    Keywords
    • Apache
    • patching
    • vulnerabilities

  • Talos Takes

    Talos Takes Ep. #77: How to safely connect to (and use) public WiFi

    For the first time in Talos Takes’ history, we have a formal crossover with Beers with Talos. Mitch Neff, the host of BWT, joins the show to talk about his horror stories using public WiFi networks. He and Jon discuss the safest ways to interact with large, public network in places like libraries, parks and airports, and potential alternatives to public hotspots.

    Download
    Run Time: 00:08:40

    Keywords
    • WiFi
    • cybersecurity
    • tips
    • cybersecurity basics

  • Talos Takes

    Talos Takes Ep. #76: What type of secrets could Kimsuky be after?

    Jon took a break from listening to “Red (Taylor’s Version)” to turn this podcast around quickly to align with our recent research on the Kimsuky APT. This North Korean state-sponsored actor is in the wild again targeting South Korean organizations that house potentially sensitive information. The group set up fake Blogger sites to lure in the victims to read about news related to nuclear disarmament and relations on the Korean peninsula, but instead were hit with infostealing malware. Assheer Malhotra, who helped research and write our latest blog, joins the show to discuss this group’s motivations, what information they may have been looking for, and how Talos helped put a stop to their actions.

    Download
    Run Time: 00:08:16

    Keywords
    • Kimsuky
    • malware
    • APTs
    • state-sponsored
    • spam

  • Talos Takes

    Talos Takes Ep. #75 (XL Edition): Building the perfect Incident Response Plan

    We have another special extra large-sized version of Talos Takes this week. Enjoy this recording of a live stream we hosted earlier this week with Martin Lee from our Talos Communications team and Paul Lee from Cisco Talos Incident Response. The Lees discuss how to build the perfect Incident Response Plan. First, Martin walks through the basics of creating, editing and iterating on an IR plan. Then, he’s joined by Paul to ask him a few questions, take some Q&A from the audience and learn about Paul’s experience from the field.

    Download
    Run Time: 00:49:11

    Keywords
    • incident response
    • IR
    • incident response plan
    • CTIR

  • Talos Takes

    Talos Takes Ep. #74 (NCSAM Edition AND XL Edition): Q&A session with Talos Incident Response

    This is a double special Talos Takes episode — it’s XL-sized and continues our Cybersecurity Awareness Month theme. This is a recording of our live stream from earlier this week with Brad Garnett, the general manager of Talos Incident Response. Even if you’ve never worked with an incident response team before, or have no idea what IR is, this is a perfect place to start. We provide the tl;dr of the IR process, talk building an IR plan and answer audience questions.

    Download
    Run Time: 00:44:23

    Keywords
    • incident response
    • CTIR
    • IR
    • ransomware
    • hybrid work

  • Talos Takes

    Talos Takes Ep. #73 (NCSAM edition): Fight back against the phish

    We continue our special series for National Cybersecurity Awareness Month by addressing everyone’s worst nightmare: phish. Who among us hasn’t gotten the call, “We’re trying to reach out about your car’s extended warranty?” In this Talos Takes, Jaeson Schultz, Talos’ foremost spam and phish expert, breaks down spam emails, phone calls and messages for any user. We discuss new trends we’re seeing from attackers in 2021, talk about the best software solutions available and give advice to Jon’s 77-year-old grandmother.

    Download
    Run Time: 00:10:35

    Keywords
    • spam
    • phishing
    • spear-phishing
    • email

  • Talos Takes

    Talos Takes Ep. #71 (NCSAM Edition): 2021 in ransomware

    We are from the first (or last) people to say this, but 2021 is the year of ransomware. It’s by far the biggest story on the security landscape right now. And everything from oil pipelines, to grain co-ops, to hospitals and schools have been targeted by ransomware this year. Azim Khodjibaev joins the show for National Cybersecurity Awareness Month to wrap up everything we’ve seen on the ransomware landscape this year. Azim reflects on his interview with a LockBit operator, the research he’s done into “double extortion campaigns,” and discusses the lessons defenders can learn from the past 10 months.

    Download
    Run Time: 00:06:57

    Keywords
    • ransomware
    • cybersecurity
    • extortion
    • ransom
    • cyber attacks

  • Talos Takes

    Talos Takes Ep. #70 (NCSAM edition): For once, a positive spin on hybrid work

    Everyone loves to talk and write about how tough it is that we are all working remotely during the COVID-19 pandemic. So for once — to celebrate National Cybersecurity Awareness Month — Talos Takes wants to talk about the positives! Christopher Marshall, the head of Talos’ detection research team, joins the show to discuss how he’s kept his team’s morale up during this time. Cybersecurity is a rough industry to be in, regardless of any external factors. So it’s important for him to avoid employee burnout and turnover. He and Jon also discuss the positives of working remotely, what they’re most looking forward to when they can go back into the office and their favorite pandemic-era hobbies.

    Download
    Run Time: 00:09:22

    Keywords
    • work from home
    • COVID
    • burnout
    • hiring
    • security

  • Talos Takes

    Talos Takes Ep. #69: Our armadillo in shining armor

    Asheer Malhotra joins the show to once again cover a cyber attack in South Asia. This time, it’s an attacker that looks and smells like an APT, but may just be a run-of-the-mill crimeware gang. Asheer discusses he and his colleagues’ research into Operation: Armor Piercer, a campaign targeted at government agencies and military contractors. Needless to say, these are high-profile targets. Find out what this group wants and why they’re aping so much from other groups like Transparent Tribe and SideCopy.

    Download
    Run Time: 00:10:00

    Keywords
    • RATs
    • malware
    • APTs
    • spam
    • MFA