Talos Takes

Talos’ spin on security news

Every week, host Jon Munshaw brings on a new guest from Talos or the broader Cisco Secure world to break down a complicated security topic in just five or 10 minutes. We cover everything from breaking news to attacker trends and emerging threats.

Subscribe
  • Talos Takes : Episode 82
    2022-01-14

    Talos Takes Ep. #82: Log4j followed us into 2022

    We thought it was usually all about “New year, new me,” heading into 2022, but turns out it’s the same cybersecurity problems. Join host Jon Munshaw as he welcomes on threat researcher JJ Cummings to discuss how the Log4j vulnerability event evolved over the holiday break. JJ, who you may recognized from our recent live Beers with Talos episode, discusses the new CVE that popped up the week after Christmas, and then discusses what things he and his team will be looking into regarding Log4shell in 2022.

    Hosted By:
    Jon Munshaw
    Featuring:
    JJ Cummings
    Download
    Run Time: 9:06

    Keywords
    • Log4j
    • vulnerabilities
    • Log4shell

  • Talos Takes : Episode 81
    2021-12-16

    Talos Takes Ep. #81 (XL Edition): Log4J roundtable

    This is a special XL edition of Talos Takes that is a replay of a live stream our amazing researchers put on earlier this week. You’ll hear Matt Olney, Amy Henderson and Vitor Ventura, all from Talos, talk about the Log4J vulnerability that is ruining the internet for everyone right now. They discussed the latest news around the vulnerability, provided advice to users who may be affected (i.e., pretty much everyone) and looked at where we go from here. If you’d like to hear more from us, you can join us LIVE on all of our social media platforms at noon ET on Friday, Dec. 17 for a special episode of Beers with Talos, where we’ll have more updates on Log4J.

    Hosted By:
    Jon Munshaw
    Featuring:
    Matt Olney@kpyke, Amy Henderson@amyhendertweets, and Vitor Ventura@_vventura
    Download
    Run Time: 32:56

    Keywords
    • Log4J
    • vulnerabilities
    • patching
    • malware
    • threats

  • Talos Takes : Episode 80
    2021-12-10

    Talos Takes Ep. #80: I'll have a blue Christmas without a CTIR retainer

    We had to give Brad a few minutes to take an Incident Response victory lap after his team received two major accolades over the past two weeks. But aside from that, it’s also a perfect time to have him on ahead of the holidays. The shopping season is always a favorite time for attackers, so it’s as good a time as any to make sure your incident response plan is polished and practiced. We also take some time to look back on what Incident Response lessons Brad learned in 2021.

    Hosted By:
    Jon Munshaw
    Featuring:
    Brad Garnett@brgarnett
    Download
    Run Time: 9:00

    Keywords
    • incident response
    • spam
    • scams
    • holiday shopping
    • news

  • Talos Takes : Episode 79
    2021-12-03

    Talos Takes Ep. #79: Could Emotet be back?

    Emotet was about a month late for Halloween, because it’s got its zombie costume on. The long-known botnet is showing some signs of life in late 2021 after an international law enforcement takedown earlier this year. Nick Biasini joins Talos Takes this week to discuss what signs we’re seeing to indicate Emotet’s return, and provides some advice as to what we should look out for as we head into 2022.

    Hosted By:
    Jon Munshaw
    Featuring:
    Nick Biasini@InfoSec_Nick
    Download
    Run Time: 5:05

    Keywords
    • Emotet
    • botnet
    • spam
    • email

  • Talos Takes : Episode 78
    2021-11-24

    Talos Takes Ep. #78: Attackers know you are still looking for a PS5 this holiday season

    We know, we know. We do one of these every year. But people still falling for scams, so we still have to keep reminding people how to shop safely online! This year is a bit different than past Black Fridays and Cyber Mondays because of the issues around the supply chain. Attackers are sure to try to convince you that the big gift you want this year won’t arrive on time so you have to “ACT NOW!” Plus, there’s the continued frenzy to find PlayStation 5s and XBOX Series X/S’s. Jon and Nick talk about scams you’re likely to see while shopping online over the long weekend and provide some helpful tips that anyone can use.

    Hosted By:
    Jon Munshaw
    Featuring:
    Nick Biasini@InfoSec_Nick
    Download
    Run Time: 5:17

    Keywords
    • Black Friday
    • Cyber Monday
    • shopping
    • e-commerce
    • scams
    • spam

  • Talos Takes : Episode 77
    2021-11-19

    Talos Takes Ep. #77: How to safely connect to (and use) public WiFi

    For the first time in Talos Takes’ history, we have a formal crossover with Beers with Talos. Mitch Neff, the host of BWT, joins the show to talk about his horror stories using public WiFi networks. He and Jon discuss the safest ways to interact with large, public network in places like libraries, parks and airports, and potential alternatives to public hotspots.

    Hosted By:
    Jon Munshaw
    Featuring:
    Mitch Neff@MitchNeff
    Download
    Run Time: 8:40

    Keywords
    • WiFi
    • cybersecurity
    • tips
    • cybersecurity basics

  • Talos Takes : Episode 76
    2021-11-12

    Talos Takes Ep. #76: What type of secrets could Kimsuky be after?

    Jon took a break from listening to “Red (Taylor’s Version)” to turn this podcast around quickly to align with our recent research on the Kimsuky APT. This North Korean state-sponsored actor is in the wild again targeting South Korean organizations that house potentially sensitive information. The group set up fake Blogger sites to lure in the victims to read about news related to nuclear disarmament and relations on the Korean peninsula, but instead were hit with infostealing malware. Assheer Malhotra, who helped research and write our latest blog, joins the show to discuss this group’s motivations, what information they may have been looking for, and how Talos helped put a stop to their actions.

    Hosted By:
    Jon Munshaw
    Featuring:
    Asheer Malhotra@asheermalhotra
    Download
    Run Time: 8:16

    Keywords
    • Kimsuky
    • malware
    • APTs
    • state-sponsored
    • spam

  • Talos Takes : Episode 75
    2021-11-05

    Talos Takes Ep. #75 (XL Edition): Building the perfect Incident Response Plan

    We have another special extra large-sized version of Talos Takes this week. Enjoy this recording of a live stream we hosted earlier this week with Martin Lee from our Talos Communications team and Paul Lee from Cisco Talos Incident Response. The Lees discuss how to build the perfect Incident Response Plan. First, Martin walks through the basics of creating, editing and iterating on an IR plan. Then, he’s joined by Paul to ask him a few questions, take some Q&A from the audience and learn about Paul’s experience from the field.

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Martin Lee@mlee_security
    Download
    Run Time: 49:11

    Keywords
    • incident response
    • IR
    • incident response plan
    • CTIR

  • Talos Takes : Episode 74
    2021-10-20

    Talos Takes Ep. #74 (NCSAM Edition AND XL Edition): Q&A session with Talos Incident Response

    This is a double special Talos Takes episode — it’s XL-sized and continues our Cybersecurity Awareness Month theme. This is a recording of our live stream from earlier this week with Brad Garnett, the general manager of Talos Incident Response. Even if you’ve never worked with an incident response team before, or have no idea what IR is, this is a perfect place to start. We provide the tl;dr of the IR process, talk building an IR plan and answer audience questions.

    Hosted By:
    Jon Munshaw
    Featuring:
    Brad Garnett@brgarnett
    Download
    Run Time: 44:24

    Keywords
    • incident response
    • CTIR
    • IR
    • ransomware
    • hybrid work

  • Talos Takes : Episode 73
    2021-10-15

    Talos Takes Ep. #73 (NCSAM edition): Fight back against the phish

    We continue our special series for National Cybersecurity Awareness Month by addressing everyone’s worst nightmare: phish. Who among us hasn’t gotten the call, “We’re trying to reach out about your car’s extended warranty?” In this Talos Takes, Jaeson Schultz, Talos’ foremost spam and phish expert, breaks down spam emails, phone calls and messages for any user. We discuss new trends we’re seeing from attackers in 2021, talk about the best software solutions available and give advice to Jon’s 77-year-old grandmother.

    Hosted By:
    Jon Munshaw
    Featuring:
    Jaeson Schultz@jaesonschultz
    Download
    Run Time: 10:36

    Keywords
    • spam
    • phishing
    • spear-phishing
    • email

  • Talos Takes : Episode 72
    2021-10-08

    Talos Takes Ep. #72: Emergency Apache HTTP Server episode

    Sorry for dropping two episodes in the feed in one day, but we also needed to find time to talk about the critical zero-day vulnerability in Apache HTTP Server. An attacker could exploit this vulnerability to perform path traversal and eventually remote code execution. Patch for this one as soon as possible, and use the Snort rule we have available now.

    Hosted By:
    Jon Munshaw
    Featuring:
    Nick Biasini@InfoSec_Nick
    Download
    Run Time: 5:06

    Keywords
    • Apache
    • patching
    • vulnerabilities

  • Talos Takes : Episode 71
    2021-10-08

    Talos Takes Ep. #71 (NCSAM Edition): 2021 in ransomware

    We are from the first (or last) people to say this, but 2021 is the year of ransomware. It’s by far the biggest story on the security landscape right now. And everything from oil pipelines, to grain co-ops, to hospitals and schools have been targeted by ransomware this year. Azim Khodjibaev joins the show for National Cybersecurity Awareness Month to wrap up everything we’ve seen on the ransomware landscape this year. Azim reflects on his interview with a LockBit operator, the research he’s done into “double extortion campaigns,” and discusses the lessons defenders can learn from the past 10 months.

    Hosted By:
    Jon Munshaw
    Featuring:
    Azim Khodjibaev@AShukuhi
    Download
    Run Time: 6:58

    Keywords
    • ransomware
    • cybersecurity
    • extortion
    • ransom
    • cyber attacks

  • Talos Takes : Episode 70
    2021-09-30

    Talos Takes Ep. #70 (NCSAM edition): For once, a positive spin on hybrid work

    Everyone loves to talk and write about how tough it is that we are all working remotely during the COVID-19 pandemic. So for once — to celebrate National Cybersecurity Awareness Month — Talos Takes wants to talk about the positives! Christopher Marshall, the head of Talos’ detection research team, joins the show to discuss how he’s kept his team’s morale up during this time. Cybersecurity is a rough industry to be in, regardless of any external factors. So it’s important for him to avoid employee burnout and turnover. He and Jon also discuss the positives of working remotely, what they’re most looking forward to when they can go back into the office and their favorite pandemic-era hobbies.

    Hosted By:
    Jon Munshaw
    Featuring:
    Christopher Marshall@GMTA_Marshall
    Download
    Run Time: 9:22

    Keywords
    • work from home
    • COVID
    • burnout
    • hiring
    • security

  • Talos Takes : Episode 69
    2021-09-24

    Talos Takes Ep. #69: Our armadillo in shining armor

    Asheer Malhotra joins the show to once again cover a cyber attack in South Asia. This time, it’s an attacker that looks and smells like an APT, but may just be a run-of-the-mill crimeware gang. Asheer discusses he and his colleagues’ research into Operation: Armor Piercer, a campaign targeted at government agencies and military contractors. Needless to say, these are high-profile targets. Find out what this group wants and why they’re aping so much from other groups like Transparent Tribe and SideCopy.

    Hosted By:
    Jon Munshaw
    Featuring:
    Asheer Malhotra@asheermalhotra
    Download
    Run Time: 10:00

    Keywords
    • RATs
    • malware
    • APTs
    • spam
    • MFA

  • Talos Takes : Episode 68
    2021-09-17

    Talos Takes Ep. #68: It's a bird, it's a plane, it's some rats!

    Allow Vitor Ventura to take you on a journey of discovery, threat actors and attribution. He recently assisted with an investigation into a series of malware and spam campaigns using aviation-themed lures. These include fake flight itineraries, invoices and more. Vitor joins us on this week’s Talos Takes episode to discuss what he learned during this process, including how he connected the campaigns, what he learned (and couldn’t learn) about the actor behind them, and what he’ll take away into his next research. This is a great episode for anyone who is wondering about what kinds of pitfalls are out there for a security researcher.

    Hosted By:
    Jon Munshaw
    Featuring:
    Vitor Ventura@_vventura
    Download
    Run Time: 6:17

    Keywords
    • malware
    • spam
    • email