Listen to Talos security experts as they dive into emerging threats, forcing the bad guys to innovate, hacking refrigerators, and other security issues, all with beer.

  • Beers With Talos : Episode 77
    2020-04-14

    Quittin’ Time, vol. 1 - Tigers and Tales of the In-Between

    Recorded April 3, 2020 – We’re kinda bored. We figured you are too. So we decided to get together between normal recordings to help save you from the bottom of the Netflix barrel. It gets weird down there. These Quittin’ Time eps are just the crew hanging out for a bit without a security topic agenda. Sans. None of that. Honestly, if you’re not a fan of the banter in the Roundtable and Closing Thoughts segments, this …probably isn’t your cup of tea. Anyway, we have fun getting together and feeling more normal for a bit, we hope you have fun listening to the heavily edited version of that. Send us your questions for the next QT ep - @TalosSecurity #BWT. Full show notes available on the Talos blog.

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 43:49

    Keywords
    • talos
    • not security
    • quittin time
    • tiger king
    • WFH

  • Beers With Talos : Episode 76
    2020-04-06

    When Security Hits Home (and Stays)

    Our goal is always to talk to you about what’s on our minds. Right now, we are pretty sure we all have the same thing on our minds. In addition to our regular show material, we want to talk through some of the things that we are dealing with professionally and personally in the hopes that it applies and is useful to you. To that end, we asked Sammi Seaman (our Education coordinator and resident mega-extrovert) to stop by and chat with us about the challenges of working from home and shifting the way we work. We aren’t breaking any massive news and threats this week, rather we are talking about what the industry is thinking about. As a heads up, we are increasing episodes from biweekly to weekly, and rotating in different topics while we’re all stuck at home. Hopefully, this is helpful for you and us both.

    Drop us a tweet and let us know what is on your mind. Be safe, and wash your hands, you filthy animals. Full show notes on the Talos blog.

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    Sammi Seaman@sammijsea
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 47:17

    Keywords
    • talos
    • security
    • WFH
    • remote
    • extroverts

  • Beers With Talos : Episode 75
    2020-03-20

    Now That Coronavirus Made a Global WFH Policy...

    Recorded 3/13/20 - Of course we have to talk about the implications of Coronavirus to the way business and security are getting done. While everything about the COVID-19 pandemic seems to be a fluid situation, a rare constant has been the same rehashed disaster scams. But that could quickly change with the mass shift toward remote work. This episode takes a look at both securing that shift as well as practical advice for those of us finding ourselves as newly remote employees.
    Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 33:41

    Keywords
    • talos
    • security
    • COVID-19
    • Corona
    • WFH
    • remote worker

  • Beers With Talos : Episode 74
    2020-03-12

    Impacting Civil Society

    Recorded 3/02/20 - We open up the show with a sugary sweet poem before talking about RSA and our annual trip through the startup hall. Matt expertly segues the crew into talking about the impact the security industry can have on public-interest technologies and civil society - both in the industry sense as well as in the interpersonal sense. FInally, we take a look at opposing mindsets and approaches, discussing how partnering with an adversarial approach is not near the oxymoron it seems. Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 41:53

    Keywords
    • talos
    • security
    • RSA
    • public technology
    • civil society

  • Beers With Talos : Episode 73
    2020-02-27

    Feature Ownership, Vuln Advisories, and Fancy Audio FX

    Recorded 2/19/20 - Craig made an oopsie. He sends his apologies for the echo-chamber reverb. We had no idea until he sent in his audio for mixing, we would never do this to you intentionally. This is a shorter ep focusing on software licencing and features as well as vulnerability disclosure. Join us to talk about vendors abilities to disable feature sets and owning versus using products. We further chat about vulnerabilities and how a vendor with no security advisories is often seen as a “more secure” option, when in fact, that can mean the exact opposite.

    Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 27:35

    Keywords
    • talos
    • security
    • licensing
    • vulnerability disclosure
    • security advisory

  • Beers With Talos : Episode 72
    2020-02-14

    Getting to Patch Day: Understanding Vulnerability Risks and Options

    Recorded 1/31/20 - When a vulnerability is released, regardless if it has a website and logo or not, we need to understand the risk to the network and what defense options are possible before the patch is ready for production. Can you defend against the vulnerability or do you go straight for known exploits? What happens if an exploit occurs? Also discussed: Talos begins releasing Threat Assessment Reports based on IR engagement data and known prevalent threats. Snort has a new series of training and lab videos available for Snort 2 and Snort3. Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 45:15

    Keywords
    • talos
    • security
    • vulnerability
    • Threat Assessment
    • Snort

  • Beers With Talos : Episode 71
    2020-01-31

    I Have the Power(shell)!

    Recorded 1/20/20 - Powershell is a frequent flyer in security headlines - a powerful and oft wielded tool for attackers and defenders alike. This ep takes a look at Powershell and how to help ensure its security posture as an effective management tool. We also look at the missing-the-forrest-for-the-trees concept of behind being concerned about the latest shiny ATP before all else. Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 50:15

    Keywords
    • talos
    • security
    • Powershell
    • defense in depth
    • APT

  • Beers With Talos : Episode 70
    2020-01-16

    Semper Vigilantes - Strategic Defense in a Cyber Conflict

    Recorded 1/6/20 - There is a looming cyber conflict on the horizon between the US and Iran. We use all our time this week to discuss the situation at hand and take a hard look at what you should have already done foundationally. The crew offers insight and analysis of what nation-state cyber conflict looks like and what you can do to elevate your security strategy to the next level in an uncertain time of increased suspicion.

    Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 49:50

    Keywords
    • talos
    • security
    • Iran
    • defense in depth
    • APT

  • Beers With Talos : Episode 69
    2020-01-06

    2019 Threat Recap - RATs, Turtles, and Worms!

    Recorded 12/20/19 - In a shorter year-end EP, we take a look back and a look forward. It seems everyone else wants to break out the crystal ball this time of year and prognosticate the coming year’s threat landscape. We don’t have one of those, so we used a Magic 8-ball, but we’re pretty confident the results are as-good or better. However, most of the EP is dedicated to going through the notable security events of the past year. We take a look at the lasting effects and lessons learned from 2019’s biggest threats.

    Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 39:23

    Keywords
    • talos
    • security
    • recap
    • 2019
    • malware
    • threats

  • Beers With Talos : Episode 68
    2019-12-17

    Takes from Talos on IoT (and the NEW “Talos Takes” podcast announced!)

    Recorded 12/9/19 - We have a big announcement to make today! Check your feed for a few Ep’s of a new podcast from Talos - “Talos Takes”. On this Ep of BWT, we welcome Joe Marshall to the table - Joe is a Talos ICS/IoT tech lead and he stops by to discuss issues in the IoT space - macro and micro, from both the vendor and user perspectives. Check out the crew’s advice on staying secure in this IoT gift giving season. We will see you in the new year, and thanks for listening in 2019. Merry Christmas and Happy Holidays to all!!!

    Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 44:05

    Keywords
    • talos
    • security
    • IoT
    • ICS
    • Python

  • Beers With Talos : Episode 67
    2019-12-09

    Inside Incident Response

    Craig is out sick/injured/fighting robots (actually all three), so we brought in Sean Mason from Talos IR to talk shop today and give you the inside scoop on IR (and Sean’s next-level beard care regimen). How do incidents affect the enterprise and consumers? How has the advent of widespread ransomware fundamentally shifted the burden of responsibility in the c-suite and what have been the outcomes? What does a responder have in the bag when they arrive on-site? Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    Sean Mason@SeanAMason
    Featuring:
    Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 56:10

    Keywords
    • talos
    • security
    • Incident response
    • threats
    • proactive security

  • Beers With Talos : Episode 66
    2019-11-20

    I Choose YOU! Attackers view of targets, RLAs, and scam season

    Recorded 11/8/19 - Joel is out on PTO, so Mitch, Matt, Nigel, and Craig carry the banner this EP discussing how attackers approach targets like investors looks at portfolio. We also talk about how the most recent off-cycle elections in the US give us a glimpse of improvements and changes in election security. Finally, we take a quick look at popular scams and how attackers use seasonality to increase the relevance of their scam for emotional response. Full notes on the Talos Blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 46:15

    Keywords
    • talos
    • security
    • threat landscape
    • election security
    • scammers

  • Beers With Talos : Episode 65
    2019-11-05

    Please Welcome to the Show… Talos Incident Response

    Recorded 10/25/19 - Today is a bit different. We normally keep things pretty neutral on this show (not really), but today is all about the new service Talos is launching - say hello to Talos Incident Response. Amy Henderson from the Talos Intel and Interdiction group joins us as we discuss the full circle of threat intelligence - from global visibility to hyper local context, and how IR allows those feed each other to the improvement of both. Listen to the announcement as we discuss what IR is, what it means in general, and what Talos brings to that equation. We hope you are half as excited as we are, because that is still pretty dang excited. Lastly, Craig isn’t with us today, but you get to decide his fate for being dishonest with you, dear listeners. We will deliver you justice.

    Full show notes - and more in-depth info on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    Amy Henderson@amyhendertweets
    Featuring:
    Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 53:57

    Keywords
    • talos
    • security
    • incident response

  • Beers With Talos : Episode 64
    2019-10-25

    Your Problem Isn’t Complex, Its Simply Complexity

    Recorded 10/10/19 - This EP lives up to it’s name, by trying to only take on a minimal topic and then becoming completely convoluted. We start of with an extended round table (I even cut like half of it out) and then start talking about the trials and tribulations of making things too complex - from software to network design. If the devil is in the details, then the danger is in there being too many of them. We take two simple examples - PDF readers and a trip to the doctors office - and look at how the complexity jammed into the tech around these two things is where things become disturbingly dangerous.

    Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 56:29

    Keywords
    • talos
    • security
    • complexity
    • vulnerability
    • encryption
    • data

  • Beers With Talos : Episode 63
    2019-10-11

    The Third Law of Thermodynamics

    Recorded 9/27/19 - We are down Matt and Joel today, so Mitch, Craig, and Nigel are taking you through this EP. We cover some recent posts from Talos with Divergent and Tortoiseshell. Turns out, people get a bit excited when you target US veterans with malware - even other malware authors thinks that’s scummy. That takes us into a chat about social engineering in general and we end up talking about some interesting stuff with unpatchable vulns and why deleting /var on install could be described as a bad idea for a Chrome update.

    Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig and Nigel Houghton@EnglishLFC
    Download
    Run Time: 57:24

    Keywords
    • talos
    • security
    • social engineering
    • Divergent
    • Tortoiseshell
    • VPN