Listen to Talos security experts as they bring their hot takes on current security topics and Talos research to the table. Along the way Mitch, Liz, Matt and a rotating chair of special guests will talk about anything (and we mean anything) that's on their minds, from the latest YouTube trends to Olympic curling etiquette. New episodes every other Thursday.

  • Beers With Talos
    2022-08-12

    Beers with Talos Ep. #121: The ghost of conferences past

    We wanted to prep for the RSA/Cisco Live stretch of June by looking back on security conferences past. Mitch, Matt and Liz got together to talk about their best and worst conference memories. Plus, Mitch has an overview of everything Talos is doing at RSA and Cisco Live, including a LIVE episode of Beers with Talos next week at RSA. There is a little security talk at least, as we also cover the latest goings on between the Conti ransomware group and Costa Rica’s government.

    Download
    Run Time: 00:29:10

    Keywords
    • conferences
    • Cisco Live
    • RSA
    • Conti
    • ransomware
    • Hive

  • Beers With Talos
    2022-08-12

    Beers with Talos Ep. #123 (FIXED!): Hunting for ransomware actors on *whispers* the dark web

    Re-uploaded on July 22, 2022 to fix audio issues —

    We’re back from RSA, Cisco Live and COVID breaks (yes, those things are all absolutely related). Paul Eubanks joins the show to talk about his recent blog post on unmasking ransomware actors on the dark web. He’ll go over several different tactics he and his team use to remove actors’ anonymity that’s so important when actors are working on these websites. Liz provides her take on this from an Incident Response perspective, and Matt semi-pays attention as he ponders how much he hates The Carpenters.

    Download
    Run Time: 00:35:35

    Keywords
    • ransomware
    • cybersecurity
    • extortion
    • ransom
    • cyber attacks

  • Beers With Talos
    2022-08-12

    Beers with Talos Ep. #124: There's no such thing as "I have nothing to hide"

    We’ve all heard that popular refrain by now: “Well I have nothing to hide so I don’t care if the government sees my data.” This week, we tell these people they are completely wrong. Ashlee Benge joins the show to discuss her upcoming BlackHat talk on the types of data and personal information health apps track. This has taken on special importance in the overturning of Roe vs. Wade in the U.S, making many forms of abortion illegal in many states. Ashlee talks about how women’s health apps may be compelled to cooperate with law enforcement agencies now after the Supreme Court ruling. We also have a complete rundown of all things Talos happening at BlackHat next week.
    Also, this is unfortunately Liz’s last episode with Beers with Talos. Please bear with us as we figure out the next chapter of the show. Don’t worry though, we’re not going anywhere!

    Download
    Run Time: 00:38:40

    Keywords
    • privacy
    • data
    • apps
    • mobile
    • government
    • BlackHat

  • Beers With Talos
    2022-08-12

    Beers with Talos Ep. #116: Let's talk about the Olympics (but not in the way you were expecting)

    Most people would expect us to approach the Winter Olympics from a security perspective. Why are athletes using burner phones? Are we worried about any state-sponsored attacks? Not this year, folks! Instead, we rank each country’s curling uniforms, discuss the origins of ski jumping and debate which events would be the most difficult to compete in.

    On the actual cybersecurity front, we did carve out some time to discuss two state-sponsored threat actors Talos has written about recently: AridViper and MuddyWater. We look at the maldocs involved in these campaigns and their targets. Matt also expounds on his multiple Twitter threads around the current situation in Ukraine.

    Download
    Run Time: 00:45:22

    Keywords
    • MuddyWater
    • Arid Viper
    • maldocs
    • spam
    • APTs
    • Olympics

  • Beers With Talos
    2021-05-24

    [CROSS-BROADCAST]Security Stories Ep. 27: Dealing with stress, burnout and mental health in the threat intelligence industry

    This is a very different episode in that it isn’t really a BWT episode at all. Hazel Burton from the Security Stories podcast invited Matt and Mitch to come on with the leader of Talos, Matt Watchinski. The idea was to chat with Hazel and her co-hosts Ben and Sana about burnout from three levels of a security research team. What followed as we all started talking was real and unfiltered conversation from many very different points of view. We talked about what has worked, what hasn’t, and our own struggles with self-care while trying to take care of our respective teams, families, and friends – hopefully some of our collective experience is useful to you.

    Original broadcast - Security Stories podcast, ep 27

    Download
    Run Time: 00:58:48

    Keywords
    • Talos
    • security stories
    • burnout
    • mental health

  • Beers With Talos
    2021-05-18

    Supply Chain has Matt Hopping Mad Like a Kangaroo

    Recorded March 30, 2021 – What better way to discuss supply chain attacks than to have Matt demonstrate how easily you can blend your payload into normal operations via Twitter shenanigans? We’re talking about (surprise!) supply chain attacks and how their rise to prevalence is notable, albeit expected. Supply chain gets linked in with privacy concerns as we round out the ep discussing the Signal/Cellebrite situation. Listen to the episode before you read Matt’s tweet (linkedin the full show notes) and see if you can pick the words that were part of his little reindeer game. Your prize is the achievement of a job well done. See the full show notes on the Talos blog

    Download
    Run Time: 00:43:50

    Keywords
    • talos
    • security
    • supply chain
    • privacy
    • mad-libs

  • Beers With Talos
    2021-04-21

    ICS/SCADA Security - The Permanence and People Problems

    Recorded March 2021 – ICS and SCADA systems are deeply embedded all around us in critical infrastructure. Today we talk about some of the inherent issues in infrastructure security and take a wide-ranging look at the ICS- and SCADA-specific issues found there. Joe Marshall from the Talos Outreach group joins to share his insights on the space and how donuts are the ultimate career track switching tool. Oh- and Matt’s cat discovers jerky.Full show notes on the Talos blog

    Download
    Run Time: 00:42:31

    Keywords
    • talos
    • security
    • ICS
    • SCADA
    • IoT

  • Beers With Talos
    2021-04-07

    Twitter has Questions for Us

    We’ve been quiet for a minute, but we have a few new EPs ready to go, starting with some of your questions from Twitter. And yes, one of the first questions concerns Craig and the robots. Do you have a question you’d like to ask us for the next listener questions episode? Send us a tweet (links below). Ask us anything security related or something else entirely. It’s your question, I’m not going to tell you what to ask. Full show notes on the Talos blog

    Download
    Run Time: 00:32:59

    Keywords
    • talos
    • security
    • twitter
    • audience questions

  • Beers With Talos
    2021-02-09

    The Super Sized Centennial EP

    Recorded January 8, 2020 – It’s hard to believe that we have made 100 episodes of BWT. It easily feels like two or three times that many. This is a long winded show, as we welcome back our buddy Nigel for this special milestone. As an unintentional nod to our early episodes, the opening roundtable gets way off track and we basically host an “In-between” ep in the middle of a regular show. We also dig into supply chain attacks, in light of the recent SolarWinds incident, delving into defensive and IR strategies. Finally, we take a trip into the past remembering some of our favorite moments from the past 100 times I’ve written these show notes.Full show notes on the Talos blog

    Download
    Run Time: 01:15:39

    Keywords
    • talos
    • security
    • supply chain
    • ep 100

  • Beers With Talos
    2021-01-15

    P@ssw0rds and Closing Out 2020

    This EP was recorded toward the end of the year and lived a quiet, but meaningful life in the production queue patiently waiting it’s turn to get released. In this Ep, we dig into a discussion on passwords and some of the issues both conceptually and in practice. Passwords aren’t inherently problematic, but how they are used…sometimes is. We discuss best practices to share with your friends and also touch on MFA (and SMS as an option of last resort). Craig seems to think lock analogies are key to understanding everything. The session was 2 hours long and this is the balance remaining after decency and standards review.

    All of us want to thank you for listening and making three years and (almost)100 episodes of Beers with Talos possible. Cheers. Full show notes on the Talos blog

    Download
    Run Time: 00:28:55

    Keywords
    • talos
    • security
    • passwords
    • mfa
    • pig couch