Listen to Talos security experts as they dive into emerging threats, forcing the bad guys to innovate, hacking refrigerators, and other security issues, all with beer.

  • Beers With Talos : Episode 39
    2018-10-19

    VB 2018 Rundown and Prevalent Problems with PDF

    Recorded 10/5/18 - Quick chat to get to know this week’s special guests from the Talos Outreach team - Paul Rascagneres, Vanja Svajcer, and Warren Mercer. We discuss everyone’s work being presented at Virus Bulletin, and Paul and Warren being nominated the Péter Szőr Award. We also cover a lot of vuln discovery work recently released around various PDF software Full show notes available on the Talos Blog

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guests:
    Warren Mercer@SecurityBeard, Vanja Svajcer@VanjaSvajcer, and Paul Rascagneres@R00tBSD
    Featuring:
    Nigel Houghton@EnglishLFC
    Download
    Run Time: 42:46

    Keywords
    • talos
    • security
    • vulnerability
    • Virus Bulletin
    • PDF

  • Beers With Talos : Episode 38
    2018-09-28

    More Fun with VPNFilter, Getting Pwnd via Spreadsheet

    Recorded 9/21/18 - The whole crew is back together! On the agenda today - VPNFilter part III, now with more known third stage payloads! As much as we have talked about multi-part posts, you know we wouldn’t post if it wasn’t important (on the blog, that is. That rule obvs doesn’t apply here) We are also releasing a related open source tool - WInbox Protocol Dissector. Finally, delve into an AV avoiding DDE and jump off into defense in depth. Full show notes on the Talos blog.

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 40:55

    Keywords
    • Talos
    • security
    • podcast
    • VPNFilter
    • Winbox Dissector

  • Beers With Talos : Episode 37
    2018-09-17

    Snort 3 Beta Uses Multithreading. It’s Super Effective!

    Recorded 9/7/18 - We have Joel back this week (and he is very happy to have himself back), but we lost Matt and we’re still wishing Nigel a speedy recovery from becoming bionic. This EP, we cover the latest findings in Talos MDM research and go over the exciting changes in the newly released Snort 3 beta (your move, Valve.). Bill reprises his role from last week as sentient seat filler that makes good jokes.

    See the full show notes on the Talos blog.

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    William Largent@security_will
    Featuring:
    Craig Williams@security_craig and Joel Esler@JoelEsler
    Download
    Run Time: 43:00

    Keywords
    • Talos
    • security
    • podcast
    • MDM
    • Snort
    • 3 beta

  • Beers With Talos : Episode 36
    2018-08-30

    There Are Few Shades in the Grey Market

    Recorded 8/24/18 - We’re finally back in the studio after Hacker Summer Camp! Sadly, due to summer vacations and becoming bionic, we are missing Joel and Nigel respectively. We end up discussing most of our topics through the lens of Matt’s frequent Twitter polls. We also find out he bribes followers with free sporks. Craig brings the discussion on the details of Remcos, and go through some interesting points on the emerging grey markets in security software and vuln disco. The crew closes this episode discussing the hypothetical merits of perfect patching versus perfect visibility.

    Full show notes on the Talos Blog

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    William Largent@security_will
    Featuring:
    Craig Williams@security_craig and Matt Olney@kpyke
    Download
    Run Time: 51:53

    Keywords
    • Talos
    • security
    • podcast
    • Remcos
    • grey market

  • Beers With Talos : Episode 35
    2018-08-16

    Live from the RiRa at Black Hat

    Recorded 8/8/18 - We decided to broadcast while we were all together at Black Hat - and invited everyone over for lunch and beers. Since we had a room full of people, we made this EP “choose your own podcast” and tooks topics from the audience. Neil Jenkins from the Cyber Threat Alliance came by to bestow befitting superhero swag on Matt and Adam for their work on VPNFilter. Headlining this event is our very special guest - Dave Bittner from The CyberWire. Full show notes podcast blog post

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    Dave Bittner@bittner
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 01:22:27

    Keywords
    • talos
    • security
    • black hat
    • defcon
    • cyberwire
    • cyber threat alliance

  • Beers With Talos : Episode 34
    2018-07-26

    Click Here to Assign New Mobile Device Owner

    Recorded 7/20/18 - This week, we touch on several topics, but we spend the lion’s share of the EP discussing MDM. We are joined by Aaron Woland and spend a great deal of time discussing how these attacks work and how these are attacks happen to users of all devices across platforms. We talk about the differences in how MDM is handled across different OS flavors, and the similarities in how the attacks happen (hint: users ignoring the warnings). Click here for the full show notes on the blog

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    Aaron Woland@AaronWoland
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 1:07:47

    Keywords
    • Talos
    • security
    • podcast
    • MDM
    • vuln discovery

  • Beers With Talos : Episode 33
    2018-07-15

    Change the Conversation or the People Having It?

    Recorded 7/6/18 - This episode is a bit less technical than most as we take on how the security conversation is happening and who is a part of it. Coincidentally (we promise), that dovetails in with Matt’s contention that everybody just needs to stop acting with unending self-interest. Once again, Craig goes on vacation and all hell breaks loose, giving birth to a new concept in ransomware - Send us Bitcoin or we send Craig to a remote island for a month. Also - we are going to be doing a live EP from BalckHat! Registration link and full show notes available on the Talos blog.

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 48:10

    Keywords
    • talos
    • security
    • thanatos
    • community

  • Beers With Talos : Episode 32
    2018-06-27

    Live from Orlando Pt 2: Take All the Things Off the Internet

    Recorded 6/13/18 - Still live in Orlando, just this time from the lovely lobby bar at the convention center hotel. We are joined by Lurene Grenier to dig a bit deeper on her keynote from TTRS. Lurene is here to give you the offensive view of attacking your network. If you want a hot take on defense from someone who is pure offense, well… buckle up and break out your cord cutting scissors. You are already saying “We can’t do that!” Lurene is telling you that if you decide to take this seriously enough, you can and should.

    Full show notes on the Talos blog

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    Lurene Grenier
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 45:42

    Keywords
    • talos
    • security
    • Lurene
    • TTRS
    • segmentation

  • Beers With Talos : Episode 31
    2018-06-21

    Live from Cisco Live! - VPNFilter Update and Our First Summit Recap

    Recorded 6/12/18 - Special episode for two reasons! To start, we are recording one-take live from CiscoTV Studio B at Cisco Live in Orlando, FL. - which leads to the second reason, there is video of this episode in the show notes blog post! Join us as we cover the VPNFilter update Talos released June 6th and we recap the inaugural Cisco Talos Threat Research Summit. Check out the full show notes
    Ed. Note - This is what no content editing looks like

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 1:05:26

    Keywords
    • talos
    • VPNFilter
    • Cisco Live
    • Threat Research Summit

  • Beers With Talos : Episode 30
    2018-05-29

    VPNFilter, the Unfiltered Story

    Recorded 5/25/18 - As you can expect, this EP focuses on VPNFilter. We discuss how we got involved, why Talos made the decision to disclose when we did, and we cover many details of the malware itself. There is a lot of background to this ongoing discussion. Take a peek behind the curtain of the defense against this attack as we cover many different aspects of the malware, the attack, and the mitigation. Show notes on the Talos Blog

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 1:01:12

    Keywords
    • talos
    • security
    • router security
    • APT
    • VPNFilter
    • VPN Filter

  • Beers With Talos : Episode 29
    2018-05-17

    This is a PSA: Stop Clicking. There is No Prince.

    Recorded 5/11/18 - First and foremost, we recorded this EP one day before our “birthday”. We want to thank everyone, especially you (the listeners), who have let us do this for the last year racking up over half a million downloads!

    In this EP, we welcome special guest Nick Biasini from Talos Outreach - we set out to talk about several topics, but spend most of our time with Nick around the idea of building a stronger culture of cybersecurity and what it would take to raise the baseline. We are missing Matt this week, and hope he had an amazing time following the DMB tour up to Burlington or whatever he was doing.

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    Nick Biasini@InfoSec_Nick
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 56:19

    Keywords
    • talos
    • security
    • security baseline
    • gandcrab
    • mysql multi-master

  • Beers With Talos : Episode 28
    2018-05-05

    APT, BGP, RCEs, and an Old RAT

    Recorded 4/27/18 - Special guest intro this week from Chippah. We chat about what defines an “APT”, the recent BGP attacks, and the progress of GravityRAT. We also get an update on Vuln Discovery and the spate of recent releases. Matt has specific feelings about USB-C and his new computer.

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 51:52

    Keywords
    • talos
    • security
    • router security
    • APT
    • BGP
    • GravityRAT
    • Vuln Disco

  • Beers With Talos : Episode 27
    2018-04-20

    Smart Install, Vuln Process Realities, and Professional Wrestling

    Recorded 4/13/18 - We just upgraded all our gear, so naturally we had a straight tech meltdown this week and we saved it the best we could. Matt will sound way better next week. Promise. We cover Smart Installer. Again. But that leads down a discussion of security versus convenience that leads to us discussing the process of vuln disclosure - how vendor discussions, release dates, and policies work in the real world. Seriously, we grounded Matt’s computer for misbehaving with the audio.

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 51:07

    Keywords
    • Security
    • threat intel
    • smart install
    • vulnerability discovery
    • talos threat summit

  • Beers With Talos : Episode 26
    2018-04-06

    Talos is Holding a Conference, and the Evolving Battle at the Edge

    Recorded 3/29/18 - Joel is sitting out this week and Bill Largent from the Outreach team fills in. We are pretty sure he was just wrong late trying to live on Joel Mean Time, which is now a GitHub project thanks to Moses (link below). We cover a wide range in this episode, so stay with us! We chat about the Talos Threat Research Summit coming in June, we wonder where the carrots to match the sticks in security are, and the value of finding your own damn vulns. The last part of the show starts with discussing GoScanSSH which ends up being a discussion on the larger battle for the edge.

    Hosted By:
    Mitch Neff@MitchNeff
    Featuring:
    Craig Williams@security_craig, Matt Olney@kpyke, Nigel Houghton@EnglishLFC, and William Largent@security_will
    Download
    Run Time: 1:04:13

    Keywords
    • talos
    • threat research summit
    • goscanssh
    • security
    • vulnerability research

  • Beers With Talos : Episode 25
    2018-03-20

    WE’LL DO IT LIVE!!

    Recorded 3/13/18 - LIVE from San Jose, CA.
    First of all - we still have a podcast and jobs, so ostensibly, we did okay hosting the meeting event we talked about last time. There may have even been an award involved, just sayin’. Since we were all in one place together and we didn’t get fired, we decided to do our podcast live after the meeting for an audience. We are joined by Talos Sr. Director Matt Watchinski this episode, discussing such existential questions as “why security?” and more concrete things like nation state vs. cybercriminal actors and their differing motivations. We also discuss router security and network devices as a preferred attack vector for advanced actors. Special bonus: Matt beats perhaps the last laugh out of the dead horse that is Paul Revere himself. #CantBooShowNotes

    Hosted By:
    Mitch Neff@MitchNeff
    Special Guest:
    Matt Watchinski@KMX2600
    Featuring:
    Craig Williams@security_craig, Joel Esler@JoelEsler, Matt Olney@kpyke, and Nigel Houghton@EnglishLFC
    Download
    Run Time: 1:01:00

    Keywords
    • talos
    • security
    • router security
    • APT
    • cybercriminals
    • LIVE