Talos Takes

Talos’ spin on security news

Every week, host Jon Munshaw brings on a new guest from Talos or the broader Cisco Secure world to break down a complicated security topic in just five or 10 minutes. We cover everything from breaking news to attacker trends and emerging threats.

Subscribe
  • Talos Takes
    2022-08-12

    Talos Takes Ep. #86: The fallout from the recent REvil arrests

    In the latest entry in the “Days of our Ransomware” series, Azim Khodjibaev joins Jon to talk about some recent ransomware drama. Dark web forums have been going nuts since Russia arrested and charged several alleged members of the REvil ransomware gang in January. Azim discusses how there’s been a power grab since those arrests, and we discuss what else it might take to shut down many of these wide-reaching ransomware groups. Threat actors: They get into the same petty arguments we all do in Slack.

    Download
    Run Time: 00:08:56

    Keywords
    • ransomware
    • APTs
    • RaaS
    • state-sponsored actors

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #85: ICS as it relates to the current situation in Ukraine

    As the Ukraine situation evolves, we figured it was an important time to check in with the specific threats government agencies across the globe have started to warn us about. Joe Marshall, Talos’ resident industrial control systems expert, joins this week’s episode of Talos Takes to talk about potential threats to Ukraine’s power grid should kinetic warfare break out in the area. We also touch on what potential threats America’s infrastructure faces if our government leaders were to oppose any Russian actions in the region. It’s admittedly a tangled web currently — but for the most current information on this, check out the Talos blog on the topic.

    Download
    Run Time: 00:10:27

    Keywords
    • Ukraine
    • ICS
    • infrastructure
    • cyberwarfare

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #84: Commodity RATs 101

    What’s a commodity RAT? And how does that make it different from your run-of-the-mill RAT? Is that RAT different than a trojan? In this week’s Talos Takes episode, we answer these questions and more to provide you a quick overview of remote access trojans/tools (aka RATs) and how commodity RATS specifically differ from their “normal” brethren. Asheer Malhotra from our Outreach team has been looking at several commodity RATs for months now and is here to take you to class for 10 minutes.

    Download
    Run Time: 00:09:24

    Keywords
    • RATs
    • trojans
    • malware
    • cybersecurity basics

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #81 (XL Edition): Log4J roundtable

    This is a special XL edition of Talos Takes that is a replay of a live stream our amazing researchers put on earlier this week. You’ll hear Matt Olney, Amy Henderson and Vitor Ventura, all from Talos, talk about the Log4J vulnerability that is ruining the internet for everyone right now. They discussed the latest news around the vulnerability, provided advice to users who may be affected (i.e., pretty much everyone) and looked at where we go from here. If you’d like to hear more from us, you can join us LIVE on all of our social media platforms at noon ET on Friday, Dec. 17 for a special episode of Beers with Talos, where we’ll have more updates on Log4J.

    Download
    Run Time: 00:32:56

    Keywords
    • Log4J
    • vulnerabilities
    • patching
    • malware
    • threats

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #82: Log4j followed us into 2022

    We thought it was usually all about “New year, new me,” heading into 2022, but turns out it’s the same cybersecurity problems. Join host Jon Munshaw as he welcomes on threat researcher JJ Cummings to discuss how the Log4j vulnerability event evolved over the holiday break. JJ, who you may recognized from our recent live Beers with Talos episode, discusses the new CVE that popped up the week after Christmas, and then discusses what things he and his team will be looking into regarding Log4shell in 2022.

    Download
    Run Time: 00:09:05

    Keywords
    • Log4j
    • vulnerabilities
    • Log4shell

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #83: The latest on the cybersecurity situation in Ukraine

    Jon Munshaw and Nick Biasini sit down for a few minutes to discuss the latest on the ongoing cyber attacks and security concerns in Ukraine. They discuss how a recent set of attacks against government-run websites compares to past attacks like NotPetya, and provide guidance for any companies who may be based in, or do business in, Ukraine. For more of Talos’ insight on this, please continue to check back on our blog post here.

    Download
    Run Time: 00:06:07

    Keywords
    • NotPetya
    • Ukraine
    • Russia

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #80: I'll have a blue Christmas without a CTIR retainer

    We had to give Brad a few minutes to take an Incident Response victory lap after his team received two major accolades over the past two weeks. But aside from that, it’s also a perfect time to have him on ahead of the holidays. The shopping season is always a favorite time for attackers, so it’s as good a time as any to make sure your incident response plan is polished and practiced. We also take some time to look back on what Incident Response lessons Brad learned in 2021.

    Download
    Run Time: 00:09:00

    Keywords
    • incident response
    • spam
    • scams
    • holiday shopping
    • news

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #79: Could Emotet be back?

    Emotet was about a month late for Halloween, because it’s got its zombie costume on. The long-known botnet is showing some signs of life in late 2021 after an international law enforcement takedown earlier this year. Nick Biasini joins Talos Takes this week to discuss what signs we’re seeing to indicate Emotet’s return, and provides some advice as to what we should look out for as we head into 2022.

    Download
    Run Time: 00:05:05

    Keywords
    • Emotet
    • botnet
    • spam
    • email

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #78: Attackers know you are still looking for a PS5 this holiday season

    We know, we know. We do one of these every year. But people still falling for scams, so we still have to keep reminding people how to shop safely online! This year is a bit different than past Black Fridays and Cyber Mondays because of the issues around the supply chain. Attackers are sure to try to convince you that the big gift you want this year won’t arrive on time so you have to “ACT NOW!” Plus, there’s the continued frenzy to find PlayStation 5s and XBOX Series X/S’s. Jon and Nick talk about scams you’re likely to see while shopping online over the long weekend and provide some helpful tips that anyone can use.

    Download
    Run Time: 00:05:16

    Keywords
    • Black Friday
    • Cyber Monday
    • shopping
    • e-commerce
    • scams
    • spam

  • Talos Takes
    2022-08-12

    Talos Takes Ep. #75 (XL Edition): Building the perfect Incident Response Plan

    We have another special extra large-sized version of Talos Takes this week. Enjoy this recording of a live stream we hosted earlier this week with Martin Lee from our Talos Communications team and Paul Lee from Cisco Talos Incident Response. The Lees discuss how to build the perfect Incident Response Plan. First, Martin walks through the basics of creating, editing and iterating on an IR plan. Then, he’s joined by Paul to ask him a few questions, take some Q&A from the audience and learn about Paul’s experience from the field.

    Download
    Run Time: 00:49:11

    Keywords
    • incident response
    • IR
    • incident response plan
    • CTIR