Beers with Talos Podcast
By Cisco Talos
To listen to an audio podcast, mouse over the title and click Play. Open iTunes to download and subscribe to podcasts.
Listen to Talos security experts as they dive into emerging threats, forcing the bad guys to innovate, hacking refrigerators, and other security issues, all with beer.
||ExplicitBWT XL feat. SuperMicro, Giant Patches, and More Mobile Malware||Recorded 10/19/18 - In celebration of EP40 and hitting over 1 million downloads(!!!), we go XL. This EP is a little long, we go a bit deeper than usual to discuss a few things that are highly unusual - namely, the XL patches dropped by Oracle, and the X||10/24/2018||Free||View in iTunes|
||ExplicitVB 2018 Rundown and Prevalent Problems with PDF||Recorded 10/5/18 - Quick chat to get to know this week’s special guests from the Talos Outreach team - Paul Rascagneres, Vanja Svajcer, and Warren Mercer. We discuss everyone’s work being presented at Virus Bulletin, and Paul and Warren being nomina||10/19/2018||Free||View in iTunes|
||ExplicitMore Fun with VPNFilter, Getting Pwnd via Spreadsheet||Recorded 9/21/18 - The whole crew is back together! On the agenda today - VPNFilter part III, now with more known third stage payloads! As much as we have talked about multi-part posts, you know we wouldn’t post if it wasn’t important (on the blog,||9/28/2018||Free||View in iTunes|
||ExplicitSnort 3 Beta Uses Multithreading. It’s Super Effective!||Recorded 9/7/18 - We have Joel back this week (and he is very happy to have himself back), but we lost Matt and we’re still wishing Nigel a speedy recovery from becoming bionic. This EP, we cover the latest findings in Talos MDM research and go over t||9/17/2018||Free||View in iTunes|
||ExplicitThere Are Few Shades in the Grey Market||Recorded 8/24/18 - We’re finally back in the studio after Hacker Summer Camp! Sadly, due to summer vacations and becoming bionic, we are missing Joel and Nigel respectively. We end up discussing most of our topics through the lens of Matt’s frequent||8/30/2018||Free||View in iTunes|
||ExplicitLive from the RiRa at Black Hat||Recorded 8/8/18 - We decided to broadcast while we were all together at Black Hat - and invited everyone over for lunch and beers. Since we had a room full of people, we made this EP “choose your own podcast” and tooks topics from the audience. Neil||8/15/2018||Free||View in iTunes|
||ExplicitClick Here to Assign New Mobile Device Owner||Recorded 7/20/18 - This week, we touch on several topics, but we spend the lion’s share of the EP discussing MDM. We are joined by Aaron Woland and spend a great deal of time discussing how these attacks work and how these are attacks happen to users||7/26/2018||Free||View in iTunes|
||ExplicitChange the Conversation or the People Having It?||Recorded 7/6/18 - This episode is a bit less technical than most as we take on how the security conversation is happening and who is a part of it. Coincidentally (we promise), that dovetails in with Matt’s contention that everybody just needs to stop||7/15/2018||Free||View in iTunes|
||ExplicitLive from Orlando Pt 2: Take All the Things Off the Internet||Recorded 6/13/18 - Still live in Orlando, just this time from the lovely lobby bar at the convention center hotel. We are joined by Lurene Grenier to dig a bit deeper on her keynote from TTRS. Lurene is here to give you the offensive view of attacking y||6/27/2018||Free||View in iTunes|
||ExplicitLive from Cisco Live! - VPNFilter Update and Our First Summit Recap||Recorded 6/12/18 - Special episode for two reasons! To start, we are recording one-take live from CiscoTV Studio B at Cisco Live in Orlando, FL. - which leads to the second reason, there is video of this episode in the show notes blog post! Join us as w||6/21/2018||Free||View in iTunes|
||ExplicitVPNFilter, the Unfiltered Story||Recorded 5/25/18 - As you can expect, this EP focuses on VPNFilter. We discuss how we got involved, why Talos made the decision to disclose when we did, and we cover many details of the malware itself. There is a lot of background to this ongoing discus||5/29/2018||Free||View in iTunes|
||ExplicitThis is a PSA: Stop Clicking. There is No Prince.||Recorded 5/11/18 - First and foremost, we recorded this EP one day before our “birthday”. We want to thank everyone, especially you (the listeners), who have let us do this for the last year racking up over half a million downloads! In this EP, we w||5/16/2018||Free||View in iTunes|
||ExplicitAPT, BGP, RCEs, and an Old RAT||Recorded 4/27/18 - Special guest intro this week from Chippah. We chat about what defines an “APT”, the recent BGP attacks, and the progress of GravityRAT. We also get an update on Vuln Discovery and the spate of recent releases. Matt has specific f||5/4/2018||Free||View in iTunes|
||ExplicitSmart Install, Vuln Process Realities, and Professional Wrestling||Recorded 4/13/18 - We just upgraded all our gear, so naturally we had a straight tech meltdown this week and we saved it the best we could. Matt will sound way better next week. Promise. We cover Smart Installer. Again. But that leads down a discussion||4/20/2018||Free||View in iTunes|
||ExplicitTalos is Holding a Conference, and the Evolving Battle at the Edge||Recorded 3/29/18 - Joel is sitting out this week and Bill Largent from the Outreach team fills in. We are pretty sure he was just wrong late trying to live on Joel Mean Time, which is now a GitHub project thanks to Moses (link below). We cover a wide ra||4/6/2018||Free||View in iTunes|
||ExplicitWE’LL DO IT LIVE!!||Recorded 3/13/18 - LIVE from San Jose, CA. First of all - we still have a podcast and jobs, so ostensibly, we did okay hosting the meeting event we talked about last time. There may have even been an award involved, just sayin'. Since we were all in one||3/19/2018||Free||View in iTunes|
||ExplicitReflections on DDoS and Bad Authentication Schemes||Recorded 3/2/18 - Craig is out this week, but the rest of the crew goes through COINHORDER and Memcached and takes a deeper look at authentication and passwords. We cover an overview of reflection attacks and how some passwords schemes that are meant to||3/8/2018||Free||View in iTunes|
||ExplicitEternal Fauxmance: Attribution Easter Eggs||Recorded 2/16/18 - This week, Mitch learns about starting a show without Matt with no other plans to control Craig in place. The team discusses Olympic Destroyer and then takes on attribution in light of recent developments with Nyetya. We look at what||2/22/2018||Free||View in iTunes|
||ExplicitForget the ASA, Rob Joyce Favorited Craig’s Tweet||Recorded 2/2/18 - Guests two EPs in a row! We are joined by Omar Santos from Cisco PSIRT to discuss CVE-2018-0101, the Cisco ASA Remote Code Execution and Denial of Service Vulnerability. See the PSIRT post below for latest updates. We also discuss Cryp||2/6/2018||Free||View in iTunes|
||ExplicitHow to Hire the Best, Attribution Without Apaches is Useless||It is a packed episode this time! We are joined by Edmund from the Talos Outreach Group to chat about Threat Modeling after we make our way through attribution and Group 123, hipster artisanal patching (hand flipped bits!), and spend a good bit of time||1/26/2018||Free||View in iTunes|
||ExplicitCrypto, Vuln Disco, and the Spectre Meltdown||This is easily our best podcast of 2018 (so far). The crew discusses the recent spike in crypto-mania sweeping the globe and also goes in-depth on how vulnerability discovery plays a critical role in overall security. Plus, the crew all (shockingly) hav||1/17/2018||Free||View in iTunes|
||ExplicitThe "Best" of Beers with Talos 2017||Quotes intended, we think you know why. Mitch takes control to present the best of the first (partial) year of the podcast. He covers some of our guests, some of our favorite non-security bits, and a look back at our in-the-moment view of some of the to||12/29/2017||Free||View in iTunes|
||ExplicitKitties in My Blockchain, Obfuscating Pronunciations, and Other Security Stuff||It’s the last full episode of the year! Thanks to you and the diligent work of Matt’s loving mother, the first 17 EPs of Beers with Talos were downloaded over 200,000 times in 2017! To show our gratitude, we are giving you not one, but TWO roundtabl||12/15/2017||Free||View in iTunes|
||ExplicitGreek Gods, Trojans, and the Spice Girls as Spirit Animals||Matt hijacks the Roundtable to tell us which Spice Girl each host is, because where else does a PR gimmick from KFC lead? Also, what’s worse than clicking a search result and getting a slideshow listicle? Getting a trojan payload when searching for ba||11/21/2017||Free||View in iTunes|
||ExplicitStrong Copy - Bad Rabbit and the Nyetya Connection||The crew takes on Apache OpenOffice vulns and when you need one CVE versus one hundred. We spend a lot of time discussing signal to noise ratio and Twitter canaries getting things wrong. Of course, we also discuss Bad Rabbit, its relationship to Nyetya,||11/2/2017||Free||View in iTunes|
||ExplicitLanding a Job, Phishing Midstream, and Paul’s IDA Palette||In this EP, we take on interviewing and finding a job with technical questions and tests (hint: don’t oversell yourself, and make sure your mute button actually works). We also talk about enabling users with security as opposed to hobbling them. When||10/17/2017||Free||View in iTunes|
||ExplicitRanking Threats and Avoiding Bush League Breach Response||We haven’t gone around the table and introduced ourselves in some time (about 50k downloads ago), so we take the time we usually complain about things at the top of the show to do that. We have seen a massive amount of “top-tier” threats in the la||10/3/2017||Free||View in iTunes|
||ExplicitA Vast CCleanup, Strutting Your Stuff, and the Ex$ploit Economy||Struts - when to patch and when to patch with a vengeance. In light of the Equifax breach, we discuss how patching can make you live better days, Never look back and say, Could have been me. Naturally, that covo leads into the biggest story of the week||9/20/2017||Free||View in iTunes|
||ExplicitIrmaGerd! The Internet Ate Our Podcast||Matt runs the ship this week in Mitch’s absence. Craig and Nigel are joined by Bill Largent and Joel was… in a meeting? The crew discusses ambulance chasing and crying wolf in the security industry and also what the security press is doing to perpet||9/14/2017||Free||View in iTunes|
||ExplicitThis is How the Internet Ends, Not with a Whimper but with Cyber Mercenaries||Off the top: Better late than never? On top of being distributed all around the planet this week, we had some technical issues with our recording platform. Matt’s audio remained a challenge; it is rough this week. Bear with us, the audio quality will||8/28/2017||Free||View in iTunes|
||ExplicitBeing FIRST and Conveying Doubt (That It’s a Conference Hangover)||The BlackHat/DEFCON recovery episode. This one may be a touch rough, with some great gems. We discuss why music in 1994 was so terrible, including a BWT rendition of some classic Ace of Bass. The FIRST tool is discussed in some detail, how using our IDA||8/8/2017||Free||View in iTunes|
||ExplicitThe Doctor is In, Just in Time for Vegas||This is a special episode, we are joined by long-time friend of Talos, Dr. Adam J. O’Donnell, PhD. Adam is the founder/co-founder of many amazing technologies, including Immunet and had created the core technologies of many tools on the frontlines of||7/24/2017||Free||View in iTunes|
||ExplicitWe'll Make Great Pet(ya)s||Nyetya, NotPetya, PetrWrap, ExPetr, whatever you want to call it - although Nyetya is clearly the most clever name, not that Warren and I came up with it or anything - has wrecked havoc on the Ukraine and multinational companies doing business there. Th||7/10/2017||Free||View in iTunes|
||ExplicitThis Podcast is Clearly Fake News||Special guest and Talos team member Sean Baird comes by to discuss the Fake News Challenge - and the Talos team, Solat in the Swen, taking first place in stage 1. Nigel displays a disturbing lack of faith in Python. Joel and Matthew both provide an insa||6/28/2017||Free||View in iTunes|
||ExplicitEnter the Talos, But Please Use a Unique Password||The team discusses how to get into threat intel and join a team like Talos. There are many routes to enter the Talos, but no exits. Seriously, they won’t let me leave. Passwords, vaults, and other access controls are discussed more in-depth as well. M||6/13/2017||Free||View in iTunes|
||ExplicitIt Has Been 0-days Since this Term was Abused||The crew talks about the potential of Samba echoing WannaCry and blocking SMB ports (but you already did that, RIGHT?). Also, get a history lesson and proper usage guidance on words like 0-day, backdoor, and other terms that the industry loves to hype a||5/30/2017||Free||View in iTunes|
||ExplicitOMG I Just WannaCry||Friday May 12 brought us the WannaCry/wcrypt ransomware worm. In this podcast dedicated entirely to WannaCry, Craig, Joel and Mitch are joined by Matt Olney, head of the threat intelligence group at Talos, and Warren Mercer, Talos Tech Lead. We discuss||5/17/2017||Free||View in iTunes|
||ExplicitFCC SNAFU, ROKRAT, FUD, and Other Fun Acronyms (OFAs)||Discussion around what's real and what's not with recent FCC decisions, FUD in the security press, ROKRAT hitting selected targets in South Korea, and if software itself can be illegal. Bonus topic: Mayor Joel was once a real thing.||5/12/2017||Free||View in iTunes|
||ExplicitNecurs (Predictably) Returns, Video Games are a Gateway Hack||Craig, Nigel, Joel and Mitch discuss spam resurgence via Necurs waking up, vuln dev in niche spaces, Crypt010cker, and hacking video games as a gateway drug for researchers.||5/12/2017||Free||View in iTunes|
||ExplicitIf You Must Break the IoT, Please Do It Responsibly||Four guys from Talos talking about breaking IoT, responsible vulnerability disclosure, and finding new malware...written in Go.||5/12/2017||Free||View in iTunes|
I'm the host, so...
You'll be shocked to see that I gave this podcast 5-stars, I know. To be honest, I almost gave it 4-stars based solely on how long it takes to edit out all of Joel's nonsense babbling. However, I really think the other hosts make up for his yammering on about things. It's a amaizng to get to work with people who are so knowledgeable and helpful. Just this morning I told Nigel I was going to make fun of him in my review and instead of getting angry, he sent me some drone pictures of my dog playing in my backyard! How nice is that! I didn't even know he knew where my house was!
Such Beautiful Banter
Spare yourself the additional research that comes with listening to news reporters pretending to understand cyber security, just listen to these guys instead. They're level headed(ish) and know what their talking about cause they deal with security for a living. It's like listening to conversations amongst really intellegent people, whom also happen to spend a lot of time in bars. It just works.
What a group! Beers with Talos is both educational and entertaining. These guys keep your network safe..A podcast "must" for anyone interested in Cyber Security.