Beers with Talos (BWT) Podcast episode No. 120 is now available. Download this episode and subscribe to Beers with Talos:

Recorded April 6, 2022

If iTunes and Google Play aren't your thing, click here.

The trend of special guests continues, this time with Nate Pors from Cisco Talos Incident Response. Nate joins the crew to talk about multi-factor authentication and how attackers are finding new ways to "prompt bomb" users to trick them into letting bad guys in the door, and other ways bad guys are finding ways to get around MFA.

Also, Matt has to eat some humble pie regarding the FBI's takedown of the Cyclops Blink wireless router malware, which leads the crew to reflect on VPNFilter.

The timeline:

  • 01:00 — Roundtable: Mitch is sick, and an even more sick fox in D.C.
  • 16:02 — New ways in which threat actors are circumventing multi-factor authentication
  • 34:34 — An update on the Cyclops Blink router malware
  • 39:31 — Parting shots, closing thoughts: Who would win in a fight between the members of The Highwaymen?

FBI announcement on Cyclops Blink takedown

Lapsus$ and SolarWinds attackers use same prompt-bombing technique

The rabid fox in D.C.


Featuring: Liz Waddell (@vlsin), Nate Pors and Matt Olney (@kpyke).
Hosted by Mitch Neff (@MitchNeff).

Subscribe via iTunes (and leave a review!)

Check out the Talos Threat Research Blog

Subscribe to the Threat Source newsletter

Follow Talos on Twitter and Instagram

Give us your feedback and suggestions for topics: beerswithtalos@cisco.com