Friday, October 11, 2019

Beers with Talos Ep. #63: The third law of thermodynamics


Beers with Talos (BWT) Podcast episode No. 63 is now available. Download this episode and subscribe to Beers with Talos:

If iTunes and Google Play aren't your thing, click here.

Recorded Sept. 27, 2019 

We are missing Matt and Joel this time, so Mitch, Craig and Nigel are taking you through this episode. We cover some recent posts from Talos with Divergent and Tortoiseshell. Turns out, people get a bit excited when you target U.S. veterans with malware — even other malware authors thinks that’s scummy. That takes us into a chat about social engineering in general, and we end up talking about some interesting stuff with unpatchable vulnerabilities and why deleting /var on install could be described as "a bad idea" for a Google Chrome update.

The timeline:

  • 01:00 — Roundtable: Hammering off your thumb...guess who did that one?
  • 09:30 — Divergent LO(BYOL)Bins: Bringing NodeJS with you does not a LOLbin make
  • 19:45 — Tortoiseshell: Social engineering vets looking for jobs makes you a special kind of scumbag
  • 34:00 — Social engineering and Newton’s third law
  • 38:30 — Selecting VPN providers that don’t make you the product
  • 45:00 — Unpatchable BootROM zero-day in iPhones, and let's delete /var!
  • 52:30 — Closing shots and parting thoughts

Some other links:

==========

Featuring: Craig Williams (@Security_Craig) and Nigel Houghton (@EnglishLFC).
Hosted by Mitch Neff (@MitchNeff)

Subscribe via iTunes (and leave a review!)


Subscribe to the Threat Source newsletter


Give us your feedback and suggestions for topics: beerswithtalos@cisco.com

No comments:

Post a Comment