Beers with Talos (BWT) Podcast episode No. 120 is now available. Download this episode and subscribe to Beers with Talos:
Recorded April 6, 2022
If iTunes and Google Play aren't your thing, click here.
The trend of special guests continues, this time with Nate Pors from Cisco Talos Incident Response. Nate joins the crew to talk about multi-factor authentication and how attackers are finding new ways to "prompt bomb" users to trick them into letting bad guys in the door, and other ways bad guys are finding ways to get around MFA.
Also, Matt has to eat some humble pie regarding the FBI's takedown of the Cyclops Blink wireless router malware, which leads the crew to reflect on VPNFilter.
The timeline:
- 01:00 — Roundtable: Mitch is sick, and an even more sick fox in D.C.
- 16:02 — New ways in which threat actors are circumventing multi-factor authentication
- 34:34 — An update on the Cyclops Blink router malware
- 39:31 — Parting shots, closing thoughts: Who would win in a fight between the members of The Highwaymen?
The links:
FBI announcement on Cyclops Blink takedown
Lapsus$ and SolarWinds attackers use same prompt-bombing technique
Featuring: Liz Waddell (@vlsin), Nate Pors and Matt Olney (@kpyke).
Hosted by Mitch Neff (@MitchNeff).
Subscribe via iTunes (and leave a review!)
Check out the Talos Threat Research Blog
Subscribe to the Threat Source newsletter
Follow Talos on Twitter and Instagram
Give us your feedback and suggestions for topics: beerswithtalos@cisco.com