Beers with Talos EP 22: Forget the ASA, Rob Joyce Favorited Craig’s Tweet

Beers with Talos (BWT) Podcast Episode 22 is now available. Download this episode and subscribe to Beers with Talos:

If iTunes and Google Play aren’t your thing: www.talosintelligence.com/podcast

EP22 Show Notes:

Recorded 2/2/18 - Guests two EPs in a row! We are joined by Omar Santos from Cisco PSIRT to discuss CVE-2018-0101, the Cisco ASA Remote Code Execution and Denial of Service Vulnerability. See the PSIRT post below for latest updates. We also discuss Crypto miners overtaking ransomware, a Flash 0-day carrying a known ROKRAT payload (huh??), and we couldn’t escape discussing Autosploit because Rob Joyce faved one of Craig’s tweets.

Timeline:

The Roundtable

01:01 - Meet Omar Santos from Cisco PSIRT
03:10 - Getting to bottom of how Craig has completely snowed Ashley
05:57 - Joel gets all Andy Rooney about shoe sizes
09:33 - Craig discusses how time is linear and we can’t see the future
11:46 - Mitch discusses the day the music died, similar to his joke
13:19 - Nigel discusses the most important football game on Feb 4
15:30 - Bonus! Talos BINGO

The Topics

17:02 - Cisco PSIRT’s Omar Santos discusses CVE-2018-0101 – Cisco ASA RCE and DoS Vuln
32:55 - Crypto miners generating millions, overtaking ransomware
47:27 - Autosploit - oh, did Craig mention that Rob Joyce favorited one of his tweets?
53:15 - Flash 0-day in the wild: What’s the logic behind burning an 0-day with a known payload?

The Links:

Talos Bingo tweet (@KrisJamieson) - <https://twitter.com/KrisJamieson/status/958060402855858176&gt;
Omar Santos PSIRT post on CVE-2018-0101: <https://blogs.cisco.com/security/cve-2018-0101&gt;
Ransom Where? Malicious Cryptocurrency Miners Takeover, Generating Millions: <http://blog.talosintelligence.com/2018/01/malicious-xmr-mining.html&gt;
Craig’s tweet that Rob Joyce liked: <https://twitter.com/security_craig/status/959197187329744896&gt;
Flash 0-Day In The Wild: Group 123 At The Controls: <http://blog.talosintelligence.com/2018/02/group-123-goes-wild.html&gt;
Panic! At the Cisco tweet: <https://twitter.com/l1quidcryst4l/status/958057132447993856&gt;

==========

Featuring: Craig Williams (@Security_Craig), Joel Esler (@JoelEsler), Matt Olney (@kpyke) and Nigel Houghton (@EnglishLFC).
Hosted by Mitch Neff (@MitchNeff).

Find all episodes:
<http://cs.co/talospodcast&gt;

Subscribe via iTunes (and leave a review!)
<http://cs.co/talositunes&gt;

Check out the Talos Threat Research Blog:
<http://cs.co/talosresearch&gt;

Subscribe to the Threat Source newsletter:
http://cs.co/talosupdate

Follow Talos on Twitter:
<http://cs.co/talostwitter&gt;

Give us your feedback and suggestions for topics:
[email protected]