Beers with Talos EP 36: There Are Few Shades in the Grey Market

2018-08-30T12:59:00
ID TALOSBLOG:867E151770DB7CBAF3CE3F817D14EC9F
Type talosblog
Reporter noreply@blogger.com (Mitch Neff)
Modified 2018-08-30T19:59:16

Description


Beers with Talos (BWT) Podcast Ep. #36 is now available. Download this episode and subscribe to Beers with Talos:

If iTunes and Google Play aren't your thing: www.talosintelligence.com/podcast.

Ep. #36 show notes:

Recorded Aug. 24, 2018 — We’re finally back in the studio after Hacker Summer Camp! Sadly, due to summer vacations and becoming bionic, we are missing Joel and Nigel, respectively. We end up discussing most of our topics through the lens of Matt’s frequent Twitter polls. We also find out he bribes followers with free sporks. Craig brings the discussion on the details of Remcos, and goes through some interesting points on the emerging grey markets in security software and "vuln disco." The crew closes this episode discussing the hypothetical merits of perfect patching versus perfect visibility.

The timeline:

The topics

01:20 - Roundtable - Today we cover Matt’s cyberwar fantasy league draft picks & Fortnite malware
13:25 - Remcos: Unpacking a botnet in a box
21:35 - What’s your plan for tomorrow? Are you a leader or will you follow?
28:40 - Grey market software and tools - what’s for real and what’s just sketch?
37:00 - Would You Rather…? Perfect visibility vs. Perfect patching

The links

Matt’s Cyberwar fantasy league poll: <https://twitter.com/kpyke/status/1032453567418904576>
The benevolent spork god of Twitter: <https://twitter.com/hashtag/SporkFest2016?src=hash>
Remcos post on Talos blog: <https://blog.talosintelligence.com/2018/08/picking-apart-remcos.html>
Remcos decryptor: <https://github.com/Cisco-Talos/remcos-decoder/blob/master/remcos_decryptor.py>
Michael Potto tweet: <https://twitter.com/PahDoh/status/1032747023068524544>
Matt’s Twitter poll pt. 2, patching vs. viz: <https://twitter.com/kpyke/status/1030081526002802689>
Source of Craig’s quote in print?: nah.

==========

Featuring: Craig Williams (@Security_Craig), Joel Esler (@JoelEsler), Matt Olney (@kpyke) and Nigel Houghton (@EnglishLFC). Special Guest: Bill Largent (@security_will).
Hosted by Mitch Neff (@MitchNeff).

Find all episodes:
<http://cs.co/talospodcast>

Subscribe via iTunes (and leave a review!)
<http://cs.co/talositunes>

Check out the Talos Threat Research Blog:
<http://cs.co/talosresearch>

Subscribe to the Threat Source newsletter:
http://cs.co/talosupdate

Follow Talos on Twitter:
<http://cs.co/talostwitter>

Give us your feedback and suggestions for topics:
beerswithtalos@cisco.com