Beers with Talos Ep. #38 — More fun with VPNFilter; Getting pwnd via spreadsheet

Beers with Talos (BWT) Podcast Ep. #38 is now available. Download this episode and subscribe to Beers with Talos:

If iTunes and Google Play aren't your thing, click here.

Ep. #38 show notes: 

Recorded Sept. 21, 2018 — The whole crew is back together! On the agenda today is VPNFilter part III, now with more known third-stage payloads. As much as we have talked about multi-part posts, you know we wouldn’t post if it wasn’t important (on the blog, that is. That rule obviously doesn’t apply here). We are also releasing a related open-source tool: Winbox Protocol Dissector. Finally, we delve into an antivirus-avoiding remote access tool (RAT).

The timeline:

The topics

01:20 — Roundtable: Matt’s stories, Craig breaks things and himself, you know… the usual.
11:25 — VPNFilter 3: New research unearths a new batch of third-stage modules.
26:18 — Defense in depth, jump off from an antivirus-avoiding DDE malware.
33:40 — Closing thoughts and parting shots.

The links


Featuring: Craig Williams (@Security_Craig), Joel Esler (@JoelEsler), Matt Olney (@kpyke) and Nigel Houghton (@EnglishLFC).
Hosted by Mitch Neff (@MitchNeff).
Find all episodes here.

Subscribe via iTunes (and leave a review!)

Check out the Talos Threat Research Blog

Subscribe to the Threat Source newsletter

Follow Talos on Twitter

Give us your feedback and suggestions for topics:
[email protected]

Article Link: