MFA and password resets aren't always enough. That’s terrifying for security teams today. In this episode of Talos Takes, we dive deep into ARToken, a sophisticated phishing/BEC-as-a-service platform that steals credentials, bypasses MFA entirely, and leverages primary refresh tokens (PRTs) to maintain persistence in your environment long after a password re ... Show More
Jul 2
From evasion to detection: A guide to analyzing COM-based threats
While the Component Object Model (COM) is a fundamental Windows technology that allows software to communicate and function, it's also a powerful tool for threat actors looking to move laterally, maintain persistence, and evade traditional security measures.Joining us is Vanya Sv ... Show More
18m 56s
Jun 18
Patching in the dark: Managing unknown threats in complex environments
If you're tired of being told to "just patch," we understand. The threat landscape is evolving at breakneck speed, with AI-driven tools enabling adversaries to uncover and exploit vulnerabilities before defenders even know they exist. In this episode of Talos Takes, Amy sits down ... Show More
23m 15s
Jun 3
When synthetic logs don’t lie: Generating coherent attack stories for better detection
Are your detection rules failing because your test data lacks the nuance of a real-world network? In this episode of Talos Takes, Amy sits down with David Bianco to discuss why traditional synthetic data often falls short and how his new open-source project, EvidenceForge, is cha ... Show More
19m 29s