Hunting the Hackers: How Cisco Talos is Leveling Up Security

Kate Nolan

Cybersecurity Data Unicorn

Cisco

Samir Sapra

Researcher

Cisco

At Cisco's Talos, a traditional security analyst culture has collided with lots of data. In this talk, Kate and Samir describe how they've navigated this transition using Elasticsearch to leverage data to detect bad guys – with a special look at how Talos tracked the SSHPsychos SSH brute forcing campaign.