Ray Canzanese
LightNews LightNews
banner
canzanese.com
Ray Canzanese
@canzanese.com
130 followers 200 following 86 posts
Director of Netskope Threat Labs Resident of Philadelphia Graduate of Drexel University #cybersecurity #infosec Post mostly about cybersecurity stuff.
Posts Media Videos Starter Packs
Pinned
canzanese.com
Ray Canzanese @canzanese.com · Jul 29
I'm hiring a fully remote threat research position for Netskope Threat Labs and will be in Vegas for BlackHat next week. Please DM me if you are interested in the role and want to meet up in person. I have positions open in Brazil and Spain.
canzanese.com
Ray Canzanese @canzanese.com · 13d
The messaging on the website is hilarious. The premise here is that the 2020 census was somehow manipulated by Biden, who wasn't president yet.
canzanese.com
Ray Canzanese @canzanese.com · 13d
TRUMP NATIONAL COMMITTEE JFC is spaming texts urging recipients to fill out the census. This is not the census, it is a pretext to trick victims into recurring donations. Initial link is to us-25[.]net, which redirects to winred[.]com, complete with dark patterns, emotion, and urgency.
1
canzanese.com
Ray Canzanese @canzanese.com · 27d
Meta is always aiming to solve societies biggest problems!
canzanese.com
Ray Canzanese @canzanese.com · 27d
The Netskope Threat Labs team is #hiring experienced researchers in Brazil, Spain, and Portugal! The team is a fully remote team focused on innovation and thought leadership, researching problems including supply chain security, AI security, and command and control.

www.netskope.com/company/care...
1 1
canzanese.com
Ray Canzanese @canzanese.com · 27d
GitHub status is green, but I'm getting the uniorn. Is it just me?
canzanese.com
Ray Canzanese @canzanese.com · Sep 21
When you start feeling sorry for him, remember he was a bad guy.
1 3
canzanese.com
Ray Canzanese @canzanese.com · Sep 20
What happened to this? The White House (.gov)
www.whitehouse.gov
Restoring Freedom Of Speech And Ending Federal Censorship
The White House
President Donald J. Trump and Vice President JD Vance are committed to lowering costs for all Americans, securing our borders, unleashing American energy dominance, restoring peace through strength, a...
www.whitehouse.gov
canzanese.com
Ray Canzanese @canzanese.com · Sep 18
Heck of a journey to get here and so much more to do now! Lucky to be part of this team!
canzanese.com
Ray Canzanese @canzanese.com · Sep 18
$NTSK is officially trading! I've been here for 7 years, and at my previous company (acquired by Netskope) for another 3 -- 10 years spent building products, enabling the field, and ultimately building a research team that I am extremely proud of! netskope.com/threat-labs
canzanese.com
Ray Canzanese @canzanese.com · Sep 11
In honor of Steven Crowe, who passed away after a brutal battle with acute myeloid leukemia, we fund groundbreaking research. Thanks to your past support, two projects are making a huge impact! Please join us in continuing this life-saving work.

give.curesearch.org/fundraiser/6...
canzanese.com
Ray Canzanese @canzanese.com · Sep 5
Securing LLMs and the Model Context Protocol requires new thinking. Our latest blog post highlights prompt injection via tool definitions & cross-server tool shadowing. Traditional security isn't enough; we need zero trust & strong isolation.
www.netskope.com/blog/securin...
#LLM #AI #Cybersecurity
Securing LLM Superpowers: When Tools Turn Hostile in MCP
Summary In Part 1 of this blog series, we explored the architecture, capabilities, and risks of the Model Context Protocol (MCP). In this post, we will
www.netskope.com
1 1
Reposted by Ray Canzanese
bsidesphilly.bsky.social
BSidesPhilly @bsidesphilly.bsky.social · Sep 3
The ⏰'s ticking! Our #CallForPapers for #BSidesPhilly is still open, but the submission deadline is S9/15! Don't miss your chance to share your research & expertise with the Philly #cybersecurity community. Submit now before it's too late!
🔗 bsidesphilly.org/call-for-pap... #Infosec
1 2
canzanese.com
Ray Canzanese @canzanese.com · Aug 19
🤠 Welcome to the Wild West of AI. LLMs are powerful, but the way they connect to tools can be dangerously insecure. Our latest blog provides a detailed yet accessible overview of MCP security.

#LLM #AIsecurity #Cybersecurity #MCP

www.netskope.com/blog/securin...
Securing LLM Superpowers: Navigating the Wild West of MCP
Summary The Model Context Protocol (MCP) is a standardized framework that enables large language models (LLMs) to interact with external tools, APIs, and
www.netskope.com
canzanese.com
Ray Canzanese @canzanese.com · Aug 16
Not just these specific guys, but there was evidently not a single conpetant and emotionally mature adult in their entire chain of command.
1
canzanese.com
Ray Canzanese @canzanese.com · Aug 15
Are you truly surprised or just disheartened? They were embarrassed and responded with a show of force, like any young child would.
1
canzanese.com
Ray Canzanese @canzanese.com · Aug 9
Just over an hour to go until "Whispers Through the Firewall" at the Red Team Village. Hubert WS Lin (林悟生) shares how to use TCP source port numbers as a covert data exfiltration channel. #DEFCON33 #Netskope
1 1
canzanese.com
Ray Canzanese @canzanese.com · Aug 7
Dagmawi Mulugeta and Colin Estep take the BlackHat stage in less than 2 hours! Come learn about Netskope's newest open source threat detection tool. #bhusa #blackhat
1
canzanese.com
Ray Canzanese @canzanese.com · Jul 30
Hoping more will join us over here.
canzanese.com
Ray Canzanese @canzanese.com · Jul 30
We found what looks like a new version of XWorm, indicating that it is under active development focused on detection evasion. We expect to be seeing it used to target more victims in the near future. www.netskope.com/blog/xworm-v...
#infosec #malware
XWorm V6: Advanced Evasion and AMSI Bypass Capabilities Revealed
Summary In September 2024, Netskope Threat Labs reported on the XWorm malware and its infection chain. We revealed new XWorm command and control (C2)
www.netskope.com
canzanese.com
Ray Canzanese @canzanese.com · Jul 29
I'm hiring a fully remote threat research position for Netskope Threat Labs and will be in Vegas for BlackHat next week. Please DM me if you are interested in the role and want to meet up in person. I have positions open in Brazil and Spain.
canzanese.com
Ray Canzanese @canzanese.com · Jul 25
I am #hiring for a threat research position in Brazil focused on network/cloud/ai security. Please reach out if interested. www.netskope.com/company/care...
Open Positions
Join the leading cloud security platform team and industry leaders in security, networking, threat protection, cloud, mobile, and more.
www.netskope.com
canzanese.com
Ray Canzanese @canzanese.com · Jul 24
Grammarly often suggests that I move my adverbs to split my infinitives. If I accept the suggestion, Grammarly is upset and suggests that I move the adverb back because splitting infinitives is bad. I like to assume that this is some genAI slop and heuristics battling it out behind the scenes.
2
canzanese.com
Ray Canzanese @canzanese.com · Jul 23
"I don't have a password, so I can't connect," the hacker says in one call. The agent replies, "Oh, OK. OK. So let me provide the password to you OK?"
1
canzanese.com
Ray Canzanese @canzanese.com · Jul 14
@defcon.bsky.social Red Team Village schedule hot off the presses. Netskope Threat Labs' own Hubert Lin will be running his reverse port knocking workshop Saturday morning at 11! Hope to see you there.

www.netskope.com/netskope-thr...
canzanese.com
Ray Canzanese @canzanese.com · Jul 11
This mirrors my experience as well. I keep being told these LLM chat bots can help me with my writing, but I have yet to find one that does meaningfully. The only thing they are good at is brainstorming titles.
1