Andy Swift
LightNews LightNews
swiftsecur.bsky.social
Andy Swift
@swiftsecur.bsky.social
250 followers 420 following 240 posts
Security Researcher and Technical Director of Offensive Security at @6degreesgroup | Red Team | Penetration Testing | Reversing | DFIR | Views are my own.
Posts Replies Media Videos
Reposted by Andy Swift
acrosspondpod.bsky.social
Episode 22: Social Engineering, Gas Mark 4, and AGAs with Rachel Tobac!

@tib3rius.bsky.social & @swiftsecur.bsky.social are joined by @racheltobac.bsky.social to talk social engineering war stories...and more!

Links below!
October 24, 2025 at 2:01 PM
Reposted by Andy Swift
acrosspondpod.bsky.social
Episode 21: The One Where They Talk About AI Again

@tib3rius.bsky.social & @swiftsecur.bsky.social talk about AI (again). How it affects our lives, vibe coding, and its increasing usefulness in Cybersecurity.

Links below!
October 10, 2025 at 2:00 PM
Reposted by Andy Swift
acrosspondpod.bsky.social
Episode 20: War Stories with Julien Richard!

@tib3rius.bsky.social & @swiftsecur.bsky.social chat with Julien Richard about his war stories!

Thank you to @portswigger.net for sponsoring today's episode! Check out portswigger.net/burp/ai to learn more about AI in Burp Suite.

Links below!
Burp AI - PortSwigger
Hack smarter, not harder. Seamlessly integrate trusted AI capabilities into Burp Suite - on your terms with Burp AI.
portswigger.net
September 26, 2025 at 2:02 PM
swiftsecur.bsky.social
SAUSAGE.....those who know.....know. All will be revealed..
September 17, 2025 at 12:05 AM
swiftsecur.bsky.social
oh fuck off...while my heads been down making CTF's...I pop my head up for 5 seconds and NPM is on fire again...
September 16, 2025 at 11:58 PM
swiftsecur.bsky.social
I need sleep. Been building a CTF based around firmware reversing, crypto mishaps and a sprinkling of MQTT..because why not... for the last few days...its gunna be a wild ride in the morning when my teams gets let loose on it...good luck yawll..ill be sleeping in the corner.
September 16, 2025 at 11:54 PM
Reposted by Andy Swift
acrosspondpod.bsky.social
Episode 19: DEF CON!

@tib3rius.bsky.social & @swiftsecur.bsky.social chat about DEF CON, the world's biggest hacker convention, which Andy attended for the first time this year!

Links below!
September 12, 2025 at 2:00 PM
swiftsecur.bsky.social
Someone asked me what I was eating for lunch, I said 'er poached eggs'....I couldn't tell them it was actually a dipping egg with soldiers.
September 11, 2025 at 1:41 PM
swiftsecur.bsky.social
eeeek
September 11, 2025 at 1:37 PM
swiftsecur.bsky.social
Now I'm awake and stuff.. I don't want to be dismissive of the NPM thing..sensationalist headlines help no one, some are def overhyped for clicks...but this had potential to hit different...and thats the kinda interesting bit...

This is a cool link:

www.securityalliance.org/news/2025-09...
Oops, No Victims: The Largest Supply Chain Attack Stole 5 Cents
The biggest financial impact expected to be the millions of dollars of SaaS contracts signed with security vendors
www.securityalliance.org
September 9, 2025 at 8:57 AM
Reposted by Andy Swift
acrosspondpod.bsky.social
Episode 18: UK Online Safety Act

@tib3rius.bsky.social & @swiftsecur.bsky.social chat with Daniel Card about the controversial UK Online Safety Act.

Links below!
August 29, 2025 at 2:01 PM
swiftsecur.bsky.social
cybersecuritynews.com/sshamble/

This is a coolio tool, github here:

github.com/runZeroInc/s...
SSHamble - New Open Source Tool to Exploit Vulnerabilities in SSH Protocol
SSHamble, a powerful open-source reconnaissance tool designed to identify and exploit vulnerabilities in SSH implementations across internet-facing systems.
cybersecuritynews.com
August 16, 2025 at 9:51 AM
Reposted by Andy Swift
acrosspondpod.bsky.social
Episode 17: Common Vulnerability Scoring Sucks?

@tib3rius.bsky.social & @swiftsecur.bsky.social chat about the problems with CVSS.

Links below!
August 15, 2025 at 2:01 PM
Reposted by Andy Swift
acrosspondpod.bsky.social
Episode 15: Why Can't Pentesters Scope?

@tib3rius.bsky.social & @swiftsecur.bsky.social discuss why they (pentesters) can't scope very well.

Links below!
July 18, 2025 at 2:00 PM
swiftsecur.bsky.social
So....I built a new scheduling/resourcing system for pentesters, its been a fun project...but now, the irony....it is being pentested....hold onto your hats people...this is going to be a bumpy ride 🤣

#pentesting
July 11, 2025 at 9:39 AM
swiftsecur.bsky.social
www.omgubuntu.co.uk/2025/07/ubun...

This is kinda interesting, maybe helpful for forensics 😆
New Linux Security Flaw Uses Initramfs to Inject Malware
A newly found security flaw in Ubuntu could allow attackers with physical access to bypass full disk encryption. Learn how the attack works.
www.omgubuntu.co.uk
July 8, 2025 at 10:13 AM
swiftsecur.bsky.social
This has been my fav so far.... @davidkuszmar.com was awesome, we got to have him back. LIGHT THE RIVER ON FIRE!
acrosspondpod.bsky.social Across the Pondcast @acrosspondpod.bsky.social · Jul 4
Episode 14: Ignore Previous Instructions & Interview David Kuszmar

@tib3rius.bsky.social & @swiftsecur.bsky.social interview AI security researcher @davidkuszmar.com about his incredible LLM jailbreaks and exploits!

Links below!
July 4, 2025 at 2:30 PM
Reposted by Andy Swift
acrosspondpod.bsky.social
Episode 14: Ignore Previous Instructions & Interview David Kuszmar

@tib3rius.bsky.social & @swiftsecur.bsky.social interview AI security researcher @davidkuszmar.com about his incredible LLM jailbreaks and exploits!

Links below!
July 4, 2025 at 2:00 PM
swiftsecur.bsky.social
I dont really ask people to be references, imo security and privacy are important in our work, yet.. most large bid contracts ask for them, whats funny is the ones asking often decline to be references themselves citing security policy as the reason...vicious cycle.
July 3, 2025 at 5:17 AM
swiftsecur.bsky.social
On me way to London guv :) at the Imperial War Museum today for a bit of a workshop with some clients, fun day ahead!
July 3, 2025 at 5:10 AM
swiftsecur.bsky.social
thehackernews.com/2025/06/citr...

Uh oh....
a woman is making a funny face and says not again
ALT: a woman is making a funny face and says not again
media.tenor.com
June 26, 2025 at 8:23 AM
swiftsecur.bsky.social
www.darkreading.com/vulnerabilit...

ahhh here we go again :) This is giving me serious PTSD, last time out the IR bat signal was on constantly for a good few weeks 😂

No evidence of wild exploitation yet apparently...but still.
Citrix Patches Critical Vulns in NetScaler ADC and Gateway
Citrix is recommending its customers upgrade their appliances to mitigate potential exploitation of the vulnerabilities.
www.darkreading.com
June 25, 2025 at 8:46 AM
swiftsecur.bsky.social
thehackernews.com/2025/06/qili...

lol wtf is this.... 🤣
Qilin Ransomware Adds "Call Lawyer" Feature to Pressure Victims for Larger Ransoms
Qilin ransomware intensifies, offering legal counsel to affiliates, rising as a top cybercrime platform with 304 victims in 2025.
thehackernews.com
June 23, 2025 at 9:10 AM
swiftsecur.bsky.social
I've always found it works best not to use non-existent settings..
June 23, 2025 at 8:16 AM
Reposted by Andy Swift
acrosspondpod.bsky.social
Episode 13: US Tech Market Dominance

@tib3rius.bsky.social & @swiftsecur.bsky.social chat about why the US tech and cybersecurity markets are so dominant in the world. Prepare for some hot takes. 🔥🥵

Links below!
June 20, 2025 at 4:00 PM