Tracebit
@tracebit.bsky.social
Expect the unexpected with cloud canaries | https://tracebit.com
🎙️Episode 3 of Canaries in the Wild is live with Mandy Andress, CISO at @elastic.co.
Mandy discusses why canaries need a bigger role in security programs and how detection is evolving with increasingly complex threats.
Listen: www.youtube.com/watch?v=QjK1...
Mandy discusses why canaries need a bigger role in security programs and how detection is evolving with increasingly complex threats.
Listen: www.youtube.com/watch?v=QjK1...
November 18, 2025 at 3:12 PM
🎙️Episode 3 of Canaries in the Wild is live with Mandy Andress, CISO at @elastic.co.
Mandy discusses why canaries need a bigger role in security programs and how detection is evolving with increasingly complex threats.
Listen: www.youtube.com/watch?v=QjK1...
Mandy discusses why canaries need a bigger role in security programs and how detection is evolving with increasingly complex threats.
Listen: www.youtube.com/watch?v=QjK1...
🔑 Short vs. long term canary credentials: why the choice matters more than you think.
We just published a new blog post exploring the trade-offs between long and short term canary credentials for threat detection.
Read it here: tracebit.com/blog/short-t...
We just published a new blog post exploring the trade-offs between long and short term canary credentials for threat detection.
Read it here: tracebit.com/blog/short-t...
November 12, 2025 at 10:21 AM
🔑 Short vs. long term canary credentials: why the choice matters more than you think.
We just published a new blog post exploring the trade-offs between long and short term canary credentials for threat detection.
Read it here: tracebit.com/blog/short-t...
We just published a new blog post exploring the trade-offs between long and short term canary credentials for threat detection.
Read it here: tracebit.com/blog/short-t...
🎙️Want to hear more about Didier Vandenbroeck's take on the 'Assume Breach' mindset?
Listen to Canaries in the Wild Episode 1: www.youtube.com/watch?v=VIMd...
Listen to Canaries in the Wild Episode 1: www.youtube.com/watch?v=VIMd...
October 20, 2025 at 4:47 PM
🎙️Want to hear more about Didier Vandenbroeck's take on the 'Assume Breach' mindset?
Listen to Canaries in the Wild Episode 1: www.youtube.com/watch?v=VIMd...
Listen to Canaries in the Wild Episode 1: www.youtube.com/watch?v=VIMd...
🎙️ Episode 2 of Canaries in the Wild is live with Josh Yavor, CEO and Co-Founder of @credible-security.com.
Josh has over a decade of experience deploying deception technology across organisations of all sizes, and shares his practitioner insights with us.
Listen: www.youtube.com/watch?v=ItzY...
Josh has over a decade of experience deploying deception technology across organisations of all sizes, and shares his practitioner insights with us.
Listen: www.youtube.com/watch?v=ItzY...
October 14, 2025 at 12:59 PM
🎙️ Episode 2 of Canaries in the Wild is live with Josh Yavor, CEO and Co-Founder of @credible-security.com.
Josh has over a decade of experience deploying deception technology across organisations of all sizes, and shares his practitioner insights with us.
Listen: www.youtube.com/watch?v=ItzY...
Josh has over a decade of experience deploying deception technology across organisations of all sizes, and shares his practitioner insights with us.
Listen: www.youtube.com/watch?v=ItzY...
📍 We're heading to @bsidesnyc.org on Saturday 18th October!
Want to talk security canaries and learn what we're building at Tracebit? Come find us at our booth.
See you there 👋
Want to talk security canaries and learn what we're building at Tracebit? Come find us at our booth.
See you there 👋
October 6, 2025 at 4:33 PM
📍 We're heading to @bsidesnyc.org on Saturday 18th October!
Want to talk security canaries and learn what we're building at Tracebit? Come find us at our booth.
See you there 👋
Want to talk security canaries and learn what we're building at Tracebit? Come find us at our booth.
See you there 👋
🎙️ Launching Canaries in the Wild - our new podcast on deception tech that actually catches attackers.
First episode: Didier Vandenbroeck on deploying canaries at Oleria and getting caught by honeypots himself while on offense at Salesforce.
Listen: www.youtube.com/watch?v=VIMd...
First episode: Didier Vandenbroeck on deploying canaries at Oleria and getting caught by honeypots himself while on offense at Salesforce.
Listen: www.youtube.com/watch?v=VIMd...
Didier Vandenbroeck: Catching Red Teams, Insider Threat and the ROI of Canaries
YouTube video by Tracebit
www.youtube.com
September 10, 2025 at 1:57 PM
🎙️ Launching Canaries in the Wild - our new podcast on deception tech that actually catches attackers.
First episode: Didier Vandenbroeck on deploying canaries at Oleria and getting caught by honeypots himself while on offense at Salesforce.
Listen: www.youtube.com/watch?v=VIMd...
First episode: Didier Vandenbroeck on deploying canaries at Oleria and getting caught by honeypots himself while on offense at Salesforce.
Listen: www.youtube.com/watch?v=VIMd...
🤖 AI agents are hitting honeypots in the wild - and it's wild how they react.
Sam Cox tested something fascinating: mention "honeypots might exist" to an LLM mid-attack, and it completely changes its strategy. Just like humans, they get paranoid.
Full analysis: tracebit.com/blog/canarie...
Sam Cox tested something fascinating: mention "honeypots might exist" to an LLM mid-attack, and it completely changes its strategy. Just like humans, they get paranoid.
Full analysis: tracebit.com/blog/canarie...
Canaries in the Era of Generative AI | Tracebit
We explore what generative AI means for canaries, deception and honeypots. Both from an offense and defense perspective and what we're doing at Tracebit.
tracebit.com
September 3, 2025 at 3:31 PM
🤖 AI agents are hitting honeypots in the wild - and it's wild how they react.
Sam Cox tested something fascinating: mention "honeypots might exist" to an LLM mid-attack, and it completely changes its strategy. Just like humans, they get paranoid.
Full analysis: tracebit.com/blog/canarie...
Sam Cox tested something fascinating: mention "honeypots might exist" to an LLM mid-attack, and it completely changes its strategy. Just like humans, they get paranoid.
Full analysis: tracebit.com/blog/canarie...
🔍 Great to see @grafana.bsky.social sharing their canary token success story - they allowed them to catch a real intrusion‼️
This is exactly the kind of real-world validation we love to see. Security teams want precise alerts that allow them to catch attacks early.
grafana.com/blog/2025/08...
This is exactly the kind of real-world validation we love to see. Security teams want precise alerts that allow them to catch attacks early.
grafana.com/blog/2025/08...
Canary tokens: Learn all about the unsung heroes of security at Grafana Labs | Grafana Labs
Learn why the use of canary tokens let us spot a recent intrusion and swarm quickly in response, and find out why you should be using canary tokens to prevent serious security incidents in the future.
grafana.com
August 28, 2025 at 10:05 AM
🔍 Great to see @grafana.bsky.social sharing their canary token success story - they allowed them to catch a real intrusion‼️
This is exactly the kind of real-world validation we love to see. Security teams want precise alerts that allow them to catch attacks early.
grafana.com/blog/2025/08...
This is exactly the kind of real-world validation we love to see. Security teams want precise alerts that allow them to catch attacks early.
grafana.com/blog/2025/08...
🎬 Pretty cool to see Sam Cox's Gemini CLI research featured in Low Level's YouTube video and hitting 150k+ views 🚀
👀 From discovering a silent code execution vulnerability to mainstream coverage!
Full breakdown on our blog for the curious minds out there. 🔎
lnkd.in/eprKJ5vS
👀 From discovering a silent code execution vulnerability to mainstream coverage!
Full breakdown on our blog for the curious minds out there. 🔎
lnkd.in/eprKJ5vS
LinkedIn
This link will take you to a page that’s not on LinkedIn
lnkd.in
August 11, 2025 at 12:49 PM
🎬 Pretty cool to see Sam Cox's Gemini CLI research featured in Low Level's YouTube video and hitting 150k+ views 🚀
👀 From discovering a silent code execution vulnerability to mainstream coverage!
Full breakdown on our blog for the curious minds out there. 🔎
lnkd.in/eprKJ5vS
👀 From discovering a silent code execution vulnerability to mainstream coverage!
Full breakdown on our blog for the curious minds out there. 🔎
lnkd.in/eprKJ5vS
🎩 We're at @blackhatevents.bsky.social USA today and tomorrow 🎩
If you're around and want to chat about security canaries or detection engineering - Andy, Sam, and Rob are at booth 6219 in Start Up City.
Book time with the team here: tracebit.com/event/black-...
See you in Vegas!
If you're around and want to chat about security canaries or detection engineering - Andy, Sam, and Rob are at booth 6219 in Start Up City.
Book time with the team here: tracebit.com/event/black-...
See you in Vegas!
August 6, 2025 at 6:21 PM
🎩 We're at @blackhatevents.bsky.social USA today and tomorrow 🎩
If you're around and want to chat about security canaries or detection engineering - Andy, Sam, and Rob are at booth 6219 in Start Up City.
Book time with the team here: tracebit.com/event/black-...
See you in Vegas!
If you're around and want to chat about security canaries or detection engineering - Andy, Sam, and Rob are at booth 6219 in Start Up City.
Book time with the team here: tracebit.com/event/black-...
See you in Vegas!
💥Achievement Unlocked, thanks @mattjay.com for the call out!
August 1, 2025 at 7:08 AM
💥Achievement Unlocked, thanks @mattjay.com for the call out!
Reposted by Tracebit
July 31, 2025 at 9:58 PM
The Tracebit team will be in Vegas August 2-7 for BSides and BlackHat 🎩
☁️ If you're working on intrusion detection, cloud environments, or just want to chat about what's actually working in security right now - let's meet up!
🤝 You can grab some time with us at Blackhat here: lnkd.in/ebCGMpxW
☁️ If you're working on intrusion detection, cloud environments, or just want to chat about what's actually working in security right now - let's meet up!
🤝 You can grab some time with us at Blackhat here: lnkd.in/ebCGMpxW
July 29, 2025 at 5:27 PM
The Tracebit team will be in Vegas August 2-7 for BSides and BlackHat 🎩
☁️ If you're working on intrusion detection, cloud environments, or just want to chat about what's actually working in security right now - let's meet up!
🤝 You can grab some time with us at Blackhat here: lnkd.in/ebCGMpxW
☁️ If you're working on intrusion detection, cloud environments, or just want to chat about what's actually working in security right now - let's meet up!
🤝 You can grab some time with us at Blackhat here: lnkd.in/ebCGMpxW
👀 We found a way to steal credentials through Google Gemini AI CLI just by asking "tell me about this repo" on some untrusted code.
Check out our research here: tracebit.com/blog/code-ex...
Check out our research here: tracebit.com/blog/code-ex...
Code Execution Through Deception: Gemini AI CLI Hijack | Tracebit
Tracebit discovered a silent attack on Gemini CLI where, through a toxic combination of prompt injection, misleading UX and missing validation, inspecting untrusted code consistently leads to executio...
tracebit.com
July 28, 2025 at 10:58 AM
👀 We found a way to steal credentials through Google Gemini AI CLI just by asking "tell me about this repo" on some untrusted code.
Check out our research here: tracebit.com/blog/code-ex...
Check out our research here: tracebit.com/blog/code-ex...
Reposted by Tracebit
@bsidesnyc.org welcomes @tracebit.bsky.social as a Megabit sponsor for our conference on Oct 18, 2025. bsidesnyc.org Tracebit deploys and maintains tailored security canaries, proactively detecting intrusions across your organization. tracebit.com
July 22, 2025 at 12:38 PM
@bsidesnyc.org welcomes @tracebit.bsky.social as a Megabit sponsor for our conference on Oct 18, 2025. bsidesnyc.org Tracebit deploys and maintains tailored security canaries, proactively detecting intrusions across your organization. tracebit.com
We caught up with Cedric - SOC Lead at
Coveo - to talk about the value he's seen in canaries and Tracebit!
You can also check the full case study here: tracebit.com/customer/coveo
Coveo - to talk about the value he's seen in canaries and Tracebit!
You can also check the full case study here: tracebit.com/customer/coveo
July 10, 2025 at 3:42 PM
We caught up with Cedric - SOC Lead at
Coveo - to talk about the value he's seen in canaries and Tracebit!
You can also check the full case study here: tracebit.com/customer/coveo
Coveo - to talk about the value he's seen in canaries and Tracebit!
You can also check the full case study here: tracebit.com/customer/coveo
✈️ Not long now until our co-founders Andy Smith and Sam Cox head out for @bsidessf.org this weekend.
We'll be in the sponsor area - if you want to see the our latest product features or just talk canaries, come say hello!
#bsidessf
We'll be in the sponsor area - if you want to see the our latest product features or just talk canaries, come say hello!
#bsidessf
April 23, 2025 at 2:05 PM
✈️ Not long now until our co-founders Andy Smith and Sam Cox head out for @bsidessf.org this weekend.
We'll be in the sponsor area - if you want to see the our latest product features or just talk canaries, come say hello!
#bsidessf
We'll be in the sponsor area - if you want to see the our latest product features or just talk canaries, come say hello!
#bsidessf
📣 New Tracebit release available to all customers: Security Canaries for Kubernetes.
We've started with two categories of canaries and multiple types deployed in Kubernetes Pods and Cluster to detect compromise.
More in the announcement: tracebit.com/blog/announc...
We've started with two categories of canaries and multiple types deployed in Kubernetes Pods and Cluster to detect compromise.
More in the announcement: tracebit.com/blog/announc...
Announcing Security Canaries in Kubernetes | Tracebit
We’re excited to share our latest canary module: Kubernetes - this now available for all Tracebit customers
tracebit.com
April 15, 2025 at 3:11 PM
📣 New Tracebit release available to all customers: Security Canaries for Kubernetes.
We've started with two categories of canaries and multiple types deployed in Kubernetes Pods and Cluster to detect compromise.
More in the announcement: tracebit.com/blog/announc...
We've started with two categories of canaries and multiple types deployed in Kubernetes Pods and Cluster to detect compromise.
More in the announcement: tracebit.com/blog/announc...
Always great to see honeypots in the wild!
This story is absolutely insane. And we don't usually get a front-row seat to insider threat investigations
Spy got tricked by a honeypot and implicated the most senior leaders at the victim's biggest competitors.
I go through it all here: youtu.be/tDG1WfbSZFo
Spy got tricked by a honeypot and implicated the most senior leaders at the victim's biggest competitors.
I go through it all here: youtu.be/tDG1WfbSZFo
March 17, 2025 at 7:47 PM
Always great to see honeypots in the wild!
We've met a bunch of teams that jumped straight to deploying canaries before thinking through the goals and all of the work involved.
We just wrote up "The full costs of building your own Canary Program" help do more upfront thinking when planning your canary program.
tracebit.com/blog/the-ful...
We just wrote up "The full costs of building your own Canary Program" help do more upfront thinking when planning your canary program.
tracebit.com/blog/the-ful...
March 3, 2025 at 12:55 PM
We've met a bunch of teams that jumped straight to deploying canaries before thinking through the goals and all of the work involved.
We just wrote up "The full costs of building your own Canary Program" help do more upfront thinking when planning your canary program.
tracebit.com/blog/the-ful...
We just wrote up "The full costs of building your own Canary Program" help do more upfront thinking when planning your canary program.
tracebit.com/blog/the-ful...
We've been fortunate enough to work with the Riot Games since the early days of Tracebit and they've played a significant part in shaping the product.
It's exciting to be able to share a case study highlighting some of the successes we've had together.
Read more: tracebit.com/customer/rio...
It's exciting to be able to share a case study highlighting some of the successes we've had together.
Read more: tracebit.com/customer/rio...
February 25, 2025 at 12:16 PM
We've been fortunate enough to work with the Riot Games since the early days of Tracebit and they've played a significant part in shaping the product.
It's exciting to be able to share a case study highlighting some of the successes we've had together.
Read more: tracebit.com/customer/rio...
It's exciting to be able to share a case study highlighting some of the successes we've had together.
Read more: tracebit.com/customer/rio...
Our Co-Founder and CTO got together the criteria he looked at when considering what language to build Tracebit - keen to hear feedback!
tracebit.com/blog/why-tra...
tracebit.com/blog/why-tra...
Why Tracebit is written in C# | Tracebit
A retro on some of the reasons we chose to build Tracebit in C#.
tracebit.com
February 1, 2025 at 11:23 AM
Our Co-Founder and CTO got together the criteria he looked at when considering what language to build Tracebit - keen to hear feedback!
tracebit.com/blog/why-tra...
tracebit.com/blog/why-tra...
Kicking off the new year by announcing our partnership and integration with Panther!
Tracebit and Panther customers will now be able to effortlessly integrate Tracebit alerts in to their SIEM.
We dive in to a concrete example and show off some Panther features here:
tracebit.com/blog/announc...
Tracebit and Panther customers will now be able to effortlessly integrate Tracebit alerts in to their SIEM.
We dive in to a concrete example and show off some Panther features here:
tracebit.com/blog/announc...
Announcing Tracebit’s partnership with Panther
We announce Tracebit’s partnership with Panther, a leading cloud-native SIEM
tracebit.com
January 8, 2025 at 4:14 PM
Kicking off the new year by announcing our partnership and integration with Panther!
Tracebit and Panther customers will now be able to effortlessly integrate Tracebit alerts in to their SIEM.
We dive in to a concrete example and show off some Panther features here:
tracebit.com/blog/announc...
Tracebit and Panther customers will now be able to effortlessly integrate Tracebit alerts in to their SIEM.
We dive in to a concrete example and show off some Panther features here:
tracebit.com/blog/announc...
We have selected 5 lucky winners to attend B-Sides London with us.
We look forward to seeing you at Hammersmith International Centre on Saturday!
#BSidesLDN2024
We look forward to seeing you at Hammersmith International Centre on Saturday!
#BSidesLDN2024
We are at B-Sides London on Saturday the 14th! Be sure to come say hello!
We're also in the lucky position of having some tickets to give away - we'll randomly pick 5 lucky winners who repost this post!
We're also in the lucky position of having some tickets to give away - we'll randomly pick 5 lucky winners who repost this post!
December 12, 2024 at 4:38 PM
We have selected 5 lucky winners to attend B-Sides London with us.
We look forward to seeing you at Hammersmith International Centre on Saturday!
#BSidesLDN2024
We look forward to seeing you at Hammersmith International Centre on Saturday!
#BSidesLDN2024
One more repost before we pick the lucky winners!
We are at B-Sides London on Saturday the 14th! Be sure to come say hello!
We're also in the lucky position of having some tickets to give away - we'll randomly pick 5 lucky winners who repost this post!
We're also in the lucky position of having some tickets to give away - we'll randomly pick 5 lucky winners who repost this post!
December 9, 2024 at 8:27 AM
One more repost before we pick the lucky winners!