@candacehughes.bsky.social
Reposted
This case led me to be the 1st industry analyst to clearly document, model, and explain how Iran developed the lock-and-leak information operations model to exploit eCrime ransomware and leak trends to conduct disruptive attacks using crappy personas—something they eventually did to ALL OF ALBANIA.
August 19, 2025 at 4:25 PM
This case led me to be the 1st industry analyst to clearly document, model, and explain how Iran developed the lock-and-leak information operations model to exploit eCrime ransomware and leak trends to conduct disruptive attacks using crappy personas—something they eventually did to ALL OF ALBANIA.
Nothing like providing opportunities to your team and watching them absolutely kill it!
The growth is incredible to witness every time.
The growth is incredible to witness every time.
July 8, 2025 at 7:32 PM
Nothing like providing opportunities to your team and watching them absolutely kill it!
The growth is incredible to witness every time.
The growth is incredible to witness every time.
Reposted
ANSSI has published details about the Houken intrusion campaign, which seeks initial access to the networks of French entities through the exploitation of several zero-day vulnerabilities on Ivanti Cloud Service Appliance devices. www.cert.ssi.gouv.fr/cti/CERTFR-2...
July 3, 2025 at 8:52 AM
ANSSI has published details about the Houken intrusion campaign, which seeks initial access to the networks of French entities through the exploitation of several zero-day vulnerabilities on Ivanti Cloud Service Appliance devices. www.cert.ssi.gouv.fr/cti/CERTFR-2...
Reposted
June 23, 2025 at 11:44 PM
Reposted
Google's @hultquist.bsky.social says in an emailed statement that the company is seeing "multiple intrusions in the US" that bear the hallmarks of Scattered Spider activity and "now seeing incidents in the insurance industry." Google spox. confirmed there's more than one U.S.-based insurance victim.
June 16, 2025 at 5:09 PM
Google's @hultquist.bsky.social says in an emailed statement that the company is seeing "multiple intrusions in the US" that bear the hallmarks of Scattered Spider activity and "now seeing incidents in the insurance industry." Google spox. confirmed there's more than one U.S.-based insurance victim.
Reposted
I missed this story by @arielabergriger.bsky.social on the importance of AM Radio even today in @technologyreview.com.
It is beautifully illustrated and the point is important: we're letting a critical source of emergency management fade away and we don't have anything to fully replace it.
It is beautifully illustrated and the point is important: we're letting a critical source of emergency management fade away and we don't have anything to fully replace it.
Why we still need AM radio
The most reliable way to keep us informed in times of disaster is being threatened.
www.technologyreview.com
June 9, 2025 at 1:02 PM
I missed this story by @arielabergriger.bsky.social on the importance of AM Radio even today in @technologyreview.com.
It is beautifully illustrated and the point is important: we're letting a critical source of emergency management fade away and we don't have anything to fully replace it.
It is beautifully illustrated and the point is important: we're letting a critical source of emergency management fade away and we don't have anything to fully replace it.
Reposted
Akamai has spotted two Mirai botnets abusing a recently patched RCE (CVE-2025-24016) in the Wazuh SIEM
www.akamai.com/blog/securit...
cvereports.com/cve-2025-240...
www.akamai.com/blog/securit...
cvereports.com/cve-2025-240...
June 10, 2025 at 12:46 AM
Akamai has spotted two Mirai botnets abusing a recently patched RCE (CVE-2025-24016) in the Wazuh SIEM
www.akamai.com/blog/securit...
cvereports.com/cve-2025-240...
www.akamai.com/blog/securit...
cvereports.com/cve-2025-240...
Just saw an updated picture of my childhood home. The owners ripped out the tree in the front yard.
No more tire swing.
No more Magnolias all over the ground.
No more tree house.
It feels like a piece of my childhood memory was just cut out.
No more tire swing.
No more Magnolias all over the ground.
No more tree house.
It feels like a piece of my childhood memory was just cut out.
June 8, 2025 at 1:35 AM
Just saw an updated picture of my childhood home. The owners ripped out the tree in the front yard.
No more tire swing.
No more Magnolias all over the ground.
No more tree house.
It feels like a piece of my childhood memory was just cut out.
No more tire swing.
No more Magnolias all over the ground.
No more tree house.
It feels like a piece of my childhood memory was just cut out.
Reposted
Hello, friends! I'm thrilled to announce that The Homelab Almanac, v3.0 has officially launched! There is a **ton** of new stuff in this version, including:
- Proper DNS
- PKI
- Automatic signed certificates
- New secrets management
- Proxmox clustering
- Cloud integration
- Proper DNS
- PKI
- Automatic signed certificates
- New secrets management
- Proxmox clustering
- Cloud integration
Announcing The Homelab Almanac: Version 3.0
The best guide to homelabs just got a lot better—and bigger.
taggart-tech.com
June 7, 2025 at 4:58 AM
Hello, friends! I'm thrilled to announce that The Homelab Almanac, v3.0 has officially launched! There is a **ton** of new stuff in this version, including:
- Proper DNS
- PKI
- Automatic signed certificates
- New secrets management
- Proxmox clustering
- Cloud integration
- Proper DNS
- PKI
- Automatic signed certificates
- New secrets management
- Proxmox clustering
- Cloud integration
Reposted
Risky Biz calling The Com criminals APTeens. 🏆
June 6, 2025 at 2:25 PM
Risky Biz calling The Com criminals APTeens. 🏆
Reposted
"Ransomware is a pain in the ass for us, but also it looks like we're a pain in the ass for them." - Bavi Sadayappan #SLEUTHCON
June 6, 2025 at 5:31 PM
"Ransomware is a pain in the ass for us, but also it looks like we're a pain in the ass for them." - Bavi Sadayappan #SLEUTHCON
Reposted
Superb from @michaeldweiss.bsky.social and the @theins.press . The gold standard of investigative teams is at it again. Giv them the Pulitzer pls. Honestly, they have a better understanding of 29155 than the US IC.
‼️ Hidden Bear: The GRU hackers of Russia's most notorious kill squad
As The Insider discovered, Unit 29155, the Kremlin’s most notorious black ops squad, also fielded a team of hackers that tried to destabilize Ukraine before Russia’s full-scale invasion.
As The Insider discovered, Unit 29155, the Kremlin’s most notorious black ops squad, also fielded a team of hackers that tried to destabilize Ukraine before Russia’s full-scale invasion.
Hidden Bear: The GRU hackers of Russia’s most notorious kill squad
Russian GRU Unit 29155 is best known for its long list of murder and sabotage ops, which include the Salisbury poisonings in England, arms depot explosions in Czechia, and an attempted coup d’etat in ...
theins.press
June 1, 2025 at 4:06 AM
Superb from @michaeldweiss.bsky.social and the @theins.press . The gold standard of investigative teams is at it again. Giv them the Pulitzer pls. Honestly, they have a better understanding of 29155 than the US IC.
Reposted
At this year's AusCERT conference we presented "Sigma and Detection Engineering with Velociraptor". Learn how to implement real time Sigma detection with forensic enhancements.
Full presentation youtube.com/watch?v=3EBr... and slides docs.velociraptor.app/presentation...
Full presentation youtube.com/watch?v=3EBr... and slides docs.velociraptor.app/presentation...
Auscert 2025 Detection Engineering Workshop
YouTube video by Velocidex Enterprises
youtube.com
May 24, 2025 at 4:44 AM
At this year's AusCERT conference we presented "Sigma and Detection Engineering with Velociraptor". Learn how to implement real time Sigma detection with forensic enhancements.
Full presentation youtube.com/watch?v=3EBr... and slides docs.velociraptor.app/presentation...
Full presentation youtube.com/watch?v=3EBr... and slides docs.velociraptor.app/presentation...
Reposted
NSA and Others Publish Advisory Warning of Russian State-sponsored Cyber Campaign Targeting Western Logistics and Technology Entities | www.nsa.gov/Press-Room/P...
www.nsa.gov
May 21, 2025 at 6:10 PM
NSA and Others Publish Advisory Warning of Russian State-sponsored Cyber Campaign Targeting Western Logistics and Technology Entities | www.nsa.gov/Press-Room/P...
This should be getting more attention.
👀 "Buried [in the GOP budget], Section 43201(c) describes a 10-year moratorium on state-level enforcement of 'any law or regulation regulating artificial intelligence models, artificial intelligence systems, or automated decision systems.'" www.theregister.com/2025/05/20/t...
Trump's budget bill would kill state-level AI regulations
: Republican defense of states' rights doesn't apply to curtailing LLMs, apparently
www.theregister.com
May 22, 2025 at 1:50 AM
This should be getting more attention.
Reposted
1/
Absolutely love this resource 💙
Just came across this gem from JPCERT
👉 jpcertcc.github.io/ToolAnalysis...
It maps forensic artifacts left behind by tools used for lateral movement or credential dumping. Super detailed.
Absolutely love this resource 💙
Just came across this gem from JPCERT
👉 jpcertcc.github.io/ToolAnalysis...
It maps forensic artifacts left behind by tools used for lateral movement or credential dumping. Super detailed.
Tool Analysis Result Sheet
jpcertcc.github.io
May 13, 2025 at 6:00 PM
1/
Absolutely love this resource 💙
Just came across this gem from JPCERT
👉 jpcertcc.github.io/ToolAnalysis...
It maps forensic artifacts left behind by tools used for lateral movement or credential dumping. Super detailed.
Absolutely love this resource 💙
Just came across this gem from JPCERT
👉 jpcertcc.github.io/ToolAnalysis...
It maps forensic artifacts left behind by tools used for lateral movement or credential dumping. Super detailed.
Reposted
A Wall Behind A Wall: Emerging Regional Censorship in China
gfw.report/publications...
gfw.report/publications...
A Wall Behind A Wall: Emerging Regional Censorship in China
We characterized the provincial-level censorship in Henan and compared it to the national GFW. The Henan Firewall conducts TLS SNI-based and HTTP Host-based censorship, inspecting and blocking traffic...
gfw.report
May 13, 2025 at 12:27 AM
A Wall Behind A Wall: Emerging Regional Censorship in China
gfw.report/publications...
gfw.report/publications...
Reposted
The Wire, but a cybercrime version of it
May 9, 2025 at 9:50 PM
The Wire, but a cybercrime version of it
Reposted
“I dOn’T ThInK I eVeR MeT hIm”
April 26, 2025 at 12:54 AM
“I dOn’T ThInK I eVeR MeT hIm”
Reposted
Full suite of projections seen:
April 18, 2025 at 3:38 AM
Full suite of projections seen:
Reposted
Happy Friday everyone. Thanks for reading NPR.org this week.
Wanted to take a second to also remind you: I interviewed whistleblower Dan Berulis to accompany my lengthy written story on NLRB. Hear from him in his own words:
one.npr.org/i/nx-s1-5355...
Wanted to take a second to also remind you: I interviewed whistleblower Dan Berulis to accompany my lengthy written story on NLRB. Hear from him in his own words:
one.npr.org/i/nx-s1-5355...
🔊 Listen Now: A whistleblower's disclosure details how DOGE may have taken sensitive labor data
All Things Considered on NPR One | 7:13
one.npr.org
April 18, 2025 at 11:33 AM
Happy Friday everyone. Thanks for reading NPR.org this week.
Wanted to take a second to also remind you: I interviewed whistleblower Dan Berulis to accompany my lengthy written story on NLRB. Hear from him in his own words:
one.npr.org/i/nx-s1-5355...
Wanted to take a second to also remind you: I interviewed whistleblower Dan Berulis to accompany my lengthy written story on NLRB. Hear from him in his own words:
one.npr.org/i/nx-s1-5355...
Reposted
Last chance to register for today’s webinar so you can prepare for your next pen test. We’ll talk about the latest attack trends and social engineering tactics. Don’t miss out! Register now! trustedsec.com/resources/we...
April 16, 2025 at 1:21 PM
Last chance to register for today’s webinar so you can prepare for your next pen test. We’ll talk about the latest attack trends and social engineering tactics. Don’t miss out! Register now! trustedsec.com/resources/we...
Reposted
The CVE Board had been preparing to take the mission private through a non-profit foundation, saying that the government's role raised longstanding concerns" about "sustainability and neutrality." www.thecvefoundation.org
April 16, 2025 at 1:48 PM
The CVE Board had been preparing to take the mission private through a non-profit foundation, saying that the government's role raised longstanding concerns" about "sustainability and neutrality." www.thecvefoundation.org