Brandon M
@mccaffreyb.bsky.social
I’ve worked in IT/Cybersecurity for 10+ years. Post mostly about it.
Founder & CEO of Verifia: verifia.io
Love breaking/fixing things, new & old tech, surfing, and 2000s alt-rock.
Feel free to DM about Verifia.
Founder & CEO of Verifia: verifia.io
Love breaking/fixing things, new & old tech, surfing, and 2000s alt-rock.
Feel free to DM about Verifia.
This has been my one of my “Larry David” issues for a long time.
Simply amazing to this happen:
techcrunch.com/2025/10/07/c...
Simply amazing to this happen:
techcrunch.com/2025/10/07/c...
California bans loud commercials on Netflix, Hulu, and other streaming services | TechCrunch
Starting July 1, 2026, streaming services won’t be allowed to “transmit the audio of commercial advertisements louder than the video content the advertisements accompany,” according to the bill's text...
techcrunch.com
October 10, 2025 at 1:24 PM
This has been my one of my “Larry David” issues for a long time.
Simply amazing to this happen:
techcrunch.com/2025/10/07/c...
Simply amazing to this happen:
techcrunch.com/2025/10/07/c...
Your voice is as unique as your fingerprint. Probability of someone having the same voice? About 1/64 billion. Underrated authenticator
September 24, 2025 at 6:33 PM
Your voice is as unique as your fingerprint. Probability of someone having the same voice? About 1/64 billion. Underrated authenticator
This is the future we were promised in Revelation Space (Alastair Reynolds).
Good AI fighting bad AI silently for the future.
Good AI fighting bad AI silently for the future.
AI vs. AI: The $10.4b Cybersecurity War You’re Not Seeing The Hidden Clash Powering Global Cyber Defense Artificial intelligence isn’t just revolutionizing consumer technology—it’s fueling.... @cosmicmeta.ai #AIcyber
https://u2m.io/qvxXPmoB
https://u2m.io/qvxXPmoB
AI vs. AI: The $10.4b Cybersecurity War You’re Not Seeing
Explore the secret battle of artificial intelligence against itself in cybersecurity, as billions are spent on autonomous AI models defending critical infrastructure. Discover the unseen $10.4 billion contest, its impact on global security, and the future of AI-powered cyber defense.
cosmicmeta.ai
September 24, 2025 at 6:22 PM
This is the future we were promised in Revelation Space (Alastair Reynolds).
Good AI fighting bad AI silently for the future.
Good AI fighting bad AI silently for the future.
Delete trade secret laws.
They are being abused by unhinged CEOs to thwart competition. Employees are pawns caught in the middle.
They are being abused by unhinged CEOs to thwart competition. Employees are pawns caught in the middle.
September 3, 2025 at 6:36 PM
Delete trade secret laws.
They are being abused by unhinged CEOs to thwart competition. Employees are pawns caught in the middle.
They are being abused by unhinged CEOs to thwart competition. Employees are pawns caught in the middle.
You think these tech executives won’t send THEIR kids to college?
Love how everyone seems to think college is a worthless experience for everyone else.
apple.news/A3n8TNsvCTFS...
Love how everyone seems to think college is a worthless experience for everyone else.
apple.news/A3n8TNsvCTFS...
Tech CEOs Urge Young People to Rethink College Degrees Amid Industry Shifts — Investopedia
Tech executives like Palantir CEO Alex Karp have said they don't care if or where employees went to college—work performance matters more. Apple CEO Tim Cook has said a four-year degree isn't required...
apple.news
September 2, 2025 at 6:40 AM
You think these tech executives won’t send THEIR kids to college?
Love how everyone seems to think college is a worthless experience for everyone else.
apple.news/A3n8TNsvCTFS...
Love how everyone seems to think college is a worthless experience for everyone else.
apple.news/A3n8TNsvCTFS...
Maybe we can train a super AI to spot phishing emails and just get them out of the inbox?
Someone needs to make a human v AI phishing email spotting contest.
I’d watch that.
Someone needs to make a human v AI phishing email spotting contest.
I’d watch that.
The effectiveness of cybersecurity training is cast into doubt by a research paper from U.C. San Diego with many users ignoring lessons. techhq.com/news/cyberse...
August 22, 2025 at 8:13 PM
Maybe we can train a super AI to spot phishing emails and just get them out of the inbox?
Someone needs to make a human v AI phishing email spotting contest.
I’d watch that.
Someone needs to make a human v AI phishing email spotting contest.
I’d watch that.
Great write-up from Chris.
Identity = new firewall. Helpdesk = new security guards
Identity = new firewall. Helpdesk = new security guards
Is there a ghost in your cloud? 👻 Traditional security looks for a smash-and-grab, but modern attackers are playing the long game. They get in, stay quiet, and strike later. #Cybersecurity #CloudSecurity #SocialEngineering #InfoSec
open.substack.com/pub/cpfcoach...
open.substack.com/pub/cpfcoach...
The Ghost in Your Cloud: How Hackers Use Social Engineering to Infiltrate and Attack
Unmasking the "low and slow" identity attacks where threat actors lie in wait within your cloud accounts, and how to fight back before they strike.
open.substack.com
August 20, 2025 at 11:06 PM
Great write-up from Chris.
Identity = new firewall. Helpdesk = new security guards
Identity = new firewall. Helpdesk = new security guards
What do the kids these days listen to while working?
Is lofi still the music of choice or am I an old man for thinking it is?
Is lofi still the music of choice or am I an old man for thinking it is?
August 19, 2025 at 6:18 PM
What do the kids these days listen to while working?
Is lofi still the music of choice or am I an old man for thinking it is?
Is lofi still the music of choice or am I an old man for thinking it is?
The IT Helpdesk does not get enough love
August 18, 2025 at 3:09 PM
The IT Helpdesk does not get enough love
More attacks on the HelpDesk.
Is social engineering the new phishing? Low-cost, high pay-off.
Is social engineering the new phishing? Low-cost, high pay-off.
Pandora’s breach links back to the Salesforce data theft campaign. Your platform may be secure—but your integrations might not be. #infosec #dataprotection #thirdpartyrisk www.bleepingcomputer.com/news/securit...
Pandora confirms data breach amid ongoing Salesforce data theft attacks
Danish jewelry giant Pandora has disclosed a data breach after its customer information was stolen in the ongoing Salesforce data theft attacks.
www.bleepingcomputer.com
August 6, 2025 at 12:27 AM
More attacks on the HelpDesk.
Is social engineering the new phishing? Low-cost, high pay-off.
Is social engineering the new phishing? Low-cost, high pay-off.
I never really liked dog movies. I thought superhero movies were played out.
But this latest Superman movie has me questioning both opinions.
Hat tip. Decent movie. 🎥
But this latest Superman movie has me questioning both opinions.
Hat tip. Decent movie. 🎥
July 20, 2025 at 12:45 AM
I never really liked dog movies. I thought superhero movies were played out.
But this latest Superman movie has me questioning both opinions.
Hat tip. Decent movie. 🎥
But this latest Superman movie has me questioning both opinions.
Hat tip. Decent movie. 🎥
Yes, this largely seems like PR from Google. Yes, this is still cool 😎
Google CEO Sundar Pichai revealed that its AI agent Big Sleep successfully stopped a cyber exploit before it was executed—marking the first time an AI has proactively prevented a cyberattack. The breakthrough signals a shift in cybersecurity toward AI-powered preemptive defense.
Google’s AI agent ‘Big Sleep’ foils cyberattack in groundbreaking first, says Sundar Pichai | Mint
www.livemint.com
July 16, 2025 at 8:13 AM
Yes, this largely seems like PR from Google. Yes, this is still cool 😎
Admittedly late to the watch party… but Black Mirror may be the most important show for the 21st century
July 4, 2025 at 7:40 AM
Admittedly late to the watch party… but Black Mirror may be the most important show for the 21st century
Anyone using AI Pentesters? Curious what people think who’ve tried it?
I Built an AI Copilot for Pentesting—Then Turned It Off
Rodney the Advanced Web Pentesting Assistant is a tool to help security researchers. It's not a "get bugs quick scheme," but a companion to provide more ideas when your own list runs out.
#copilot #hackernews #news
Rodney the Advanced Web Pentesting Assistant is a tool to help security researchers. It's not a "get bugs quick scheme," but a companion to provide more ideas when your own list runs out.
#copilot #hackernews #news
I Built an AI Copilot for Pentesting—Then Turned It Off
Rodney the Advanced Web Pentesting Assistant is a tool to help security researchers. It's not a "get bugs quick scheme," but a companion to provide more ideas when your own list runs out.
hackernoon.com
June 26, 2025 at 3:03 AM
Anyone using AI Pentesters? Curious what people think who’ve tried it?
Finally the perfect security solution
May 21, 2025 at 10:10 PM
Finally the perfect security solution
Is anyone @ OpenAI working on improving voice options via their real-time API? Cause that would be cool… 😎
May 20, 2025 at 6:45 PM
Is anyone @ OpenAI working on improving voice options via their real-time API? Cause that would be cool… 😎
“IABs” - ashamed to say I hadn’t heard of these before this article. Interesting shift in the cybercrime world.
Initial Access Brokers Shift Tactics, Selling More for Less <- as IABs are a large contributor to providing initial access for exploitation by ransomware gangs - brace for impact
Initial Access Brokers Shift Tactics, Selling More for Less
Initial Access Brokers shift to low-cost, high-volume access sales in 2024, fueling broader, faster cyberattacks.
thehackernews.com
April 20, 2025 at 11:18 PM
“IABs” - ashamed to say I hadn’t heard of these before this article. Interesting shift in the cybercrime world.
Wow, interesting to see a long tail of financial impacts beyond the initial cyberattack… is this the first time an org has made these type of “loans”?
📌 UnitedHealth Demands Immediate Repayment of Loans Issued After Last Year's Cyberattack https://www.cyberhub.blog/article/3657-unitedhealth-demands-immediate-repayment-of-loans-issued-after-last-years-cyberattack
UnitedHealth Demands Immediate Repayment of Loans Issued After Last Year's Cyberattack
Following the massive cyberattack suffered by UnitedHealth Group's Change Healthcare unit last year, the company launched a temporary financial assistance program to support medical practices with their short-term cash needs, offering interest-free and fee-free loans. A little over a year later, UnitedHealth is demanding that borrowers immediately repay their outstanding balances. This aggressive move comes after UnitedHealth provided financial aid to mitigate the impacts of the cyberattack.
www.cyberhub.blog
April 12, 2025 at 8:35 PM
Wow, interesting to see a long tail of financial impacts beyond the initial cyberattack… is this the first time an org has made these type of “loans”?
Am I the only one who thinks YouTube Shorts sucks?
April 12, 2025 at 4:57 AM
Am I the only one who thinks YouTube Shorts sucks?