#AADInternals Azure AD & Microsoft 365 kill chain shows how different attacker roles can get access to #AzureAD and #Microsoft365. Pro tips: 1. Use MFA! 2. Avoid inviting unnecessary guests 3. Minimize # of Global Admins 4. Protect your on-prem servers https://t.co/YXBIu3yCgE

Hey network, if any of you is attending Black Hat Europe and/or BSides London next month, remember to register for @msftsecresponse security researcher celebration event below! I'll be there too 😎 https://t.co/s5JJapwHqy

Today's highlights: Morning run in crispy autumn weather & exposing grand child #3 to hacker swag 🤟

📢¡Abrió el Call for papers EKOPARTY MIAMI 2026! Postulá tu charla para ser parte de la primera edición de la EKO MIAMI 🔥 📌 Conocé todos los requisitos y fecha límite >> https://t.co/PX73B2JIel - 📢 Call for Papers is now open! Submit your talk to be part of the first-ever

Wow! This was a total surprise to me to be nominated for an award in the Tech Leader category 😮🙏🏆 I did not apply for this or anything, so a BIG thank you to the ones that nominated me 🙏 Now, my followers, please go and vote - let's bring this trophy home 💪💪

During his BlueHat Asia opening remarks, Tom Gallager (@secbughunter), VP of Engineering, MSRC discussed how Asia is home to some of the world’s top security researchers, and we’re proud to recognize those who contribute to Microsoft products and services. We have over 40 MVRs

We hosted a pre-BlueHat Asia welcome reception this evening, giving our speakers, MSRC MVRs, and Microsoft team members a great opportunity to connect. A huge thank you to our presenters and MVRs for their role in making #BlueHatAsia a success! We can’t wait to kick off BlueHat

@Thomas_Live and @samilamppu quietly built one of the most useful open projects for Entra ID defenders. The Entra ID Attack & Defense Playbook It’s free, community-driven, and packed with real detection logic and KQL queries. 🧵👇

At the Microsoft Security Response Center (MSRC), your feedback drives our innovation. Every enhancement starts with listening to the security community and our customers. Based on your input, we’ve introduced three new features designed to make your experience more efficient,

The non-U.S. tour 2025 is coming to an end as I finally arrived back to Finland 🇫🇮! On my way back from Ekoparty 🇦🇷, I also visited the mothership to meet my team members in-person 😊

Watching @merill and @_dirkjan while having a Heineken. Am I doing this right?

Today was the third and last day of @ekoparty - the biggest hacker conference in Latin America. One of the best conferences I've ever attended! Thanks for having me as a speaker, it was a blast 🤟

Next on @ekoparty main stage: @inbarraz talking about AI attacks (encrypted in 🇪🇸)

@_dirkjan found one of the most severe vulnerabilities ever discovered in Microsoft Entra ID. One that could have compromised every tenant in the cloud. In this episode, we unpack the story, the stress, and the mindset behind responsible disclosure. 🔥 We dive deep into his

Now on the @ekoparty main stage: @patrickwardle shows how to do macOS reflective code loading 🔥 (also nice shout-outs to folks like @_xpn_ )

People of @ekoparty! If you didn't manage to get #AADInternals sticker after my talk on Wednesday, now is your chance! I still have few left so come and say ¡Hola! to get yours 🫵

Getting ready for the @ekoparty 2025! ✅️ Morning run ✅️ Slides ✅️ Demos ✅️ Stickers ✅️ Challenge coins ✅️ Adaptor

Treated myself with a morning run after 30+ hours of traveling/sitting on a train/airport/airplane/taxi. Nice to be finally in Buenos Aires 🇦🇷

Congratz Yuval!

I'm charging both my laptop AND phone at the airport lounge while using the airport public wifi. Am I doing this right @UK_Daniel_Card?