Our NVISO #IncidentResponse Team has been tracking #VShell campaigns worldwide! More than 1,500 active VShell servers were uncovered, each capable of giving attackers remote control over compromised networks. Read the report here 👇 https://t.co/XjAIIe99UH

"On September 29th, 2025, Broadcom disclosed a local privilege escalation vulnerability, CVE-2025-41244, impacting VMware’s guest service discovery features. @NVISO_Labs has identified zero-day exploitation in the wild beginning mid-October 2024. The vulnerability impacts both

🤓 I have built an MCP for YARA rule creation and it works pretty great! With DocYara MCP, you can: – Generate YARA rules – Validate and optimize them – Deploy your rule directly to VirusTotal Livehunt I did a full walkthrough on YouTube in the second tweet 👇

ℹ️ Coming to RSAC™ 2025: Three cutting-edge SANS sessions lined up for Day 2 next Tuesday 🔹 Kubernetes defense w/ Eric Johnson & @thecybergoof 🔹 AI & threat modeling w/ @aboutsecurity & @fulmetalpackets 🔹 Purple teaming w/ @ErikVaBu & Jeroen Vandeleur Get the full lineup →

Headed to this year's @RSAConference? From purple teaming to critical infrastructure to the future of detection and response, here are 12 #RSAC talks we think are worth making time for while there:

I'll be moderating this panel on continuous penetration testing. The panelists are all active practitioners who will provide insight on their experiences and predictions on this topic, along with the general role of AI and automation as an aid. @ChrisADale @ErikVaBu @joswr1ght

New blog post! Title: Detecting Teams Chat Phishing Attacks (Black Basta) by Stamatios Chatzimangou Link: https://t.co/zPpc6rxCDi #SOC #BlueTeam #Phishing #Sentinel #KustoQueryLanguage #SIEM #BlackBasta

🔮 Ready to see the future of #DetectionEngineering? Join @Steph3nSims & @ErikVaBu TOMORROW to learn how to create an automated, always-on pipeline that integrates #SOC tech, SIEM/XDR, SOAR, & ChatGPT. ➡️ Register: https://t.co/EtaPRusTk2 #PurpleTeaming #Automation

What if your #DetectionEngineering pipeline was always on? 😮 👉 Join @Steph3nSims and @ErikVaBu as they show how to automate your detection analytics with a CI/CD pipeline that continuously tests and deploys in real-time. ➡️ Register: https://t.co/EtaPRusTk2 #PurpleTeam

The new 3-day course "SEC535: Offensive AI" is currently in development with "Foster Nethercott" @OSTact13, who just joined Twitter/X. I'm really looking forward to this one! It should be set to beta in a few months.

Learn how to build the always-on purple team through #GenAI automation merged with industry-leading SOC technologies. Speakers @Steph3nSims and @ErikVaBu share their methodology, backed by demo, in this recorded #RSAC 2024 presentation.

Quick Hackfest Hollywood keynote announcement: Day One Keynote: David Weston (@dwizzzleMSFT) Day Two Keynote: Yarden Shafir (@yarden_shafir) October 28th & 29th in Los Angeles! Register for virtual (free) & in-person attendance here:

⚠️ Session alert: Did you catch @ErikVaBu, SANS Instructor & Co-founder of @NVISOSecurity, in his compelling session 'From Chatbot to Destroyer of Endpoints: Can ChatGPT Automate EDR Bypasses?' Share key takeaways! @RSAConference | #Cybersecurity #TheArtOfPossible

At RSA 2024 SF I'll be doing a co-talk with @ErikVaBu on "The Always On Purple Team: An Automated CI/CD for Detection Engineering" on May 5th at 10:50AM, as well as a Keynote Panel on "The Five Most Dangerous New Attack Techniques You Need to Know About" on May 7th at 4:15PM!

📅 Join us on May 16 in #Brussels for the 12th EU @MITREattack Community Workshop. Register now for free at https://t.co/WpwoRoU25H @CCBbelgium #CenterForThreatInformedDefense #CCBConnectAndShare Speakers: myself, @ErikVaBu @run2obtain @FDezeure @NebzzzV @WLesicki @rmasuoka ...

RSA CFP Results: 1 talk Accepted - The Always-On Purple Team: An Automated CI/CD for Detection Engineering with @ErikVaBu 1 talk Declined - The State of Binary Exploitation: How much time do we have left? I fought the urge to do an AI talk! 😈

Our Day 2 keynote speaker at Hackfest Hollywood in November is Lina Lau (@inversecos), delivering some cutting-edge cloud hacking content! The full agenda with all speakers to be announced very soon! https://t.co/99hVRdebwZ @SANSOffensive

How can we ensure purple teaming is not a stand-alone activity and integrate it into Continuous Security Operations efforts? Purple team experts @Steph3nSims & @ErikVaBu have an answer in this #RSAC 2023 Top-Rated Session. https://t.co/MkzdK2O7zF

Quite the turnout for @Steph3nSims and @ErikVaBu of @NVISOsecurity speaking about Building The Always-On #PurpleTeam. #RSA2023 Think we might have to run this as a webcast. Let us know what you think!

🚨 BETA COURSE 🚨 New SANS course SEC598 #SecurityAutomation for Offense, Defense, & #Cloud is now open for registration. Special BETA PRICING applies to this run only! This course will sell out. View the syllabus and register here: https://t.co/ZtW4D9WZwc