SOC Analysts DO NOT NEED A CISSP. $52k? That would be low for the midwest, let alone IRVINE,CA! . And of course "you need to work on weekends 2 to 3 days a month (but you can get day offs when you work on weekends)"🧐. So much wrong with this, and yet this isnt even abnormal

RT @Risk_Horizon: 🚀Exciting Breaking News! Our CEO, Immanuel Chavoya, the founder and CEO of RiskHorizon AI, was highlighted in a recent In….

RT @vxunderground: Because nerds keep asking us about alleged Sony ransomware incident. tl;dr Threat Actors did not deploy ransomware, no c….

RT @vxunderground: All ALPHV ransomware group did to compromise MGM Resorts was hop on LinkedIn, find an employee, then call the Help Desk.….

Malicious LLM's are on the rise, sparking AI Threat concerns👀. Many articles lack real context and countermeasures. I've tried to provide both in my guide. Read the guide: . #AI #Cybersecurity #StayInformed.

🚨Actively Exploited #ZeroDay Vulnerability in Zimbra Collaboration Suite (ZCS)🚨. ➡️A XSS vulnerability has been discovered by Google TAG & is actively exploited in ZCS email servers. ➡️ Apply the manual workaround provided by Zimbra to stop the bleeding.

Is the difference between us cyber defenders and threat actors simply how we chose to be paid?.

RT @tomough: North Korea test-fired 10+ missiles last month. Expensive stuff for a country cut off from the global economy. How do they do….

RT @uuallan: Two things are true: .1. Better firewalls alone are not going to stop ransomware attacks against schools. 2. Jesus Christ, we….

RT @vxunderground: The administrator of BreachedForums, Pompomurin, has been arrested by the FBI. More information:

RT @domchell: Following some additional testing of #CVE-2023-23397 - I can confirm MS have only partially fixed this. You can still trigger….

🚨CVE-2023-23397.➡️Name: #BearMail . (This name is a nod to the APT28 group moniker #FancyBear. Credit goes to Cert-UA for discovering and reporting this vulnerability to Microsoft!). ❓Thoughts on an image for this vuln❓

Credit goes to Cert-UA for discovering and reporting this vulnerability to Microsoft!. Audit for signs of exploitation using MSFTs Powershell script:

Excuse this cute gif that caught your attention - but this is a special delivery📩. 🚨1 of the #0Days patched by MSFT was leveraged by APT28 (#FancyBear) - CVE-2023-23397. Dubbing it #BearMail so its easier to track - go patch BearMail and audit your logs for exploitation!

RT @MDSecLabs: We've just published a quick write up on CVE-2023-23397, which allows a remote adversary to leak NetNTLMv2 hashes: https://t….

RT @SonicWall: What can #security teams learn from a year of cyberwarfare? @computerweekly talks with SonicWall's @FullM3talPacket about th….

RT @SonicWall: Using data from the 2023 SonicWall Cyber Threat Report, @CityAM looks at what's contributing to the increase in #IoT #malwar….

RT @SonicWall: Get the actionable cyber threat intelligence needed to adapt to the evolving tactics of bad actors. Join SonicWall #cybersec….

RT @helpnetsecurity: Covert cyberattacks on the rise as attackers shift tactics for maximum impact - - @SonicWall @….

RT @_CERT_UA: UAC-0056 to attack 20+ #UA GOV entities using backdoors planted 1-2 years ago, among them: #CredPump (SSH backdoor in a for o….

RT @catc0n: If you're a GoAnywhere MFT customer, heads up — exploited zero-day vuln, no CVE, no patch (that we can tell). Mitigation availa….