Sometimes I take for granted that on our team we have real-time visibility into hundreds of simultaneous intrusions from every APT & FIN group on the planet. Including many right now from apex threat actors that others wait a lifetime to experience. I look at new intrusion sets

FSB phoning it in on disguises.

I got enough requests that I decided to experiment with Office Hours. This is an opportunity to discuss a wide range of topics, including: - PowerShell - Technology - Science - Philosophy - Whatever I look forward to connecting with you. https://t.co/4xuzV26dw6

Luxury just got more precise! LVMH’s Watch Division is taking a minority stake in Swiss movement maker La Joux-Perret from Japan’s Citizen Group, deepening its access to high-end, Swiss-made movements at scale. This strategic move strengthens the backbone of TAG Heuer, Hublot,

@IceSolst @taviso @filpizlo I think you've missed some unintended emergent behaviors. Our industry rewards visibility, not responsibility. You’re judged by GitHub stars, conference selfies, and CVE counts; most of all, bug bounties. Literally rewarding researchers to pop, drop, and bounce. Publishing 0-days

😬😬

To clarify: this change is not related to any security concern, and only impacts Yubikeys and passkeys - not other 2FA methods (such as authenticator apps). Security keys enrolled as a 2FA method are currently tied to the twitter[.]com domain. Re-enrolling your security key will

Has anyone ever dropped an LLC as a lead magnet?

explanation:

@ItsReallyNick Getting off of Twitter enrolled keys so we can stop doing hacky things for domain trust. Physical security keys are cryptographically registered to Twitter’s domain and need to be re-enrolled under X.

This seems odd

Probably one of the biggest losses of US cyberweapons in years. 👇 All from private companies... ❓How were stolen capabilities used? ❓Were NSA etc ops burned? ❓Were they turned against Americans? Raises alarming questions about for-profit offensive sector's reliability.

Chinese authorities allege a 27-month NSA operation against the China's National Time Service Center. Initial credential theft apparently via a smartphone-messaging exploit. They relese technical details, including information about 80+ remote logins between April 11 and August

FWIW, the conclusion I increasingly believe is that measuring the security state of an environment is somewhat like measuring human health: While there's never going to be one number or even a few numbers that are simple yet comprehensive, good metrics are still indispensable.

Just released: Android’s Age Signals API (beta) – to attempt to comply with various new U.S. state age verification requirements… I’ve pretty much given up trying to maintain legacy mobile app side projects.

@chrissanders88 Classic artifact triage moment - no memory, no EDR, just bread crumbs. Start with the filesystem residue: 🔹 $MFT + $LogFile - look for update.dll create/delete timestamps, sequence numbers, and parent dir handles. 🔹 USN Journal - confirm write/delete ops, session IDs, and

Friday marked the end of my 13 year journey with Mandiant/FireEye/Mandiant/Google. 1/

We have two open roles at @proofpoint 🥳 Along with the previously mentioned engineering role, we also have an open Threat Researcher role on our e-crime research team: 👇 Come hunt bad guys with me. https://t.co/nhLJmwfuWq

hope they get their story straight 🤣

hope they get their story straight 🤣

https://t.co/cqWc3vgsYY

From S1ngularity to Shai-Hulud, NPM is the core topic we cover in episode 2 of The Permiso Security podcast

⚖️🔗 https://t.co/UFtjiPOW5L Side note: @AlinaHabba - we haven't caught up since Lehigh (worlds collide!), but cool to see your quote here: "The charges against Jubair announced today are the result of a lengthy investigation into particular cyber threat actors, often referred to