HiddenLayer is now a CVE Numbering Authority (CNA) assigning CVE IDs all @hiddenlayersec systems, services, & products + vulnerabilities it discovers not in another CNA’s scope https://t.co/dtCisnu2lD #CVE #CNA #VulnerabilityManagement #Vulnerability #Cybersecurity @CVEnew

A second vulnerability in MOVEit Transfer is announced, no evidence of exploitation yet, but orgs should patch quickly to reduce the risk. Remediation is as easy as replacing 3 DLLs or installing the latest version.

The MOVEit Transfer CVE is one of the more risky vulns in recent memory due to the quickness of threat actors to leverage it and extort their victims. We put together a few insights and how organizations can respond accordingly to this developing threat:

Really excited to share the 2023 @Qualys TruRisk Threat Research Report. Tremendous work by the Threat Research Unit to put together our view of the threat landscape.

Lots of valuable information in here to understand the true risk of this developing vulnerability

Great discovery from the Qualys Vulnerability Research Team. More details are available in our blog going over the vulnerability, how to find out if you are impacted, and how to detect exploitation. #PwnKit

Excellent analysis of the REvil ransomware from the @qualys Malware Threat Research Team.

Joke’s on you hackers, 15% of my password isn’t even one character.

Today marks my last day @TripwireInc . It's been an exciting 6.5 years building out the security content and research capabilities. While I am sad to leave behind lifelong friends, I am excited for the next chapter.

I updated @MITREattack TEACH to now map to v7.0, which now includes sub-techniques.

The ATT&CK Evaluations Team just released the APT29 Evaluation results, DIY Eval profile, and a Joystick update on https://t.co/39fEmIMIUG. Check out https://t.co/Mr2Lyo0S1O to learn more about the evaluation process.

We're in full swing producing shields and other PPE. Yesterday we donated 50+ to medical professionals in OR and CA, and a team at PSU is evaluating a new laser cut model. If your org needs face shields or other PPE, please contact us through our web site. https://t.co/Kwisdvoxbg

Full sell out crowd of 96. Had a great time, thanks for everyone who made it out!

Environment spun up, @Elastic stack started, @MITREattack CALDERA running, and @redcanaryco Atomic Red Team loaded. I'm ready to teach some things here at #RSAC. Room 314 in the south hall if you'd like to get on the wait-list.

Headed to #RSAC and found out my learning lab is now sold out. This should be a fun conference!

I’ll be doing a Learning Lab at #RSAC next Wednesday. Here is a preview of what we’ll be doing in the lab.

So is one supposed to only wear this on job interviews, or is it supposed to be worn daily at work? Asking for a friend.

Juice jacking is as simple as plugging your phone into a public USB port or changing station. 📱 https://t.co/55Xb4DXTAi

Yesterday I climbed Mt St Helens to a summit of 8400 ft. Breathtaking views give you a whole new perspective of our planet.