paulsparrows Profile Banner
Paolo Passeri (@ppasseri@infosec.exchange) Profile
Paolo Passeri (@[email protected])

@paulsparrows

Followers
5K
Following
539
Media
2K
Statuses
7K

Security Professional @Netskope, Creator of the Cyber Attacks Timelines @ https://t.co/O68Piykqd9 Tweets are my own!

Rome
Joined July 2009
Don't wanna be here? Send us removal request.
@paulsparrows
Paolo Passeri (@[email protected])
8 months
CVE-2024-0012 and CVE-2024-9474 have joined the list of the #vulnerabilities affecting firewalls and VPNs actively exploited by threat actors in 2024. #zerotrust
Tweet media one
0
1
4
@paulsparrows
Paolo Passeri (@[email protected])
27 days
The #cyberattacks timeline for January 2025 is out with 216 events dominated by #cybercrime. #Malware and #Ransomware led the attack techniques, and once again #phishing emails led the initial access vectors. #cybersecurity #infosecurity
Tweet media one
1
1
2
@paulsparrows
Paolo Passeri (@[email protected])
29 days
The @Netskope Threat Labs Report #Brazil 2025 is out! ๐Ÿ‡ง๐Ÿ‡ท. ๐ŸŒจ๏ธ #OneDrive most abused #cloud app for #malware.๐ŸŒจ๏ธ #Microsoft most impersonated brand for #phishing.๐ŸŒจ๏ธ 62% of policy violations concern regulated data.๐ŸŒจ๏ธ 96% of organizations use #genAI apps.
Tweet media one
0
0
1
@paulsparrows
Paolo Passeri (@[email protected])
1 month
The 16-30 January #cyberattacks timeline is out with 107 events and a #threat landscape dominated by #malware andย #ransomware. #phishing emails continued to lead the initial access techniques. #cybersecurity #infosecurity #cloudsecurity
Tweet media one
0
0
2
@paulsparrows
Paolo Passeri (@[email protected])
1 month
#Threat actors continue to exploit legitimate #cloud apps. In this campaign discovered by the @Netskope Threat Labs, #phishing pages are hosted on Glitch, and Telegram is abused to exfiltrate credentials and bypass MFA. #cloudsecurity.
0
0
0
@paulsparrows
Paolo Passeri (@[email protected])
1 month
The @Netskope Threat Labs for Europe 2025 ๐Ÿ‡ช๐Ÿ‡บ is out!. ๐ŸŒฉ๏ธ #GitHub is the top #cloud app for #malware downloads (16%).๐ŸŒฉ๏ธ Adobe is the most impersonated brand for #phishing (29%).๐ŸŒฉ๏ธ 57% of #DLP violations concern regulated data.๐ŸŒฉ๏ธ 91% of orgs use #GenAI apps.
Tweet media one
0
0
1
@paulsparrows
Paolo Passeri (@[email protected])
2 months
One of the most surprising trends from the @Netskope Cloud and Threat Report 2025 is that #GitHub has surpassed Microsoft #OneDrive as the most exploited #cloud app for delivering #malware. I summarised the findings in a blog post for Infosec Magazine.
Tweet media one
0
0
1
@paulsparrows
Paolo Passeri (@[email protected])
2 months
The @Netskope Threat Labs Report for #Healthcare 2025 is out!. โ›ˆ๏ธ 13% of #malware downloads come from GitHub.โ›ˆ๏ธ 88% of organizations use #genAI apps.โ›ˆ๏ธ #ChatGPT is the most used app with 81%.โ›ˆ๏ธ 81% of data policy violations are related to regulated data.
Tweet media one
0
0
1
@paulsparrows
Paolo Passeri (@[email protected])
2 months
The 1-15 January 2025 #cyberattacks timeline is out!. ๐Ÿ’€ #cybercrime dominated the #threat landscape.๐Ÿ’€ #malware was the top attack vector the #threat landscape.๐Ÿ’€ #phishing emails were the main initial access vector. #cybersecurity #infosec.
Tweet media one
0
0
2
@paulsparrows
Paolo Passeri (@[email protected])
3 months
The #cyberattacks statistics for Q4 2024 are out!. ๐Ÿ’€ #Cybercrime accounted for 70% of the events.๐Ÿ’€ #Malware continued to lead the Attack Techniques chart with 28%.๐Ÿ’€ #Phishingย led theย Initial Attack Vectorsย with 17%. #CyberSec #CloudSecurity
Tweet media one
0
0
1
@paulsparrows
Paolo Passeri (@[email protected])
3 months
The #cyberattacks statistics for December 2024 are out! (Better late than never. ). ๐Ÿ’€ #Cybercrime continued to lead the Motivations.๐Ÿ’€ #Malware led the Attack Techniques.๐Ÿ’€ #Phishing Emails led the Initial Access. #cybersecurity #infosec #cloudsecurity
Tweet media one
0
2
4
@paulsparrows
Paolo Passeri (@[email protected])
3 months
And finally the last #cyberattacks timeline for 2024 is out! (December H2 - I know I am a little late!). #Malware continued to dominate the #threat landscape and #phishing was, once again, the preferred method for initial access. #cybersecurity #infosec
Tweet media one
1
0
3
@paulsparrows
Paolo Passeri (@[email protected])
3 months
Netskope Threat Labs discovered a new drive-by download campaign abusing fake CAPTCHA and CloudFlare Turnstile to deliver LegionLoader #malware payload.
0
1
2
@paulsparrows
Paolo Passeri (@[email protected])
3 months
The 1-15 December 2024 #cyberattacks timeline is out with 115 events and a #threat landscape dominated by #malware. #Cybercrime continues to be the main motivation, and #phishing the main initial access vector. #CyberSecurity #Cloudsecurity #InfoSecurity
Tweet media one
0
0
4
@paulsparrows
Paolo Passeri (@[email protected])
4 months
The new @Netskope Threat Labs research reveals a 30x growth in data sent to #genAI, increasing the risk of sensitive data exposure. โ›ˆ๏ธ 90% of orgs use genAI apps.โ›ˆ๏ธ 98% of orgs use apps that incorporate genAI features.โ›ˆ๏ธ 72% of genAI apps are Shadow IT.
Tweet media one
0
2
3
@paulsparrows
Paolo Passeri (@[email protected])
4 months
The @Netskope #Threat Labs Report #Financial Services 2025 is out!. โ›ˆ๏ธ 4.7 out of 1000 users click on #phishing links.โ›ˆ๏ธ 40% of phishing targets #cloud apps.โ›ˆ๏ธ 20% of #malware downloads come from #GitHub.โ›ˆ๏ธ 95% use #genAI, with an average of 10 apps.
Tweet media one
0
0
1
@paulsparrows
Paolo Passeri (@[email protected])
4 months
The #cyberattacks statistics for November 2024 are out with 245 events characterized primarily by #cybercrime (72%) and #malware attacks (26.8%). #Phishing continued to be the main initial access vector (14.9%). #Cybersecurity #Infosecurity #Cloudsecurity
Tweet media one
0
1
1
@paulsparrows
Paolo Passeri (@[email protected])
4 months
๐Ÿšจ SEO poisoning and fake CAPTCHAs are here to stay! @Netskope Threat Labs found that attackers have been distributing malicious PDFs across 260+ domains and 4,000+ keywords to steal credit card data and deliver the Lumma Stealer #malware.
0
1
2
@paulsparrows
Paolo Passeri (@[email protected])
4 months
The 16-30 November 2024 #cyberattacks is out with 117 events! #Malware continued to dominate the #threat landscape, and #phishing emails confirmed to be the main initial access vector. #cybersecurity #infosecurity #cloudsecurity
Tweet media one
0
0
3
@paulsparrows
Paolo Passeri (@[email protected])
5 months
Yet another interesting #malware strain unearthed by our @Netskope Threat Labs: Telegram is being abused as command and control for a new Golang #backdoor, possibly of Russian origin. #cloudsecurity
0
1
2
@paulsparrows
Paolo Passeri (@[email protected])
5 months
The @Netskope Threat Labs Report for Japan ๐Ÿ‡ฏ๐Ÿ‡ต is out!. โ›ˆ๏ธ 3.7 out of 1000 users click on a #phishing link.โ›ˆ๏ธ 52% of phishing targets #cloud apps and 27% is referred from search engines.โ›ˆ๏ธ 89% of organizations adopt #genAI apps. #cloudsecurity
Tweet media one
0
0
2