I’m leaving Twitter but I’ve been advised not to delete my account in order to avoid possible misuse - so I’ll leave it here as a placeholder. See you at Mastodon!

Bonus tip: Add your Mastodon profile to your twitter bio to make it easier for people to find you with automated tooling.

I heard all the cool kids are now at Mastodon so here we go @tomituominen@infosec.exchange

This blog post from Ian Levy, the NCSC’s departing Technical Director is a must read -

"The point is that you do not take legacy technology no matter how cheap it is." @IlvesToomas Watch the full interview 👉 https://t.co/ehkEXhZcgC

Watch this special episode in video: https://t.co/ehkEXhZcgC

New episode! This is a special English language episode, with a special guest, president @IlvesToomas. We discuss what has enabled Estonia to become the most digitally advanced country and what are the ingredients for a robust cyber defense. Enjoy! 👉 https://t.co/Od7KVJIjok

security vacation club

"Really engaging and entertaining talk that made me reconsider #cybersecurity as a career option." Can feedback get any better than that? We don't think so! 💎 Huge thanks @tomituominen for presenting at Hive Helsinki and sharing your knowledge with junior #programming talent!

CyberChef for Security Analysts has great hands-on labs with real-world examples, rather than abstract data. It's broken up well into chunks and if you can dedicate 20 minutes per day on the course, you can see your progress. The prompt feedback is great! - Alex, analyst

Rare footage of a bug bounty hunter explaining a bug chain #BugBounty

Where do you think all the cybersecurity that is taught in universities came from? It was developed by people who, obviously, could not have learned it there. And the vast majority of us are still around.

@tomituominen keynoting at this year’s #SPHERE22

I did a 20 minute talk titled ”Securing a hyper-growth technology company”: https://t.co/zyQ8ZVnSJa |

I was reminded* of a figure I often draw for students to explain research: Good research is often defined by getting stuck for long periods of time, followed by jumps in understanding. What you do during these plateaus in progress is part of what defines you as a researcher.

@r0zetta @0xtosh @juhanihintikka @mikewalsh @CyberSauna @JKauhanen @mikko @cmioffice It was great to see our old friend @tomituominen, the #infosec swiss army knife, discussing how to minimize attack surface as a part of "Securing a booming technology company" on the #SPHERE22 stage.

Multifactor authentication: something you know, something you have, or something that IT support is willing to reset for you over a quick phone call.

https://t.co/NNNpsgPB1i

If you helped a relative get on the Internet in the early 90’s, why not send some money to Peter Tattam, author of Trumpet Winsock?