Just received the largest challenge coin I’ve ever even seen — thank you Naval Postgraduate School Naval Postgraduate School and Homeland Security, it was an honor to be your keynote and prepare our nation’s homeland security and emergency management leaders for the latest security threats.

At the upcoming SANS #HumanRiskSummit , Rachel Tobac will join us with a special “Ask a Human Hacker Anything!” session. Secure your spot!

Full agenda coming soon | Join Summit chair Lance Spitzner Aug 1-2 in Norfolk, VA or Live Online: sans.org/u/1tys

*opportunity to hire someone brilliant*
I have your next best hire: 16+ years of experience in finance, sales ops, program management & data analytics skills looking for a Data Analytics, Finance, Project Management, Sales Ops role in SF Bay Area (IRL or remote/hybrid are all

Thankful for the ✨2024 #SECVC Call for Competitors Review Board!✨

These fine folks will be scoring all submission (hint hint to get yours in BEFORE May 11th)

J Isacoff
bngr
Jamie Williams
Rachel Tobac

🔗se.community/vishing-compet…

Thrilled to keynote Rapid7's Take Command virtual event! Join me, @brianhonan, Jaya Baloo and Raj Samani on May 21st as we dig into emerging attack methods and how Security Operations teams can catch the latest attacks!
rapid7.brighttalk.com/?utm_source=re…

We at WIRED reported 6 weeks ago that the hackers behind the Change Healthcare ransomware debacle received a $22 million payment. Only now has Change Healthcare confirmed that it paid—while also noting that stolen patient data is still at risk of leaking. wired.com/story/change-h…

Lol ya'll I'm going to need to mute the word 'keyboard' if you keep these posts up.

Reminder to use a burner number for apps and services if you prefer to remain anonymous! I wish apps and services wouldn’t give our names out but unfortunately that’s not the reality.

That’s the first. Rachel Tobac was right.

Every now & then, something comes along that smart people warn us will eventually become a threat vector. For years now, experts like Rachel Tobac 👑 Alyssa Miller 🦄🛩️ or Jayson E. Street 💙 🤗💛 Hacker - Helper - Human have cautioned us that this was coming.

They were right.

It’s a good thing the attacker used the same email that was tied to the github account behind the xz backdoors. It made it easy for OpenSSF & OpenJS could identify the attempt.

Imagine if they used the advanced tradecraft of multiple email accounts 👻

openjsf.org/blog/openssf-o…

*A few tips to help spot a live deepfake video call right now based on the latest deepfake tools available*
- have the person stick out their tongue and move it around (tongue will look odd)
- have the person move their head to the right & left or up & down to a far degree (it