andpalmier.com (@andpalmier) 's Twitter Profile
andpalmier.com

@andpalmier

@andpalmier.com on bsky / Threat analyst, eternal newbie / Italian 🍕 in 🇨🇭 / @ASRomaEN 💛❤️

ID: 1134079415158222849

linkhttps://andpalmier.com calendar_today30-05-2019 12:49:37

1,1K Tweet

1,1K Followers

367 Following

Matt Johansen (@mattjay) 's Twitter Profile Photo
Matt Johansen
@mattjay

a year ago

What. The.

What. The.
Microsoft Threat Intelligence (@msftsecintel) 's Twitter Profile Photo
Microsoft Threat Intelligence
@msftsecintel

a year ago

💻 Sherrod DeGrippo 🛸 Learn more about generative AI jailbreak techniques from our blog: msft.it/6010WktX6

vx-underground (@vxunderground) 's Twitter Profile Photo
vx-underground
@vxunderground

a year ago

T-Mobile has confirmed they've been compromised (again). This time it was slightly different — they were compromised by Chinese state-sponsored Threat Actors. The United States Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) put

ANY.RUN (@anyrun_app) 's Twitter Profile Photo
ANY.RUN
@anyrun_app

a year ago

🚨ALERT: Potential ZERO-DAY, Attackers Use Corrupted Files to Evade Detection 🧵 (1/3) ⚠️ The ongoing attack evades #antivirus software, prevents uploads to sandboxes, and bypasses Outlook's spam filters, allowing the malicious emails to reach your inbox The #ANYRUN team

🚨ALERT: Potential ZERO-DAY, Attackers Use Corrupted Files to Evade Detection 🧵 (1/3) ⚠️ The ongoing attack evades #antivirus software, prevents uploads to sandboxes, and bypasses Outlook's spam filters, allowing the malicious emails to reach your inbox The #ANYRUN team
Ryan Chenkie (@ryanchenkie) 's Twitter Profile Photo
Ryan Chenkie
@ryanchenkie

10 months ago

⚠️ Developers, please be careful when installing Homebrew. Google is serving sponsored links to a Homebrew site clone that has a cURL command to malware. The URL for this site is one letter different than the official site.

⚠️ Developers, please be careful when installing Homebrew. Google is serving sponsored links to a Homebrew site clone that has a cURL command to malware. The URL for this site is one letter different than the official site.
John Scott-Railton (@jsrailton) 's Twitter Profile Photo
John Scott-Railton
@jsrailton

10 months ago

NEW: WhatsApp says Israeli mercenary spyware company #Paragon targeted scores of users around world. The infection happened with no interaction. No link to click or attachment to open. This is called a "zero-click" attack. WA says targets included journalists & members of

NEW: <a href="/WhatsApp/">WhatsApp</a> says Israeli mercenary spyware company #Paragon targeted scores of users around world. The infection happened with no interaction. No link to click or attachment to open. This is called a "zero-click" attack. WA says targets included journalists &amp; members of
vx-underground (@vxunderground) 's Twitter Profile Photo
vx-underground
@vxunderground

10 months ago

Today the US Cybersecurity and Infrastructure Security Agency (CISA) reported a backdoor on two patient monitors. As cybersecurity people, we find this deeply troubling. As malware people, we find this cool and badass. bleepingcomputer.com/news/security/…

andpalmier.com (@andpalmier) 's Twitter Profile Photo
andpalmier.com
@andpalmier

9 months ago

I’ve just pushed an update to my Search Engines AD Scanner (seads)! Feel free to try it out here: github.com/andpalmier/sea… Feedback is always appreciated! :)

vx-underground (@vxunderground) 's Twitter Profile Photo
vx-underground
@vxunderground

8 months ago

Security researcher President Elect Robert William Ross(Root) discovered a Prompt Injection on VirusTotal. Could this be used as a form of social engineering to trick users into thinking a file is safe when it's not? File hash: 1d30bfee48043a643a5694f8d5f3d8f813f1058424df03e55aed29bf4b4c71ce

Security researcher <a href="/gentoo_python/">President Elect Robert William Ross(Root)</a> discovered a Prompt Injection on VirusTotal. Could this be used as a form of social engineering to trick users into thinking a file is safe when it's not? File hash: 1d30bfee48043a643a5694f8d5f3d8f813f1058424df03e55aed29bf4b4c71ce
Ars Technica (@arstechnica) 's Twitter Profile Photo
Ars Technica
@arstechnica

8 months ago

Cloudflare turns AI against itself with endless maze of irrelevant facts arstechnica.com/ai/2025/03/clo…

vx-underground (@vxunderground) 's Twitter Profile Photo
vx-underground
@vxunderground

7 months ago

This random document fell off the back of a bus. Weird. This random document which randomly fell off the back of a bus (randomly) says MITRE is no longer supporting the CVE program as of April 16th, 2025. Which is crazy, because this random document is dated April 15th, 2025.

This random document fell off the back of a bus. Weird. This random document which randomly fell off the back of a bus (randomly) says MITRE is no longer supporting the CVE program as of April 16th, 2025. Which is crazy, because this random document is dated April 15th, 2025.
andpalmier.com (@andpalmier) 's Twitter Profile Photo
andpalmier.com
@andpalmier

a month ago

Hey all, I've published a new blog post titled "Interview preparation for a #cti role"! You can find it here: andpalmier.com/posts/cti-inte…