Hi folks, if you have VMware products that are end of life, you may want to download your keys and the images NOW.

Migration of the customer portal is happening today, soon you won't have access to old license keys.

What exactly do you have to do to *not* get bail if you're facing criminal charges in Finland?

ICYMI: On Monday the American Hospitals Association yet again came out against imposition of any cybersecurity regs that might affect hospitals.
However, it is 100% in favor of the US gov making liberal use of the IC and military vs groups in RU/CN/NK.😄
aha.org/lettercomment/…

Great thread of practical, here's-how-to-do-it AD security hardening advice from Nathan.

TIL: Although (directly contrary to the executive order establishing the CSRB) there's been no CSRB investigation of Solarwinds there was a kind of after-action review by the National Security Council.
That review is FOUO, but GAO summarized the clearly profound insights😏 in it:

Sigh.

At least for a year--but potentially for far, far longer--attackers could have performed password spraying against MS Azure accounts without that showing up in a target organization's logs.
🤦‍♂️

😂😂twitter.com/MalwareJake/st…

I’ve thought about doing writeups on what the Office hardening work was like. A few stubborn folks working on hard problems, both technically and structurally.

It’s a difficult story to tell, and not mine to tell for most pieces of it. But I am proud to have been a part of it.

I unironically love this clip, and have as long as I can remember.