Oh look. Jobs in Ottawa doing malware and security research with meee! Mooove, go apply, these don't stay posted long.

"unauthenticated stack-based buffer overflow"... 2025, Commercial VPN. The gift that keeps giving...

The Zero Day Quest is nearing its end on January 19th! Don't miss out on the exciting bonuses for AI and LLM vulnerability discoveries. If you're new to exploring AI and LLM systems for security research, where should you begin? Tune in to the latest episode of The BlueHat

Friends don't let friends use phishable authenticators. Passkeys, WHfB, hardware tokens, or CBA... pick one or all of them, who cares, they all actually work.

Friends don't let friends use phishable MFA! Stop arguing about passwords and phishing training and go enable this or one of the other implementations of passkeys across your org.

While I would love to recruit everyone to Ottawa, every once in a while there comes an opportunity that deserves a jaunt out to Redmond. This is one of those times.

Key points of intersection between red teaming & threat intel include the narrative basis on how threat actors conduct their attacks, use of threat data to measure effectiveness, & exploration of emerging threats and ways to test & beat new technology. msft.it/6014SIpcr

Strengthen identity threat detection and response with linkable token identifiers. Linkable token identifiers are now available for: Entra sign-in logs Exchange Online audit logs Graph activity logs Teams audit logs SharePoint Online audit logs techcommunity.microsoft.com/blog/microsoft…

This mitigation is critical (esp based on Storm-2603 exploitation) and I expect it’s most-likely to be overlooked: 🔃🔑 Rotate SharePoint Server ASP .NET machine keys • After applying the latest security updates above or enabling AMSI, it is critical that customers rotate

Major Update: We now believe this incident impacts other Salesloft Drift integrations, not just Salesforce. We’re advising Salesloft Drift customers to treat any and all authentication tokens stored in or connected to the Drift platform as potentially compromised.

Daughter just sold her first work of art, and upsold 2 stickers! Retirement plan unlocked!

Me 3 months before a talk: "Sure that sounds fun!" Me 30 minutes before a talk: "NOOOOOOOOOOO"

It is amazing how awful technology quality is these days. Whoever runs the Google+Fitbit+kids/parent account system, why, just why.

The CDC changed their webpage to suggest vaccines might cause autism. This is upsetting! If it comes up at Thanksgiving, here's how to debunk this and other vaccine claims parentdata.org/how-can-you-kn…