Very interesting read on how clever threat actors can be when it comes to tricking users - great write-up by 0xdf, thank you!

Great write-up by Stephen Lacy - thank you for sharing your findings, research, updates and good on GitHub for the quick work on remediation. “This is why we don’t install random packages off the Internet!” #SayItLouder

🚨ATTENTION🚨 Apple found two 0-days actively in use that could effectively give attackers full access to device. For most folks: update software by end of day If threat model is elevated (journalist, activist, targeted by nation states, etc): update now techcrunch.com/2022/08/17/iph…

Must read for anyone looking to understand more about how some companies are able to perform through the current economic climate.

How to prevent Kerberoasting: Kerberoasting is an incredibly powerful and reliable attack against Active Directory. In some situations it can result in an attacker becoming Domain Admin nearly instantaneously. Here's how to prevent this attack: 🧵

Super helpful thread on how to read a company’s earnings statement!

I encourage you to spend some time reviewing this thread - one immediate take-away for me was putting a pin # on my SIM. Embarrassingly, I didn't even know about this option. #NoShameInCyberKnowlegeGain

Rest in peace - loyal and committed to the end. A true inspiration to us all.

I feel seen.

Kids these days, sheesh - "I will haxor your bytes, pay me ransom!" Also, "how do banks work?". "The scammer used a Commonwealth Bank of Australia account to receive the ransom money. The AFP identified the account and obtained from the bank information about the holder."

Easy to watch video by the Mysk team - watch Apple services call home outside the VPN tunnel. #NotSoPrivate Spoiler: Android does the same.

Very excited about the agenda and speakers we've put together for the upcoming Black Hat Europe Executive Summit, happening on Tues, Dec 6th at the Excel Centre, London! Check out the agenda here, the link to apply for admission is on this page as well: blackhat.com/eu-22/executiv…

Get your BSides London 2022 tix - NOW ON SALE! (Yes, I'm going - how could you tell) #BSidesLondon eventbrite.co.uk/e/security-bsi…

Think the middle child has mastered the art of the gif when begging for things. 🙄

This thread is a great read on why incident investigation is so hard - while there are basic threads to follow, there are always a myriad of approaches possible and opinions on how to do so.

Ever wanted to know what the Metaverse is really all about? You gotta check out Vic's presentation here!! #Metaverse #MetaverseExplained

Ready for departure if this ship doesn’t get turned around. Now to go screw up replies and posts on a new platform for approx 6-8 weeks. 🙈

Be extra careful on Twitter now folks - those parody accounts just got a lot more real.