CVE-2022-26134 😱 tl;dr if you've ever run a Confluence instance for long enough you know exactly what I'm talking about.

Widespread Atlassian Confluence CVE-2022-26134 exploitation, specifically that is *confirmed functional*, has just started. 23 unique IPs so far. -Tags available to all GreyNoise users now - Create an account to deploy a dynamic block list to block it viz.greynoise.io/query/?gnql=ta…

GreyNoise.io update: Now that we’ve closed our Series A we’re completely gutting the GreyNoise backend, completely rearchitecting, and rewriting most components from scratch. If y’all think GreyNoise is cool now, your minds are going to fcking shredded in six months.

Every time we deploy to a new country, we'll be tweeting a photo of the country flag. Name that country!

starting this week i am a GreyNoise product manager and what this officially means is you can use me for therapy sessions about how security products have hurt you so we can all learn and grow

you're looking at the Senior Community Manager GreyNoise 🥹

GreyNoise just got even better. New sensor deployment: Kazakhstan

Join us on Friday, Sep. 2 @ 3 pm ET for a "How I Use GreyNoise" session with Twutter Support on prioritizing CVEs in the wild! Register here: greynoise-io.zoom.us/webinar/regist…

mood

Why isn't there a "Nobel prize" for open source? The companies that made trillions off open source infrastructure need to step up! I am tired of seeing my heroes spending decades working for free without proper monetary recognition. (please share). 1/n

Back to Uber, once the attacker compromised an employee, they appear to have used that victim's existing VPN access to pivot to the internal network. Internal infrastructure is often significantly less audited and evaluated compared to external infrastructure. 6/N

Honored to walk into the State Department today as the inaugural U.S. Ambassador at Large for Cyberspace and Digital Policy. I look forward to staying in touch on this account. -NF

Or, if you prefer, "I am a full product engineer." And this ^^^ is what we should all be trending towards. The days when you could put up your hands and protest, "I'm just a backend engineer. Get someone else to write those five lines of javascript" -- are ending.

This is one of my most favorite integrations of all time. You can correlate email threats across endpoint and network logs, including: - email + Sysmon telemetry to determine end-user interactions with attachments. did they execute the file? which endpoint? - email + network

I cannot believe how incredible our data labeling machine is getting at GreyNoise. Computers are writing these and our researchers are consuming them. Sift is melting faces. Daniel Grant, boB Rudis 🇺🇦 🐘@[email protected], remy🐀, and team are absolute mad scientists.

quick GreyNoise technical strategy update: Practically speaking, GreyNoise is fundamentally a data business. We collect and tag data on who's targeting what networks and software vulnerabilities, and we strive to do it better and faster than anyone else in the game. Yesterday:

I love seeing Auth0 show every system and region as operational when "Internal Edge Error" is the only thing any of their services actually responds with. Status is not marketing.

When huggingface is down…

The Time Has Come for Robots. I build AI Agents to replace office workers, but these demos convince me! All physical labor will be gone to robots, too. (even the world's oldest profession). Just watch it if you disagree. The biggest robot thread ever (50 demos):

This is how the $1.3 trillion SaaS apocalypse will actually play out 50% of SaaS companies will die. Not because AI killed them, but because they refused to kill parts of themselves. The companies that can't imagine cannibalizing their own business models will disappear first.