State of Statecraft (SOS) is a new security and intelligence conference purposed to bring together observers of espionage, sabotage, influence, and other unique forms of covert statecraft to share their work with a community hyper-focused on tackling state-sponsored ops.

New blog post – Discovery of a stealthy Linux backdoor abusing PAM While hunting for unknown threats with YARA rules, we identified a previously undocumented PAM-based backdoor we named Plague. It grants persistent SSH access and evades detection entirely. - Masquerades as

We are excited to announce that we are hosting a second training course for #FTSCon week! Join @JoeGrand as he leads his popular 2-day Hardware Hacking Basics course on Oct. 21-22 in Arlington VA!

According to my own experiences, one of the big reasons I use AI search is I couldn’t find anything meaningful in Google Search right now, whether Google Search didn’t show anything or the websites require login. But AI search can have the knowledge I want with no problem. So

vx-underground Be a trendsetter and use SHA3-256

We are thrilled to announce that @JoeGrand is this year’s #FTSCon Keynote speaker! Joe will be sharing stories and technical details about his wallet hacking adventures to kickoff our full-day event on Monday, Oct 20, 2025. You don’t want to miss this!

Superb writeup from Eye Security on their adventures in internal MS tooling: research.eye.security/consent-and-co…

#ESETresearch has discovered a zero-day vulnerability in WinRAR, exploited in the wild by Russia-aligned #RomCom 🏴‍☠️ Anton Cherepanov welivesecurity.com/en/eset-resear… 1/7

.Volexity has released updates to its #opensource GoResolver project and more! This work was part of a project for one of our #summerinternship students. We are proud to contribute to the open source community + work alongside students in our annual #internship program!

🚨 From curiosity to 22 internal Microsoft apps A small distraction led to finding a common Microsoft Entra ID misconfiguration, giving access to 22+ internal Microsoft services. Last week at #BlackHatUSA, Chief Hacker Vaisha Bernard Vaisha Bernard shared the full story.

Coming this October: #FTSCon 2025, hosted by volatility! And this year there are TWO in-person training opportunities!👇 #dfir #memoryforensics #volatility3 #hardwarehackingbasics #grandideastudio

Hey everyone, I’m proud to announce that I'm hosting a new conference called State of Statecraft (🆘) October 28 in Brussels, Belgium. SOS exclusively discusses state-sponsored operations. Speakers! Our CFP closes in 2 weeks!!! -> Apply here: stateofstatecraft.com/cfp

👇🏻👇🏻👇🏻

And that’s a wrap for our 2025 #summerinternship program! This was a great summer of challenging impactful projects & fun team-building excursions. We wish our students all the best as they settle back into their programs at Notre Dame CSE & Univ. of Maryland!

📢 SOS Announcements & Reminders 🚨 CFP CLOSES SEPTEMBER 1 🛎️ *NEW* Lodging assistance for full-length talks SOS sits at the intersection of multiple investigative disciplines. Our focus is state-sponsored ops: espionage, sabotage, etc! Submit today! stateofstatecraft.com/cfp

Reminder: 🆘 CFP closes MONDAY SEPTEMBER FIRST AT MIDNIGHT. Which time zone, you ask? Don't be surprised if we pick one at random!

IMHO, the loss of Twitter/X as a platform where virtually everyone in infosec who was publicly active online had a presence has really been deleterious to a lot of info sharing. It's also no doubt prevented a lot of useful discussions and interactions from happening.

My new EDR startup company idea: - Privacy FIRST! — CASH 💵 only - No telemetry collection! (Send what feels right for you ♥️ 😇) - Vendor agnostic, which means it don’t collect nothin 🫡😤 - Guaranteed 100-day SLA response time for critical incidents 🔐 💯

I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog: dirkjanm.io/obtaining-glob…

Couple of openings here in our threat research org! Staff Security Research Engineer: proofpoint.wd5.myworkdayjobs.com/en-US/Proofpoi… Senior Threat Researcher (ecrime team): proofpoint.wd5.myworkdayjobs.com/ProofpointCare…