John Bambenek

@bambenek

Artisanal Malware Curator. Big data wrangler. Founder of threat intelligence company, Bambenek Labs.

+ Follow

Paul Melson

@pmelson

Author/Operator of @ScumBots. Blue Team by day, Blue Team by night. Opinions, typos, and bad grammar do not represent my employer. He/Him

+ Follow

Mike Wendling

@mwendling

Reporter @BBCNews in Chicago. Latest book: tinyurl.com/yc3hbk [email protected] #billsmafia @wendling.bsky.social

+ Follow

Katie Nickels

@likethecoins

Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]

+ Follow

Nicole Beckwith

@nicolebeckwith

Sr. Manager, Threat Operations @kroger 🍓 Intel, Hunting, Detection Engineering, Insider Risk, Fraud & Forensics 💻 Fmr LE & DFIR for OH & Secret Service TF.

+ Follow

Kristina Balaam

@chmodxx_

➡️ BlueSky @ kristinabalaam Senior Staff Threat Intelligence Researcher @ Lookout. Focus on Chinese Mobile APTs. Opinions my own.

+ Follow

Steve YARA Synapse Miller

@stvemillertime

threat intelligence @google writing & sharing on adversary tradecraft, malware, threat detection, ics/ot intel and all things #yara

+ Follow

Félix Aimé

@felixaime

Threat Intel. stakhanovite ⛏️ and proud dad. Former @Kaspersky & @CERT_FR. Principal CTI researcher at @sekoia_io, focused on state-sponsored / hybrid stuff.

+ Follow

Priyanjana Bengani

@acookiecrumbles

Senior Research Fellow, Tow Center @[email protected] // @acookiecrumbles.bsky.social

+ Follow

visi stark

@invisig0th

Founder @vtxproject Father of the #APT1 Report @mandiant / @fireeye Inventor of synapse, vivisect, UNCs, imphash, ... DEFCON CTF Champion, Founder of Kenshoto

+ Follow

seanmcnee

@seanmcnee

+ Follow

Johan

@syndikalist

Mostly RT interesting stuff. RT != Endorsement and all that jazz. #WeAreNAFO

+ Follow

Steven Adair

@stevenadair

President @Volexity | Malware Analyst's Cookbook | stevenadair.bsky.social

+ Follow

Simeon

@simandsec

Threat Intel @Microsoft Threat Intelligence. @HowardU and @Cambridge_Uni alum. Founder @kc7cyber. Sometimes says things that make sense. Views are my own.

+ Follow

Ben Nimmo

@benimmo

Writer, linguist, diver. Principal Investigator, Intelligence & Investigations @OpenAI. RT ≠ endorsement.

+ Follow

Robert Giczewski

@lazy_daemon

Interested in CTI/Malware Analysis/RE, DFIR and windows exploitation. I like video games & tech as well 🙂. CTI @ Deutsche Telekom Security. Tweets are my own.

+ Follow

Michael Schwartz

@schwartzonsec

Director of Research and Threat Analysis @ Censys. Knows Kyle Davis.

+ Follow

Paul Myers

@paulmyersbbc

BBC open source intelligence specialist. Research trainer. Opinions are my own. Link/RT is not an endorsement.

+ Follow

Nick Carr

@itsreallynick

Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA

+ Follow

deresz

@deresz666

Cyber Intel linkedin.com/in/andrzej-der…

+ Follow

💻 Sherrod DeGrippo 🛸

@sherrod_im

Weird security voyeur. Vibe merchant. CISO of your 🩷 Official USPS fan account. 🎉 Host of THE Microsoft Threat Intelligence Podcast. I like crime actors.

+ Follow

[email protected]

@killchain

I'm an analyst. I co-authored the paper that introduced the kill chain to information security. Just my personal views here.

+ Follow

Anna Merlan

@annamerlan

Senior reporter at Mother Jones, covering disinformation, tech and extremism. Author of REPUBLIC OF LIES. Tips: [email protected]. DM for Signal.

+ Follow

Kimberly

@stopmalvertisin

Security Researcher | Cyber Threat / Malware Analyst | Ex Sr. Threat Analyst @ Proofpoint | Founder of Stop Malvertising

+ Follow

Michael Koczwara

@michalkoczwara

Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) medium.com/@Intel_Ops

+ Follow

Silas Cutler // p1nk

@silascutler

Principal Security Researcher @Censys Threat Advisor @IST_org Runs - @Only_Scans, @mal_share

+ Follow

clem1

@_clem1

tail -f internet | grep exploit

+ Follow

Greg Schloemer

@greg_schloemer

Threat Intel

+ Follow

John Hultquist

@johnhultquist

Chief Analyst, Mandiant Intelligence @Google. @CYBERWARCON and @SLEUTHCON founder. Johns Hopkins professor. Army vet.

+ Follow

Sebastian Walla

@sebastianwalla

Did a Cybersecurity Bachelor and Master in Computer Science with a focus on Security. Deputy Manager - Cloud Threat Intelligence Opinion/Thoughts are my own.

+ Follow

Darren Linvill

@darrenlinvill

Professor, Clemson University Media Forensics Hub (@ClemsonHub), studies lies, damn lies, and disinformation.

+ Follow

Chris Bing

@bing_chris

@propublica reporter: national security and technology. 📧: [email protected] / 📞(Signal): 771-217-8550. More contact info: bit.ly/2wagIS7

+ Follow

Sixdub

@sixdub

Microsoft Threat Intelligence | Student @ GMU Antonin Scalia Law School | USAFA '10 & USAF Veteran | Focus: Intelligence, Technology, Cyber Law, Leadership

+ Follow

Jazi

@h2jazi

Threat Intel researcher! Technical tweets only; not reflective of employer's views. No endorsement of political groups/entities.

+ Follow

Matthew Dunwoody

@matthewdunwoody

@GoogleCloud @Mandiant #AdversaryMethods Lead. Former #AdvancedPractices Security Researcher, Technical Intel Analyst, IR Consultant, Security Architect/TPM.

+ Follow

tlansec

@tlansec

Threat Intel @Volexity. Find me on 𝐁𝐥𝐮𝐞Sky

+ Follow

Dan Perez

@mrdanperez

🇨🇳Mission TL @Google | #Malware Naming Wizard | #Attribution Connoisseur | All tweets are my own. #ThreatIntel #APT

+ Follow

Allison Wikoff

@saltywikoff

#threatintel Americas Lead @pwc. Hype woman. Beach Rat. Former Adjunct @Columbia. Lover of all the APTs. | All views are my own.

+ Follow

Daniel Gordon

@validhorizon

Thought Trailer, Cyber Threat Intel, DFIR, and influence operations. Blocked by a lot of terrible people. He/him ValidHorizon on the other site

+ Follow

Dan Black

@danwblack

🇨🇦 Manager, Cyber Espionage Analysis @Mandiant @GoogleCloud. Former @NATO @cybercentre_ca. Views personal.

+ Follow

Léa Ronzaud

@lea_ronzaud

Senior Investigator @Graphika_NYC OSINT/State-Sponsored IOs/Cybercrime/Hacktivism/Extremism All views are my own 🇬🇧🇪🇪🇩🇪🇺🇦🇲🇫🇷🇺

+ Follow

clem

@n0debreak

Influence Ops @recordedfuture | Opinions my own.

+ Follow

Jack

@malwareforme

Security researcher

+ Follow

Tom Hegel

@tomhegel

Distinguished Threat Researcher, Research Lead @SentinelOne, Advisor with @ValidinLLC

+ Follow

ςεяβεяμs - мαℓωαяε яεsεαяςнεя

@c3rb3ru5d3d53c

💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩‍💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ buymeacoffee.com/c3rb3ru5d3d53c

+ Follow

Asheer Malhotra

@asheermalhotra

Threat Researcher @TalosSecurity. Metalhead. Shitposter. Not necessarily in that order. Opinions are my own. #CTI #APT @[email protected]

+ Follow

McKenzie Sadeghi

@sadeghimckenzie

Researching AI and Foreign Influence @NewsGuardRating •Alum: @HoyaJournalism @Cronkite_ASU @USATODAY @arizonapbs

+ Follow

J⩜⃝mie Williams

@jamieantisocial

Threat Intel Researcher @Unit42_Intel, formerly 'Jamie from @mitreattack', #UNC1799 forever🤘, @DistrictHeather ♥️,🍷🍷🍷, he/him.

+ Follow

Bryce

@bryceabdo

🐗 🦅 🎯 Research & Discovery @ Google/Mandiant

+ Follow

The DFIR Report

@thedfirreport

Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: thedfirreport.com/services

+ Follow

Silent Push

@silentpush

Preemptive cyber intelligence with IOFA™. Know First.

+ Follow

Greg Lesnewich

@greglesnewich

great, now I'm on twitter

+ Follow

Frank Lee

@cyb3rp4nd4

Cyber Nerd | Tweets and opinions are my own.

+ Follow

Armchair Investigators

@armchairgators

Ein Dialog über Malware, Cybercrime und Cyberspionage von Chris Dietrich (@wavehackr) und Lars Wallenborn (@larsborn)

+ Follow

Stop Wagner

@stopwagnergroup

Humanitarian workers. Witnesses of Wagner's crimes on the African continent. Raising awareness on PMC violence in the world. Backup account: @stop_wagner

+ Follow

Intel-Ops

@intel_ops_io

Adversary Infrastructure Hunting & Training Curated Threat Intelligence Feed (Coming Soon) intel-ops.io medium.com/@Intel_Ops

+ Follow

gnida project

@gnidaproject

Всероссийский научно-исследовательский институт гнид

+ Follow

Unit 42

@unit42_intel

The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.

+ Follow

blackorbird

@blackorbird

Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit #CTI Need Job

+ Follow

VV

@_vventura

My opinions are my own not my employer

+ Follow

JD Work

@hostilespectrum

Former intel, now academic @NDU_CIC, @TheKrulakCenter, @SIWPSColumbia @ColumbiaSIPA, @CyberStatecraft, @ElliottSchoolGW, @PAISWarwick. Apolitical, views=own

+ Follow

Validin

@validinllc

Validin is a next generation internet intelligence platform.

+ Follow

Michael R

@nahamike01

Threat (Adversary Infrastructure) Researcher | Python Development | Long-time Japan resident

+ Follow

bk (Ben Koehl)

@bkmsft

Partner Threat Intelligence Manager at @Microsoft Threat Intelligence Center (MSTIC).

+ Follow

bot blocker | блокировщик ботов

@antibot4navalny

Exposing 🇷🇺🇺🇦🇦🇪 troll farms |Cited by:@AP @NYTimes @WashingtonPost @FT @CNN @Wired @TheEconomist @AFP @Libe @LeMondeFr @SZ @TheTimes @NBCNews @EFEnoticias

+ Follow

sk

@kernels_space

Security Researcher | Malware & RE | she/her

+ Follow