@dotslashpipe I feel like this needs to be referred to by its proper name, "the Bob Ippolito problem" youtu.be/ExMuk_Vdyac?t=…

Slides for my keynote: docs.google.com/presentation/d…

Hey Jon Oberheide, thanks again for the retrospective and learnings last night! Duo blazed a new (and awesome) trail.

The (genuine) privilege of supporting USENIX Association means that we get our first print-ad ever! (in ;login no less!) We feel pretty grown-up!

So can we all admit Colin Kaepernick was right?

Slightly biased on this one, but Chris has done a great job on covering honeypots as an essential intrusion detection tool. Looking forward to my copy :)

It's been a crazy team effort to get here, thanks to the whole Thinkst crew. Special shouts for Azhar Desai, Bradley Jayanath and Nicholas Rohrbeck who were there from the first PoC birds with hand-soldered components.

I’m full of Not Deep Insights, it’s kinda my thing.

Yes, we did build a fake WireGuard to catch stolen keys. And, definitely, it was a lot of fun @thinkstcanary shunting packets safely at scale. We wrote up the story below: blog.thinkst.com/2021/11/buildi…

The Security Cryptography Whatever interview with Jason Donenfeld is so so good. What shines through is his clear-eyed thinking and a willingness to challenge orthodoxy, but I especially love his attention to detail in crafting Wireguard. You should listen to it. …tycryptographywhatever.buzzsprout.com/1822302/966763…

This year we used Doyensec for our annual Thinkst Canary sec assessment. Solid team, solid work, professionally delivered. 10/10 - will use again..

We’ve revamped Canarytokens.org A new interface, new functionality, and the results of our latest security assessment¹ You can read more at: blog.thinkst.com/2024/07/refres… __ ¹ Still completely free

We've got thousands of customers, but all of them log in to their own hosted Console (instead of a single multi-tenanted SaaS app). (More work for us, but significantly more secure for customers). Read our marco slaviero on making unfashionable choices: blog.thinkst.com/2024/07/unfash…

A recent HN user was surprised that one of our features used a malware trick. Little did they know Here’s marco slaviero on how “hacking” influences our product decisions (& why we think it’s a good idea!) Hacking as a pathway to building better products blog.thinkst.com/2024/08/hackin…

A decade in, bootstrapped Thinkst Canary reaches $20M in ARR without VC funding | TechCrunch techcrunch.com/2025/05/29/a-d…

🔍 The placement of canary tokens across our systems helped us spot a recent intrusion and respond quickly. Learn more about canary tokens, and find out how you can use them to prevent serious security incidents in the future. grafana.com/blog/2025/08/2…

Today we released our new (free) AWS Infrastructure Canarytoken. It catches attackers in your AWS account by putting tempting assets in their way and alerting you if they get probed. Extending our old work on fake AWS assets, this makes it even easier to deploy juicy S3

A small ripple but one we're really happy with. Now to make it home. x.com/haroonmeer/sta…

Speaking tomorrow at 14:50. Come for the spinners, stay attacks against various bits of The Cloud™️. x.com/devconfza/stat…

We learned a bunch on this trip without breaking the bank. x.com/haroonmeer/sta…