Google Threat Intelligence Group is hiring: Senior Threat Analyst, Intelligence Delivery, Mandiant google.com/about/careers/…

EDR-on-EDR Violence 1/🧵 Will called out that EDR products were being abused by threat actors. Ezra Woods & I realized a free trial of an attacker controlled EDR can be used to kill the existing EDR. spencer mRr3b00t JS0N Haddix github.com/CroodSolutions…

Flow state lately with the cyber things 🫡

The lion doesn’t concern himself with business email compromise

Microsoft now confirmed that because the vulnerability I reported is important, not critical, and because they’ve now fixed it they won’t issue a CVE. It’s like they actually want to discourage people from reporting.

Bug bounty is a scam to pay talented researchers less then market value for their research. Convince me otherwise.

Ima say it again, don’t report your vulns, sell them to brokers.

is the increased log ingestion actually helping your visibility or are you just hemorrhaging your company's money into data lakes for security theater?

Is orange teaming really a thing now?? Ur kidding me. Orange teaming exercises. Cmon now 😂

Move to the cloud. It only goes down once a quarter and costs twice as much!!

When you come from the bottom you reach the top it’s a different intensity 🤫🤷‍♂️

The lion doesn’t concern himself with audit.

Back to the offensive side. It’s been a long 6 months doing blue team stuff.

Did a cyberattack kill the lights in Venezuela?

US disclosed that Cyber Command conducted cyber operations to suppress Venezuelan defenses during th strike on Caracas. Non-kinetic cyber effects from US Cyber Command were deployed before kinetic strikes began, playing a major role in neutralizing air defense systems. No details

Over the last 10 years infosec has become extremely tool focused, fancy dashboards, security theater etc etc. We need to focus back more on the fundamentals and protecting data again. That’s literally all this is, where is the data, are strong controls implemented around it? Be

There’s an astronomical skill gap between good security people, and the rest. There’s no mid. Accounts you see posting their research here are absolutely cracked, it’s not the norm. When you go out and talk to security folks that don’t go to conferences, don’t read up on

Yes!! This!!