I kind of love that the Kremlin is now bypassing it’s sock puppets for some of this stuff x.com/embassyofrussi…

Here's our updated 26-page Guide To Not Getting Hacked with new sections on mobile security and avoiding surveillance. motherboard.vice.com/en_us/article/… PDF version: documentcloud.org/documents/4222…

How Kaspersky detected #EquationGroup on the NSA employee’s home computer system securelist.com/investigation-…

Cyber jeunesse & diversité x.com/fasm3837/statu…

Great work. x.com/rickhholland/s…

Dodgy 'Hackers' Target Bellingcat Investigators Who Call BS on Moscow - Daily Beast twib.in/l/MzgLRK47rgkM via Sean Harris

L'avis du Sénat sur une éventuelle certification européenne pilotée par l'ENISA en replacement de la CSPN (spoiler alert : c'est niet 😃) senat.fr/leg/ppr17-079.…

Yes, we're having a black friday sale :) $5 Shodan Membership instead of $49 and it will run from Friday through Monday

Un sous-traitant du Pentagone laisse fuiter 1,8 milliard de posts sur S3 > la menace #1 sur le cloud : la mauvaise configuration ! Et ça peut faire des dégâts importants bit.ly/2z7voD9

Le DoJ américain inculpe un hacker iranien pour la cyberataque menée contre HBO - US v Behzad Mesri Indictment buff.ly/2B0L2AE #pdf

Un guide pratique pour la cybersécurité des campagnes électorales - Cybersecurity Campaign Playbook buff.ly/2mPxJ3O

DOJ unsealed an indictment today against three alleged Chinese APT actors: post-gazette.com/local/region/2… Two of these individuals were previously fingered as members of APT3/UPS group: intrusiontruth.wordpress.com/2017/05/09/apt… APT3 got me into the nation-state game so... um... thanks?

This Apple new security measure is damn good... #mimikatz

CERTFR-2017-ALE-019 : Vulnérabilité d’usurpation d’identité dans plusieurs clients de messagerie (05 décembre 2017) dlvr.it/Q4VDqr

TimeSketch from Johan Berggren and @google looks like it could be a Maltego killer for DFIR / incident response: timesketch.org

It's amateur hour in the world of lawful intercept! Ethiopia buys spyware from Israeli company and targets dissidents in US. Then leaves public log with list of all victims sitting on server. Cherry on top: they try to hack Bill Marczak of Citizen Lab motherboard.vice.com/en_us/article/…

I wrote a thing on sexism, racism and white men privilege in the infosec community. medium.com/@rafi0t/on-try…

#VendrediLecture Le nouveau guide "Cartographie du système d’information à usage de la #Sécurité #Numérique" est maintenant soumis à commentaire 🗺️ Un outil indispensable pour la connaissance et la maîtrise de son #SI : ssi.gouv.fr/actualite/cart…

Several weeks of research and several cease and desist letters later - the longest research paper I've ever written is now out. Read about the never-ending tale of OSX/Pirrit - cybereason.com/blog/targeting…