You know submissions go up 5x in the last 24 hours...

This CSRB report is required reading

If you want to speak at SLEUTHCON this year, this week is your last chance to get us your submission. I really want to hear from new voices, especially those from underrepresented groups in the cybercrime intel space. We pay for talks and the swag is always super cool! 1/2

🪲And the 2023 Year in Review of Zero-Days Exploited In-the-Wild is out!

This year I teamed up with Jared Semrau & James from Mandiant to write a joint report combining our expertise and providing a more holistic view on in-the-wild 0-days in 2023 🔥🧐

blog.google/technology/saf…

Zimbra 0day targeting 🇬🇷🇲🇩🇹🇳🇻🇳🇵🇰 from earlier this year - used by multiple actors! New post from Google TAGs clem1 Maddie Stone Kristen !

Mind the gap!

blog.google/threat-analysi…

So many good talks here - can't wait!

10/10 John Hultquist

Ok procrastinators...time to write up that submission

The CFP for this year's CYBERWARCON will be open until the end of the month. We are already getting wonderful submissions, but we would love to see more insights into the state of disruptive and destructive attack and information operations, our core concerns. 1/x

idk whether John Hultquist spends more time on the swag or lining up awesome keynotes for CYBERWARCON, but it's a great conference. Get those CFPs in and share the cool research you're working on!

Not only is clem1 an incredible analyst, you won't find a better teammate to work with. Congrats and well earned!

Google's 2022 Year in Review of in-the-wild 0-days is out! 4 key takeaways:
🤖N-days function like 0-days on Android
⚡️0-clicks and new browser mitigations drive down browser 0-days
👯Over 40% of itw 0-days are variants
💥Bug collisions are high
#itw0days

security.googleblog.com/2023/07/the-up…

🎯Vlad Stolyarov clem1, Bahare, and I from Google TAG, discovered two new in-the-wild 0-days that were patched today: CVE-2023-36874 and CVE-2023-36884. Big thanks to Microsoft for the quick turn around on patches! 👏🏽 #itw0days

msrc.microsoft.com/update-guide/v…

msrc.microsoft.com/update-guide/v…

Another #itw0days discovered by clem1! CVE-2023-3079 in v8. Patch released by Chrome within 4 days of report!

chromereleases.googleblog.com/2023/06/stable…

If cats could text you back they would not.

We talk a lot about the free food, but this is a major perk of working at Google

wheels down dulles

…otherwise known as “at least it’s not charles de gaul”

The Google Cybersecurity Certificate is here! 🎉 I am excited to be an instructor in this program, and helping ppl looking to get into the field #GrowWithGoogle goo.gle/3AxpCfu

Just gonna file this away for when we get to Cybersecurity Awareness Month...