SaaS specialist (Soup-as-a-Service)
No thoughts- just slurps soup
They/Them/Soup
______________________________
#threatintel #readteam #threathunting #ransomware
🎟️ Don't wait! Ticket prices for BSidesChicago are going up on October 18th! Get yours now for a day packed with awesome talks, networking, and our incredible Lockpick Village hosted by @LockEx 🔒🔑. Whether you're a pro or a beginner, you'll have a blast testing your skills and learning new tricks. Don't miss out! 🦩 #CyberSecurity #Lockpicking #hacking
Grab your tickets today 👉 https://events.humanitix.com/bsideschicago-2024
What's the point of publishing you found a leak that could be really serious if you're going to publish about it while it's still exposed and you don't report any attempt to get the hosting company to secure it or contact their customer?
This week, an independent media outlet reported a leak that they didn't ensure was secured before they reported on it. Their report enabled others to find the exposed data on 95 million French people.
Thankfully, @JayeLTee jumped in to get it locked down before more people accessed it.
https://databreaches.net/2024/09/26/massive-french-citizens-data-leak-exposes-95-million-records/
#databreach #press #responsible disclosure
@shellsharks Solid. Thank you my dude!
#introduction (not new to Mastodon)
Hello! I’m an artist and illustrator currently in Derbyshire, UK.
I’m interested in…well all sorts really, whatever grabs my attention. #History, #folklore, #art, #music (most genres), oddities and curio, #symbolism, #stories, #creativity, and the ephemeral scraps of half-thoughts…
A bundle of contradictions, should never be left unattended in a book shop…ever!
Also not good at intros (clearly!) 😅
For the quantifying portion I plan on implementing a threat box method a la @klrgrz (who has a great white paper on it btw :dance_cool_doge: ). But I am starting from scratch and am looking at it from a holistic pov.
(https://www.klrgrz.com/cti/2020/09/17/quantifying-threat-actors-with-threat-box)
Hello hive mind! I am looking for some good examples and write ups on how to complete a threat landscape assessment. Any good recommendations out there?
#CTI #threatlandscape #strategicthreatintel #threatassessment #threatintel #cyberthreatintelligence
We at Recorded Future are currently hiring a Principal Threat Intelligence Analyst in our Strategic and Persistent Threats team focused #APT campaign tracking: https://grnh.se/82f9b3562us
@screaminggoat This is a great format. That way I dont miss a story! :dance_cool_doge:
PSA when you update to Firefox 128 you might want to uncheck this
#Firefox
@rebootkid Submitting is a feat within itself. Good on you for shooting your shot. :ablobdj:
@JohnsNotHere I love leveraging @technisette OSINT database as a starting point or when I've reached a dead end. I always end up finding a few more nuggets on information I wouldn't have otherwise come across. :dance_cool_doge:
Now this is an interesting turn of events from your typical ransomware tactics. GitHub ransoming. :think_bread: Protect your things people. Lock it down! You may not think your platform is a target, but if it has worth to you, it will have worth to the bad guy.
Stumbled across a Craig's List-like buy/sell page for specifically for Russian and Chinese sales. It's fascinating to explore and I wonder which posts are code for other types of sales.... :think_bread:
Honeypots are like SO back! With attackers routing around observation and detection, traditional third-party threat intelligence cannot provide the targeted attack visibility that defenders need. Read all about it in our latest blog! 🍯https://buff.ly/4agCaXW
Recorded team meetings are the worst. It breaks down trust and open discussion. Especially when you're asking for feedback/comments on the project/client. No thanks!
MITRE releases EMB3D cybersecurity threat model for embedded devices to boost critical infrastructure security - Industrial Cyber https://industrialcyber.co/critical-infrastructure/mitre-releases-emb3d-cybersecurity-threat-model-for-embedded-devices-to-boost-critical-infrastructure-security/
Yes, it's true, Skytalks is coming to BSides Las Vegas. Their CFP is open, and you can get more information over on their website: https://skytalks.info/
