Brian Bradley

It seems more and more that the position of CISO has become synonymous with scape goat. #cybersecurity #infosec #it

a cartoon of dora the explorer and a monkey ALT: a cartoon of dora the explorer and a monkey

2025 is here. Who is in DORA hell? #cybersecurity #infosec

Businesses prepare to update their cybersecurity playbooks for Trump era amid increasing threats Experts expect less focus on cyber mandates and new regulations, and more on cutting bureaucratic red tape for industry and business.

latest:

fortune.com/2025/01/21/b...

DHS has terminated the memberships of everyone on its advisory committees.

This includes several cyber committees, like CISA's advisory panel and the Cyber Safety Review Board, which was investigating Salt Typhoon.

That review is "dead," person familiar says.

www.documentcloud.org/documents/25...

Is there anyone in America not sick? We have viruses that are carrying viruses, throwing viruses, sneezing out viruses all while driving the virus mobile.

Just read Yahoo is outsourcing it's #cybersecurity team. What surprised me is that Yahoo is still in business.

I’m Lovin’ It: Exploiting McDonald’s APIs to hijack deliveries and order food for a penny A series of API flaws in McDelivery India made it possible to order food for a penny, hijack other people’s delivery orders, view user information, and more.

$240 for this kind of bounty. Cmon McDonald's you're better than that. #cybersecurity #hacking #infosec eaton-works.com/2024/12/19/m...

The Feds Have Some Advice for 'Highly Targeted' Individuals: Don't Use a VPN After the Salt Typhoon hacks, the US Cybersecurity & Infrastructure Security Agency also endorses encrypted messaging, password managers, and promptly installing software updates.

#cybersecurity #infosec www.pcmag.com/news/the-fed...

Hackers Can Jailbreak Digital License Plates to Make Others Pay Their Tolls and Tickets Digital license plates sold by Reviver, already legal to buy in some states and drive with nationwide, can be hacked by their owners to evade traffic regulations or even law enforcement surveillance.

#cybersecurity #infosec www.wired.com/story/digita...

The FBI says your texts aren’t secure. Do you need to stop? In the wake of a massive cyberattack linked to the Chinese government, FBI officials are renewing warnings that your private text messages aren’t secure.

#cybersecurity #infosec thehill.com/homenews/nex...

Hackers are notorious for not playing well with others.

Hackers steal 390,000 WordPress credentials from other hackers A threat actor tracked as MUT-1244 has stolen over 390,000 WordPress credentials in a large-scale, year-long campaign targeting other threat actors using a trojanized WordPress credentials checker.

www.bleepingcomputer.com/news/securit...

Microsoft Confirms Password Deletion For 1 Billion Users—Attacks Up 200% Your password is going to be deleted—here’s what you need to know.

www.forbes.com/sites/zakdof...

Microsoft Warns 400 Million Windows Users—Do Not Update Your PC Millions of Windows users hit with surprise warning—here’s what you do next.

www.forbes.com/sites/zakdof...

Researchers Crack Microsoft Azure MFA in an Hour A critical flaw in the company's rate limit for failed sign-in attempts allowed unauthorized access to a user account, including Outlook emails, OneDrive files, Teams chats, Azure Cloud, and more.

www.darkreading.com/cyberattacks...

#cybersecurity pros need to always remember to thank users who actually check with you first before clicking on a phishing link. I have seen too many, "it's phishing, don't click" email responses without anything positive. It's the holidays, spread a little cheer!!

New 0-Day NTLM Hash Disclosure Vulnerability in Windows 7 to 11 A zero-day flaw affects all versions of Windows from Windows 7 and Server 2008 R2 to the latest Windows 11 (v24H2) and Server 2022.

cyberinsider.com/new-0-day-nt...

FBI Issues Urgent Warning on Text Message Scams The FBI issued a warning in December 2024 about rising text message scams and SMS phishing. Learn how to protect yourself from smishing.

ponderwall.com/index.php/20...

They reversed that decision so fast! 👏🏻

So a few years ago the US and European governments tried to prevent people from using end-to-end encryption apps, now they are telling everyone to use them. Maybe we need some tech literate people making these decisions. #cybersecurity #infosec

Why are it guys such dicks meme.

I believe that robot vacuums have an algorithm that specifically seek out humans so they can attack their feet.

I’m thinking more about @orinkerr.bsky.social’s observation that the subjective prong of the Katz reasonable expectation of privacy test is effectively dead.

@joshcgrossman.com can you add me to owasp starter pack?

I hope you folks who have rediscovered #MST3K thanks to the #MST3KTurkeyDay Marathon explore the other tangential productions out there! For one, @dumb-industries.com The Mads Are Back has been around since the early pandemic and is amazing! Join @frankconniff.bsky.social and Trace on the 10th!

Kramer from Seinfeld in front of a painting of himself.

When you see the #cybersecurity product's marketing vs using it.

While slow, Tor will do most of what they'd be looking for.

Raise a glass to those of us who have to review four days of logs Monday after a long holiday weekend. #cybersecurity

I don't really get it. You have to use tech 8 hours a day. It's not going away. Just try to learn instead of hooking somehow time is going to go in reverse.

I like to imagine a world where senior management creates incentives for their staff to keep up with technology instead of complaining and fighting it. #cybersecurity