James Atack's Avatar

James Atack

@jamesatack.com.bsky.social

Cyber defender with an offensive name. Deputy CTO at @onyphe.io | http://onyphe.io Managing your attack surface... from Europe 👀 Opinions : all mine Special skill : machine empathy

211 Followers  |  421 Following  |  91 Posts  |  Joined: 05.10.2023  |  2.0409

Latest posts by jamesatack.com on Bluesky

Preview
a brick with the number 3 on it sits on a table ALT: a brick with the number 3 on it sits on a table

When I want to tell someone that their Sharepoint is vulnerable, but they want me to use a Bugbounty provider.

I want to help you... but I'm also paid to do a job which is not filling-in-your-forms

23.07.2025 07:59 — 👍 3    🔁 0    💬 0    📌 0
Preview
As Floods Hit, Key Roles Were Vacant at Weather Service Offices in Texas (Gift Article) Some experts say staff shortages might have complicated forecasters’ ability to coordinate responses with local emergency management officials.

“The Weather Service’s nearby San Antonio office … had significant vacancies ….

“That office’s warning coordination meteorologist left on April 30, after taking the early retirement package the Trump administration used to reduce the number of federal employees.”

www.nytimes.com/2025/07/05/u...

07.07.2025 00:46 — 👍 2179    🔁 757    💬 119    📌 33

"It neither predicts nor explains; it just substitutes one chart for ten, with a loss of information in doing so."

Model, analyze, and quantify, without any clue about what's really going on. The Matter With Things is that the Emissary is still running about thinking they've got this...

13.06.2025 10:18 — 👍 1    🔁 0    💬 0    📌 0

What Google said : "an invalid automated quota update to our API management system which was distributed globally"

Was it a "quota update" that was updated automatically, or an "automated quota" component that was updated?

They wouldn't connect an LLM to their cloud back-plane - would they?

13.06.2025 09:52 — 👍 3    🔁 0    💬 0    📌 0

because securing BGP is [unnecessary | radical leftist | deep-state interference | liberal pandering to coastal elites | an effective prevention for being hacked by foreign governments ]?

Sadly it's the last one, isn't it

10.06.2025 07:08 — 👍 0    🔁 0    💬 0    📌 0

Dialect selection : Wigan

09.06.2025 08:12 — 👍 0    🔁 0    💬 0    📌 0
Post image

Now we know the answer..

05.06.2025 20:03 — 👍 2614    🔁 279    💬 35    📌 10
Preview
Multiple CVEs in Infoblox NetMRI: RCE, Auth Bypass, SQLi, and File Read Vulnerabilities While performing research on Infoblox's NetMRI network automation and configuration management solution, we discovered 5 vulnerabilities.

Rhino Security has found 6 vulns in the Infoblox NetMRI network automation and configuration management solution.

Bugs include an auth bypass via hardcoded credentials, privlege escalation via cookie forgery, an unauth command injection, and an SQLi

Quite bad

rhinosecuritylabs.com/research/inf...

05.06.2025 12:05 — 👍 6    🔁 2    💬 0    📌 0
Post image

red flag alert 🚨

04.06.2025 14:59 — 👍 6    🔁 3    💬 0    📌 0

“power glitch”

<crackle> Go and investigate Gordon…

02.06.2025 11:47 — 👍 0    🔁 0    💬 0    📌 0
Fortinet LinkedIn post : What happens when the infrastructure designed to defend becomes a new attack surface?

Fortinet LinkedIn post : What happens when the infrastructure designed to defend becomes a new attack surface?

Yeah gee Fortinet - wonder what that reality would look like? 🙄

<goes back to day job>

28.05.2025 07:19 — 👍 0    🔁 0    💬 0    📌 0
The icons or mascots of English cup-winning teams have all been birds so far this season: the Liver Bird, an Eagle and a Magpie. Will the Cockerel be next?

The icons or mascots of English cup-winning teams have all been birds so far this season: the Liver Bird, an Eagle and a Magpie. Will the Cockerel be next?

Ornithologically, Spurs will win the Europa League tonight

21.05.2025 11:10 — 👍 63    🔁 8    💬 3    📌 8
If your library doesn't have any documentation, it can't have any bugs.

Documentation specifies what your code is supposed to do. Your tests specify what it actually does.

Bugs exist when your test-enforced implementation fails to match the behavior described in your documentation. Without documentation a bug is just undefined behavior.

If you aim to follow semantic versioning you bump your major version when you release a backwards incompatible change. Such changes cannot exist if your code is not comprehensively documented!

Inspired by a half-remembered conversation I had with Tom Insam many years ago.

If your library doesn't have any documentation, it can't have any bugs. Documentation specifies what your code is supposed to do. Your tests specify what it actually does. Bugs exist when your test-enforced implementation fails to match the behavior described in your documentation. Without documentation a bug is just undefined behavior. If you aim to follow semantic versioning you bump your major version when you release a backwards incompatible change. Such changes cannot exist if your code is not comprehensively documented! Inspired by a half-remembered conversation I had with Tom Insam many years ago.

If your library doesn't have any documentation, it can't have any bugs simonwillison.net/2025/May/22/...

22.05.2025 01:59 — 👍 109    🔁 19    💬 9    📌 2
Botconf2025 poster with a knight holding a sword in the foreground. Below his helmet the head of a "bot" inspired by the conference logo. In the background, castle walls and the text with the dates of the Conference in Angers 20-23 May 2025.

Botconf2025 poster with a knight holding a sword in the foreground. Below his helmet the head of a "bot" inspired by the conference logo. In the background, castle walls and the text with the dates of the Conference in Angers 20-23 May 2025.

#Botconf2025 - A few hours left before the start of the 12th edition of the Botnet and malware ecosystems fighting conference. We are welcoming 400 participants from all over the world for one day of workshops and 3 days of conference.

This conference would […]

[Original post on infosec.exchange]

19.05.2025 17:42 — 👍 2    🔁 6    💬 1    📌 0
Post image

GreyNoise observed a major spike in scanning against Ivanti products weeks before two zero-days were disclosed in Ivanti EPMM. Full update: www.greynoise.io/blog/surge-i...
#Ivanti #GreyNoise #Cybersecurity #ZeroDays

20.05.2025 19:54 — 👍 8    🔁 6    💬 0    📌 0

You won't be surprised

19.05.2025 06:32 — 👍 2    🔁 2    💬 0    📌 0
A small alcove with two shelves holding a variety of electronic devices and chargers. Bottom shelf has a large Pendix bike battery.

A small alcove with two shelves holding a variety of electronic devices and chargers. Bottom shelf has a large Pendix bike battery.

A well-used family charging shelf

- get phones out of bedrooms
- ensure teens go out with charged devices
- never have to look for a charger

18.05.2025 21:01 — 👍 0    🔁 0    💬 0    📌 0
Preview
After latest kidnap attempt, crypto types tell crime bosses: Transfers are traceable Crypto abduction attempts continue to rock France.

“The attacks have spooked the industry, which has called, somewhat ironically, for enhanced protections from the government”

LOL

arstechnica.com/security/202...

16.05.2025 19:11 — 👍 1    🔁 0    💬 0    📌 0
Preview
After latest kidnap attempt, crypto types tell crime bosses: Transfers are traceable Crypto abduction attempts continue to rock France.

“The attacks have spooked the industry, which has called, somewhat ironically, for enhanced protections from the government”

LOL

arstechnica.com/security/202...

16.05.2025 19:01 — 👍 0    🔁 0    💬 0    📌 0

Typical bureaucracy behaviour :

- To get budget you need to be noticed.
- To be noticed you have to spit out projects for the latest trend/craze

This operates at all levels from operations up to political governance.

People on the ground know it's bullshit but it's play along or leave

16.05.2025 07:52 — 👍 1    🔁 0    💬 0    📌 0

Yeah why would we need those

15.05.2025 14:05 — 👍 0    🔁 0    💬 0    📌 0
Preview
Apple is placing warnings on EU apps that don’t use App Store payments When all else fails, the scare tactics return.

Apple is placing warnings on EU apps that don’t use App Store payments. Blatant scare tactics to put consumers off using cheaper external payments systems, where Apple doesn't earn its 30% cut www.theverge.com/news/667484/...

15.05.2025 11:24 — 👍 340    🔁 94    💬 14    📌 10

But, they said they now take security seriously 😧

14.05.2025 14:46 — 👍 0    🔁 0    💬 0    📌 0
Alerte de sécurité

Alerte de sécurité

⚠️Vulnérabilités Fortinet et Ivanti.

📢Le @cert-fr.bsky.social a publié deux bulletins d'alerte après avoir pris connaissance de multiples vulnérabilités affectant des produits Fortinet et Ivanti.

➡️ www.cert.ssi.gouv.fr/alerte/CERTF...
➡️ www.cert.ssi.gouv.fr/alerte/CERTF...

14.05.2025 13:18 — 👍 4    🔁 1    💬 1    📌 1
Microsoft Teams: Enhanced Meeting Protection - Prevent Screen Capture
Microsoft Teams
To address the issue of unauthorized screen captures during meetings, the Prevent Screen Capture feature ensures that if a user attempts to take a screen capture, the meeting window will turn black, thereby protecting sensitive information. This feature will be available on Teams desktop applications (both Windows and Mac) and Teams mobile applications (both iOS and Android. For users joining from unsupported platforms, they will be placed in audio-only mode to maintain the integrity of the meeting's content.
Roadmap ID
490561
Cloud instances(s)
Worldwide (Standard Multi-Tenant)
Platform (s)
Android, Desktop, iOS, Web
IN I
ROLLOUT S
July 2025
Release phases(s)
General Availability, Targeted Release
Added to roadmap: 05/05/2025
SHARE
Last modified: 05/06/2025

Microsoft Teams: Enhanced Meeting Protection - Prevent Screen Capture Microsoft Teams To address the issue of unauthorized screen captures during meetings, the Prevent Screen Capture feature ensures that if a user attempts to take a screen capture, the meeting window will turn black, thereby protecting sensitive information. This feature will be available on Teams desktop applications (both Windows and Mac) and Teams mobile applications (both iOS and Android. For users joining from unsupported platforms, they will be placed in audio-only mode to maintain the integrity of the meeting's content. Roadmap ID 490561 Cloud instances(s) Worldwide (Standard Multi-Tenant) Platform (s) Android, Desktop, iOS, Web IN I ROLLOUT S July 2025 Release phases(s) General Availability, Targeted Release Added to roadmap: 05/05/2025 SHARE Last modified: 05/06/2025

Good luck with that Microsoft.

Thanks iPhone for the ALT text

14.05.2025 12:48 — 👍 0    🔁 0    💬 0    📌 0
Preview
New Intel CPU flaws leak sensitive data from privileged memory A new "Branch Privilege Injection" flaw in all modern Intel CPUs allows attackers to leak sensitive data from memory regions allocated to privileged software like the operating system kernel.

New "Branch Privilege Injection" CPU flaw (CVE-2024-45332) affects all Intel processors since 2018.

Attackers can exploit it to access sensitive data from memory regions allocated to privileged software, such as the operating system kernel.

www.bleepingcomputer.com/news/securit...

13.05.2025 16:03 — 👍 4    🔁 4    💬 1    📌 1
Preview
ANSSI audition Sénat et CMP sur le PJL de transposition NIS2 ANSSI audition Sénat et CMP de M. VIncent STRUBEL DG ANSSI sur le projet de loi de transposition NIS2 : c'est tout illustré en BD !

#MustRead du jour : tout ce que vous avez toujours voulu savoir sur les auditions parlementaires du DG de l'@anssi-fr.bsky.socialsur #NIS2 sans jamais oser le demander.

technique-et-droit-du-numerique.fr/anssi-auditi...

13.05.2025 06:54 — 👍 3    🔁 1    💬 0    📌 0
Preview
Tickets : Réunion OSSIR Mai 2025 Tickets : Réunion OSSIR Mai 2025 - Billetweb

Rappel : la prochaine réunion de l'OSSIR, c'est demain (mardi) à 14h00 chez @own_fr (18 pl. de la Madeleine, Paris).

N'oubliez pas de vous inscrire gratuitement sur https://billetweb.fr/reunion-ossir-mai-2025 si vous êtes en présentiel.

12.05.2025 12:09 — 👍 1    🔁 2    💬 0    📌 0

J’utilise proxmox community pour gérer 4 VM et une petite dizaine de containers. C’est solide. L’interface admin m’a sauvé de mes propres bêtises au moins une fois

10.05.2025 10:05 — 👍 0    🔁 0    💬 0    📌 0
Post image

J'ai découvert deux choses très intéressantes cette semaine :
- Une baie serveur 19 pouces, ça coûte facilement dans les 1000€
- Les tables basses Ikea (5€ sur leboncoin) ont un espacement qui mesure précisément 19 pouces

02.05.2025 13:22 — 👍 315    🔁 56    💬 17    📌 9

@jamesatack.com is following 20 prominent accounts