We are less than a month away from #PIVOTcon26 #CfP deadline,come present your best research in a trusted,vetted environment attended by some of the best researchers. We created such an environment so that we can feel safe to exchange beyond the blogposts #CTI #ThreatResearch #ThreatIntel #MemeGuide
In my opinion - this should be a much bigger story and regulators and AI firms worldwide should be much more engaged.
If there’s no lines *at all* with GenAI, there will be harm.
Orgs and regulators can’t talk big about AI safety in public and then say nothing when this unfolds.
Palo Alto Unit 42 has another job opening looking for #synapse experience on a high impact team! 💚🤩🎉
jobs.smartrecruiters.com/PaloAltoNetw...
Shields Up: Alleged Microsoft Office Zero Day for Sale
www.dataminr.com/resources/in...
For no reason at all, re-upping this blog from @danwblack.bsky.social, which shows the high interest that Russian APTs have in getting access to Signal messages.
cloud.google.com/blog/topics/...
🔥BREAKING NEWS: Two sources have told me that the Department of Veterans Affairs payroll system (VATAS) has been down since Friday. It is operating in 'Emergency Mode' only and will have to resort to straight time cards to get people their base pay on Friday.
This_Is_Fine.gif
Critical Warning: 'Cisco has not released software updates to address the vulnerabilities described in this advisory. There are no workarounds that address these vulnerabilities.' 👀 sec.cloudapps.cisco.com/security/cen... #cybersecurity @gate15.bsky.social
“I want to raise my grave concerns that the aggressive threats to cut U.S. government probationary employees will have a devastating impact on the cybersecurity and our national security.” @rgblights.bsky.social
cyberscoop.com/joyce-china-...
Celebrate April 22nd with ATT&CK v17!
The next version of ATT&CK is almost here, with new content related to the ESXi hypervisor, broad improvements to defenses, and updates to techniques, groups, and software across the framework.
Jesus fucking Christ
I mean this so sincerely
If you participated in erasing Sam Nordquist's fucking identity at the NYT, a TRANS man from Minnesota who was murdered in New York, I think you are fucking scum.
"But I would have gotten fired!"
Get fired then.
Don't be a fucking coward.
DOGE as a National Cyberattack
In the span of just weeks, the US government has experienced what may be the most consequential security breach in its history—not through a sophisticated cyberattack or an act of foreign espionage, but through official orders by a billionaire with a poorly defined…
Here's a list of DOGE staff, assembled and annotated by my colleagues at BI. Whatever you do, please don't share it.
www.businessinsider.com/doge-staff-l...
10/10, no notes
We are in Hell and Hell pushes directly to prod.
And it begins.
FBI class action lawsuit against the retaliatory purge.
First Amendment
Violation of Due Process
Rights to Privacy
www.justsecurity.org/wp-content/u...
Every vet this morning, thinking about all those years of information awareness training and threats of UCMJ for using flash drives
From a journalist friend: Just spreading the word. The CDC is purging data, so people should archive their favorite CDC datasets today, namely ones around race/ethnic diversity, LGBTQ, and reproductive health. Also health data involving climate. The youth risk behavior survey has already gone down.
The Recorded Future annual report is out!
TL;DR - 2024 was bad and 2025 will likely be worse.
Intelligence officials are starting to leak to me now too. Here’s a memo Defense Intelligence Agency personnel received instructing them to suspend observances including:
- Holocaust Remembrance Day
- MLK Day
- Juneteenth
"In the past year, Dozens of hacking groups turned to Google’s Gemini chatbot to assist with malicious code writing, hunts for publicly known cyber vulnerabilities and research into organizations to target for attack, Google’s cyber-threat experts said."
www.msn.com/en-us/money/...
I have a feeling someone may need this today.
This is a time that will try all our souls. We must let our friends & family know we see them, we value them & we will stand up to protect everyone’s right to be themselves.
A ton of folks are still using the old server and are going to be sad December 18th when it's shut down for good and their apps/scrips break.
Moving to TAXII 2.1/STIX 2.1 is more than just a URL change, so the time to get started is yesterday. Please help us spread the word that the end is nigh.
The Community Driven CTI Library
ORKL provides easy access and (re-)search capabilities to a large number of publicised cyber threat intelligence (CTI) reports.
orkl.eu
TY, this looks handy!
