@matt.buildingsecops.com
Cybersecurity tinkerer by day, wine and cheese tinkerer by night. Security @ Tines | ex-Coinbase Security, Material Security
Examples like this are why itβs particularly infuriating that I canβt fully disable all AI features in Google Workspace. Different threat models deserve more granular controls. www.wired.com/story/google...
08.08.2025 16:59 β π 0 π 0 π¬ 0 π 0
The annoying spam texts destroying the Democratic brand:
$678M raised through those spam tactics
$282M to one consulting firm: Mothership Strategies.
$11M to actual campaigns (1.6%)
The party isnβt just treating donors like marksβitβs being fleeced itself yet continues to back Mothership.
Weβre hiring at Tines! Iβd take a look at tines.com/careers/jobs...
30.07.2025 16:21 β π 1 π 0 π¬ 1 π 0I live in the middle of San Francisco. I walk and take public transportation everywhere daily, feeling perfectly safe. And every time someone starts ranting about how scary and dangerous cities are, I nod and smile because I do not want them to come here.
29.07.2025 06:18 β π 862 π 99 π¬ 37 π 10This is a critical read for anyone who might engage with these remote workers.
Paywall-free: archive.ph/CZOvv
My hot take of the day: weβre not gonna resolve SOC burnout any time soon unless we fix these three underlying issues in how we run SOC teams. buildingsecops.com/posts/three-...
22.07.2025 00:24 β π 0 π 0 π¬ 0 π 0I feel like @quinnypig.com would appreciate the staff sending me back and forth between two different security lines to get into the AWS Summit. No metaphors here at all.
16.07.2025 12:38 β π 0 π 0 π¬ 0 π 0Iβm not a cryptographer, but to the best of my (reasonably extensive layperson) knowledge this is possibly the best FIPS 140-3 implementation out there in terms of minimizing negative security impacts when complying with some of the more boneheaded parts of FIPS.
16.07.2025 00:47 β π 84 π 18 π¬ 2 π 2
A post on infosec.exchange from Viss that reads "stop using twitter. there are no more excuses. get your news and your cti elsewhere. the only reason the news and cti vendors stay on twitter is because you, the audience, are still there. so leave. take your clicks and your eyeballs to another platform. it will make them leave. dont wait for the critical mass to form BE THE CRITICAL MASS your body is a vote. choose wisely."
10.07.2025 12:11 β π 21 π 5 π¬ 1 π 1
βDescending on a person in public, laying hands on them, and taking them to a distant prison is a naked expression of state power. For it to be tolerated in a democracy, it cannot be done by shadowy, masked agents,β Brandon del Pozo argues:
07.07.2025 11:56 β π 607 π 216 π¬ 32 π 14I empathize with the sunk costs, but I think theyβre underestimating the hit to attendance. Iβll be interested to see what the 2027 conference landscape looks like as well.
02.07.2025 12:16 β π 0 π 0 π¬ 0 π 0I was at an international cybersecurity conference recently and the organizers asked if I had any feedback. I said βyes, for attendee safety please donβt host it in the US next year.β Their response was that theyβve already signed the venue contract, so π€·ββοΈ
02.07.2025 12:16 β π 0 π 0 π¬ 1 π 0
Spying on embassy visitors
A criminal cartel hired a hacker to identify "people of interest" (including the FBI's Assistant Legal Attache), going in and and out of the US embassy in Mexico city, and then spy on their calls, and their location.
It gets worse..
Iβve been posting a lot lately about topics that arenβt obviously related to cybersecurity or SecOps. Fundamentally I believe security is about protecting people, and sometimes protecting people extends beyond the digital realm. Food insecurity matters more than device insecurity.
26.06.2025 18:57 β π 0 π 0 π¬ 0 π 0I live in an NYC neighborhood with a Whole Foods and multiple local grocers. All of them are always packed, because outside of our few blocks, itβs a food desert. If NYC opened a grocery store in one of those food deserts, it would be complementary to where the free market has profitable stores.
26.06.2025 18:50 β π 0 π 0 π¬ 0 π 0
Image of JD Vance bald and with a bloated face.
Gotta post this again.
After handing over his password, Mads was told he would not be allowed to go through with his planned vacation after two images were not to the officers' liking.
www.dublinlive.ie/news/world-n...
brutal thread
22.06.2025 21:35 β π 804 π 240 π¬ 38 π 2
ICE in just a few weeks has transformed itself into the closest thing that the US has ever had to a βsecret police,β with more seemingly culturally in common with the Klan nightriders of Reconstruction than their federal agency brethren like the FBI or ATF. www.doomsdayscenario.co/p/ice-believ...
20.06.2025 18:15 β π 2166 π 758 π¬ 95 π 52New Yorkers scream out each officerβs lawsuits against them for excessive force and more upon their city, right to their faces while protesting.
13.06.2025 18:00 β π 35245 π 10410 π¬ 869 π 1095
Image of Senator Alex Padilla being physically dragged away by the DHS secretary's security.
This is what Trump's government thugs are willing to do in broad daylight, to a US Senator, with cameras on.
They are sending the message that anyone who disagrees with Trump isn't safe in America.
This is authoritarianism.
A text from a spam phone number that reads βwhatβs your chief concern at the moment?β
Me: βAs a cybersecurity person, thereβs no pig butchering lure Iβd ever get sucked in byβ
The pig butchers:
Turns out that self-hosted Ghost isnβt great about actually sending scheduled postsβ¦ but now weβre back up on Ghost Pro with regularly scheduled content! This week: CISAβs (outdated) SIEM and SOAR implementation guidance buildingsecops.com/posts/infose...
02.06.2025 17:24 β π 0 π 0 π¬ 0 π 0I am always impressed with @thinkstcanary.canary.tools both as a company and as a security solution.
@thinkstcanary.canary.tools is a must have tool for all defenders
βIncidents are a feedback loop into the businessβs risk appetite. Theyβll tell you if youβre making the right risk bets.β
A brand new episode of The Future of Security Operations is here! This week, Thomas chats to Tinesβ Field CISO @matt.buildingsecops.com
π www.tines.com/blog/tines-m...
Whoa, not the pairing I would necessarily have expected, but hopefully a great outcome for all my Red Canary friends!
27.05.2025 20:58 β π 1 π 0 π¬ 0 π 0Tines' Field CISO @matt.buildingsecops.com joined host @tom.risky.biz on the Risky Business podcast to discuss CISA's Secure by Design pledge - and why it's too early to declare it a success or a failure.
Listen to the full conversation: risky.biz/RBNEWSSI75/
Congestion pricing has improved life in New York City by: reducing cars on the street, speeding traffic (especially at peak hours), speeding buses and making them more reliable, expanding transit ridership, reducing car crashes, reducing noise complaints, and increasing the number of visitors.
Fire response times fell in the NYC congestion zone, even as they increased in the rest of the city.
Car crashes with injuries fell citywide, but they fell especially dramatically in the congestion pricing zone from 2024 to 2025
Local buses have sped up dramatically in the congestion pricing zone.
NYCβs congestion pricing is a policy miracle: Less traffic, less noise, faster transit, more business sales, more transit revenue. And it hasnβt produced the negative effects outside the cordon zone we were afraid of.
www.nytimes.com/interactive/...
A lot of people say they want the government to run like a business, but they never say whether they want it to run like Costco or Enron.
25.04.2025 12:31 β π 0 π 1 π¬ 0 π 0For no reason at all, I keep thinking about how @sentinelone.com has a great team and a great product, and how delighted Iβd be to work with them again. Much love to all my friends there.
11.04.2025 12:44 β π 0 π 0 π¬ 0 π 0saw a very condescending post about people using password manager notebooks. i'd rather have an old guy who doesn't go out use one of those books than nothing at all. if your house is broken into you have more pressing concerns than jimmy the cat-burglar making a purchase on ebay
11.04.2025 12:22 β π 77 π 8 π¬ 5 π 0
