Alex Pinto's Avatar

Alex Pinto

@alexcp.bsky.social

Cybersecurity data storytelling. DBIR at Verizon Business. Previously serial founder and parallel shitposter. He/him.

600 Followers  |  567 Following  |  84 Posts  |  Joined: 05.07.2023  |  2.3079

Latest posts by alexcp.bsky.social on Bluesky

Post image 05.08.2025 16:40 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Trump subiu no telhado.

(For all the PT-BR idiom enjoyers out there)

05.08.2025 15:32 β€” πŸ‘ 0    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Preview
In the Future All Food Will Be Cooked in a Microwave, and if You Can’t Deal With That Then You Need to Get Out of the Kitchen As a restaurant owner – I’m astounded at the rate of progress since microwaves were released a few short years ago. Today’s microwave can cook a frozen burrito. Tomorrow’s m…

I laughed so hard I thought I was going to cough up an organ. Every line is gold.

04.08.2025 23:06 β€” πŸ‘ 101    πŸ” 46    πŸ’¬ 7    πŸ“Œ 6

Lots of Chico Buarque playing in my house today.

05.08.2025 01:14 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

This is what I think too, but I can’t find a direct citation or reference to β€œwhen we took down XYZ group, we found they had a robust R&D practice”.

Have you ever come across something like this?

04.08.2025 19:47 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Early Warning Signals: When Attacker Behavior Precedes New Vulnerabilities GreyNoise’s new research reveals a recurring pattern: spikes in malicious activity often precede the disclosure of new CVEs β€” especially in enterprise edge technologies like VPNs and firewalls.

β€’ What these signals might reveal about attacker workflows
β€’ How defenders can use this information to act early

Read the full research report here:

www.greynoise.io/resources/ea...

Always happy to discuss or answer questions about the data β€” just drop a line at research@greynoise.io.

31.07.2025 13:17 β€” πŸ‘ 4    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Post image

Three high-profile former CISA employees have joined @istorg.bsky.social to keep working on Secure by Design and figure out a stable future for the CVE program. www.politico.com/newsletters/...

28.07.2025 15:00 β€” πŸ‘ 16    πŸ” 9    πŸ’¬ 0    πŸ“Œ 2
Preview
This War Will Destabilize The Entire Mideast Region And Set Off A Global Shockwave Of Anti-Americanism vs. No It Won’t George W. Bush may think that a war against Iraq is the solution to our problems, but the reality is, it will only serve to create far more.

This is what it make me think about theonion.com/this-war-wil...

22.07.2025 00:06 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Australia would disagree.

08.07.2025 14:54 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Saving this to read tomorrow.

16.06.2025 01:10 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image 10.06.2025 21:07 β€” πŸ‘ 449    πŸ” 109    πŸ’¬ 6    πŸ“Œ 3

I’m partial to β€œHabsburg models” to describe this model - en.m.wikipedia.org/wiki/House_o...

05.06.2025 15:52 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
DISCARDED: Tales From the Threat Research Trenches Technology Podcast Β· Updated Biweekly Β· DISCARDED: Tales from the Threat Research Trenches is a podcast for security practitioners, intelligence analysts, and threat hunters looking to learn more abou...

New episode of DISCARDED featuring the great @alexcp.bsky.social discussing the 2025 Verizon DBIR! Join us for hot takes, insights into the current threat landscape, interesting findings about vulnerability exploitation and third-party risk, and so much more.
podcasts.apple.com/us/podcast/d...

04.06.2025 21:17 β€” πŸ‘ 18    πŸ” 6    πŸ’¬ 2    πŸ“Œ 1

Dan is a brilliant writer. This summarizes my feelings about Generative AI in general, and the next time someone asks me if I will be using Generative AI in my work, I’ll just send them this link.

24.05.2025 03:27 β€” πŸ‘ 5    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Gonna tackle β€œday one”? The RNG is really brutal there.

07.05.2025 20:33 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

It worked at least once on a custom model! bsky.app/profile/alex...

27.04.2025 16:23 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

On the other hand, pro-AI people talk about it like they’re trying to unload a shitty used car. β€œDoes it always work right? Absolutely not! Do you need to take extra annoying steps to receive worse results? Of course! But that’s the real beauty of it…”

26.04.2025 17:45 β€” πŸ‘ 2590    πŸ” 431    πŸ’¬ 59    πŸ“Œ 12

Hope you enjoyed it!

We really try to reward (or punish) the cover-to-cover readers with the jokes and footnotes.

26.04.2025 19:10 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Shortridge Makes Sense of Verizon's 2025 Data Breach Investigations Report (DBIR) This post includes Shortridge’s commentary and summary of Verizon’s 2025 Data Breach Investigations Report (DBIR).

as is tradition, I just published my commentary on this year’s Verizon Data Breach Investigations Report: kellyshortridge.com/blog/posts/s...

as ever, I mix philosophy, market analysis, and lazy math to guide our #cybersecurity sensemaking.

thx @alexcp.bsky.social for the advance copy πŸ–€

24.04.2025 21:46 β€” πŸ‘ 8    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Tenable contributed to the Verizon Business DBIR

Tenable contributed to the Verizon Business DBIR

Tenable contributed to the Verizon Business DBIR

Tenable contributed to the Verizon Business DBIR

#TenableResearch contributed to the 2025 #VerizonBusiness 2025 Data Breach Investigations Report (#DBIR) with data on the 17 widely exploited edge CVEs. Find out where patching still lags. Read our recap here: http://spr.ly/633272Z599

23.04.2025 13:11 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Post image

DBIR authors 1 x AGI 0

(It obviously does nothing on most of them but I found this result super amusing)

23.04.2025 15:30 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 1

In all fairness, it is a good day for one of those: middle of the week, week before RSA…

23.04.2025 15:22 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

In all fairness, it IS a good day to release a report.

Middle of the week, week before RSA. Your marketing folks know what’s up.

23.04.2025 15:20 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
A minimalist report cover with a black background from GreyNoise titled β€œA Blindspot in Cyber Defense: How Resurgent Vulnerabilities Jeopardize Organizational Security.” The subtitle reads: β€œFrom loud waves to quiet revivals, attackers around the world are exploiting resurgent flaws in critical systems.” The background features a repeating pattern of line-drawn swans, with one swan highlighted in bright cyan, symbolizing an anomaly or standout threat among many.

A minimalist report cover with a black background from GreyNoise titled β€œA Blindspot in Cyber Defense: How Resurgent Vulnerabilities Jeopardize Organizational Security.” The subtitle reads: β€œFrom loud waves to quiet revivals, attackers around the world are exploiting resurgent flaws in critical systems.” The background features a repeating pattern of line-drawn swans, with one swan highlighted in bright cyan, symbolizing an anomaly or standout threat among many.

We're in πŸ‘€ competition with the DBIR but it is pre-RSAC "report season".

We took a look at "resurgent" vulns β€” CVEs published between 2010-2020 that cause real problems (and sometimes return from the dead like zombies) now.

I'll be dropping a larger thread […]

[Original post on mastodon.social]

23.04.2025 13:27 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0

lol. Lmao even.

23.04.2025 15:10 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
2025 Data Breach Investigations Report The 2025 Data Breach Investigations Report (DBIR) from Verizon is here! Get the latest updates on real-world breaches and help safeguard your organization from cybersecurity attacks.

The 2025 #DBIR is out! Go get it.

Verizon.com/dbir

23.04.2025 04:32 β€” πŸ‘ 6    πŸ” 6    πŸ’¬ 0    πŸ“Œ 1

I’m sorry to report the prophecy has not come to pass in the 2025 #DBIR.

Maybe next year will be a nice one.

23.04.2025 03:47 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Making Non-Standard Port Scanning the Standard
YouTube video by Censys Making Non-Standard Port Scanning the Standard

New @censys.bsky.social video with me and the brilliant Ariana Mirian talking about finding various services on weird ports.

youtu.be/qr6Xdl9WfLM?...

18.04.2025 14:18 β€” πŸ‘ 3    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0

Good times.

18.04.2025 01:45 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

@alexcp is following 20 prominent accounts