Todd Thiemann's Avatar

Todd Thiemann

@cryptodd.bsky.social

California native, Enterprise Strategy Group analyst, cybersecurity geek, soccer goalkeeping phenom. Crypto = cryptography, Views=mine, Reposts≠endorsement

864 Followers  |  2,136 Following  |  267 Posts  |  Joined: 23.09.2023  |  2.065

Latest posts by cryptodd.bsky.social on Bluesky

Preview
Oracle issues emergency patch for zero-day flaw exploited by Cl0p ransomware gang Information about the vulnerability exposed by EBS portals is spreading, raising likelihood of new attacks, experts warn.

Oracle issues emergency patch for zero-day flaw exploited by Cl0p ransomware gang www.csoonline.com/article/4068...

07.10.2025 00:42 — 👍 2    🔁 1    💬 0    📌 0
time series showing attacks against palo continuing over the weekend

time series showing attacks against palo continuing over the weekend

Bonkers Palo Alto Login Scanner activity has continued through the weekend. We coordinated with/Palo on Fri, so they know aboot it & have the backs of their customers.

tzulo, inc. & 3xK Tech GmbH continue to be the primary network sources (both need a spanking/null route).

viz.greynoise.io/tag...

06.10.2025 13:42 — 👍 1    🔁 1    💬 0    📌 0

Oracle E-Business Suite: Security Alert Advisory
URL: www.oracle.com/security-ale...
Classification: Critical, Solution: Official Fix, Exploit Maturity: High, CVSSv3.1: 9.8

06.10.2025 03:44 — 👍 1    🔁 1    💬 0    📌 0

The Sun-Times editor may not know their guns - they got it wrong.

05.10.2025 13:30 — 👍 1    🔁 0    💬 0    📌 0

In the first photo, that "long gun" looks like a paintball gun. I don't doubt that weapons in the other pictures are not paintball guns, but gotta be accurate and not avoid misinformation.

05.10.2025 13:23 — 👍 1    🔁 0    💬 2    📌 0
Preview
Partisan Language Inserted Into Education Dept. Workers’ Automated Emails

Keep up the good work. When the budget and government funding is settled, I hope you can investigate how the White House politicized agencies during the shutdown - www.nytimes.com/2025/10/02/u...

03.10.2025 13:51 — 👍 0    🔁 0    💬 0    📌 0
Preview
Proofpoint Pushes Security Deeper Into The Agentic Workspace Proofpoint unveils security for agentic workspaces, addressing the rising risks as AI agents expand productivity—and the enterprise attack surface.

New Forbes article covering the evolution of security for the agentic workspace … and the author slipped in a quote feom yours truly ! www.forbes.com/sites/tonybr...

03.10.2025 04:52 — 👍 0    🔁 0    💬 0    📌 0
Preview
Cyber Group Extorting Executives With Claims of Stolen Data Executives at large organizations are being extorted by a notorious ransomware group, which claims to have stolen data from them via Oracle Corp.’s popular E-Business Suite applications, according to ...

Big extortion campaign underway from major cybercrime group: Execs at large orgs are scrambling as they are being extorted by the notorious ransomware group Cl0p which claims to have stolen data from them via Oracle’s popular E-Business Suite apps. Gift link: www.bloomberg.com/news/article...

02.10.2025 02:15 — 👍 21    🔁 7    💬 2    📌 5
Sailpoint CEO Mark McClain keynoting SailPoint Navigate 1025.

Sailpoint CEO Mark McClain keynoting SailPoint Navigate 1025.

Post image

Sailpoint Navigate in Austin is complete! Lots of identity security learning (hello agentic AI!) and fantastic Austin TX food.

01.10.2025 20:25 — 👍 1    🔁 0    💬 0    📌 0
Dem report concludes Department of Government Efficiency violates cybersecurity, privacy rules
YouTube video by CyberScoop Dem report concludes Department of Government Efficiency violates cybersecurity, privacy rules

DOGE is “bypassing cybersecurity protections” at three agencies, Senate Homeland Security and Governmental Affairs Committee Democrats concluded. via @timstarks.bsky.social www.youtube.com/watch?v=viiq... | cyberscoop.com/senate-democ...

27.09.2025 17:39 — 👍 3    🔁 3    💬 0    📌 0
Post image

One of my favourite @xkcd.com comics, btw

27.09.2025 13:42 — 👍 88    🔁 10    💬 1    📌 1

Enjoy vegetating.

27.09.2025 14:04 — 👍 0    🔁 0    💬 0    📌 0
Preview
AI vs. AI: Detecting an AI-obfuscated phishing campaign | Microsoft Security Blog Microsoft Threat Intelligence recently detected and blocked a credential phishing campaign that likely used AI-generated code to obfuscate its payload and evade traditional defenses, demonstrating a b...

AI vs. AI: Detecting an AI-obfuscated phishing campaign
www.microsoft.com/en-us/securi...

27.09.2025 13:46 — 👍 2    🔁 2    💬 0    📌 0
Preview
First Malicious MCP in the Wild: The Postmark Backdoor That's Stealing Your Emails | Koi Blog

Koi Security claims to have spotted the world's first malicious MCP server that secretly copies and stealers all emails passing through a Postmark server

www.koi.security/blog/postmar...

25.09.2025 16:25 — 👍 9    🔁 7    💬 0    📌 0
Post image

The Netskope Threat Labs team is #hiring experienced researchers in Brazil, Spain, and Portugal! The team is a fully remote team focused on innovation and thought leadership, researching problems including supply chain security, AI security, and command and control.

www.netskope.com/company/care...

25.09.2025 20:31 — 👍 1    🔁 1    💬 0    📌 0
Preview
U.S. government scrambles to stop new hacking campaign blamed on China U.S. cybersecurity officials ordered civilian federal agencies to check for vulnerable Cisco equipment being exploited by attackers targeting the government.

Allegedly Chinese hackers have been using zero-day flaws to get inside government-owned Cisco firewalls since MAY. wapo.st/4gHfgOn

25.09.2025 23:06 — 👍 102    🔁 52    💬 10    📌 8
The summary of product announcements from Okta at Oktane 2025 in Las Vegas.

The summary of product announcements from Okta at Oktane 2025 in Las Vegas.

For identity security types, here is the concise summary of what Okta announced at #Oktane2025

26.09.2025 05:14 — 👍 1    🔁 0    💬 2    📌 0
Preview
Staff Security Research Engineer About Us: We are the leader in human-centric cybersecurity. Half a million customers, including 87 of the Fortune 100, rely on Proofpoint to protect their organizations. We’re driven by a mission to s...

Couple of openings here in our threat research org!

Staff Security Research Engineer:
proofpoint.wd5.myworkdayjobs.com/en-US/Proofp...

Senior Threat Researcher (ecrime team):

proofpoint.wd5.myworkdayjobs.com/ProofpointCa...

24.09.2025 01:59 — 👍 10    🔁 5    💬 0    📌 0

Don't be hatin' home town! It gives you time to buy an expensive coffee.

23.09.2025 00:18 — 👍 1    🔁 0    💬 0    📌 0
Preview
Neuer & Baumann closing in on joint Bundesliga record After Bayern's 4-1 victory over Hoffenheim on matchday 4 of the 2025/26 Bundesliga campaign, the two German goalkeepers are closing in on a very old Bundesliga record.

After Bayern's 4-1 victory over Hoffenheim, the two German goalkeepers are closing in on a very old Bundesliga record. #FCBayern #TSG

21.09.2025 05:03 — 👍 5    🔁 4    💬 0    📌 0

In Freiburg's 3-0 win against Werder Bremen, Noah Atubolu (23) became the first goalkeeper to save five penalties in a row in the Bundesliga - stopper.

20.09.2025 16:01 — 👍 14    🔁 3    💬 1    📌 3
Post image

Critical part of the President's new $100,000 charge for H1-B visas: The Administration can also offer a $100,000 discount to any person, company, or industry that it wants. Replacing rules with arbitrary discretion.

Want visas? You know who to call and who to flatter.

20.09.2025 13:40 — 👍 12621    🔁 4783    💬 742    📌 662
Preview
US Attorney Erik Siebert under pressure from Trump tells staff he will be resigning, source says | CNN Politics US Attorney Erik Siebert told his staff Friday he will be stepping down, according to a person familiar with the matter, after facing intense pressure from President Donald Trump to charge New York…

Resignation of Trump’s interim US Attorney in EDVA amid pressure to charge Letitia James is reminiscent of US Attorney firing scandal in GW Bush Admin. Back then, people cared about DOJ independence.
www.cnn.com/2025/09/19/p...

20.09.2025 03:39 — 👍 590    🔁 160    💬 16    📌 2
Post image

Rabbit and Bear Cub with Kite Surimono. woodblock print. 19th century, Japan

15.09.2025 07:57 — 👍 93    🔁 11    💬 0    📌 1

Los Altos Rod and Gun Club on Skyline (above Los Gatos) has been good, but you have to bring your own firearm.

18.09.2025 19:58 — 👍 4    🔁 0    💬 0    📌 0
Preview
Workday’s Plan to Win the AI Agent Race The software giant announced a slew of new artificial-intelligence bots this week as it aims to win over business customers with the nascent technology.

Enterprise deployment of AI agents happening initially in SaaS apps like Workday. Seems like a solid ROI (article below), but the real value gets unlocked when agents touch core enterprise apps and datastores. That is also where you will run into big cybersecurity risks.
www.wsj.com/articles/wor...

18.09.2025 19:19 — 👍 1    🔁 0    💬 0    📌 0
Post image

The GitLab security team has identified new infrastructure used to deploy BeaverTail and InvisibleFerret, malware linked to North Korean hackers.

gitlab-com.gitlab.io/gl-security/...

17.09.2025 23:53 — 👍 9    🔁 3    💬 1    📌 0
Preview
Post-quantum cryptography (PQC) pilot

At the NCSC our assured Post-quantum cryptography (PQC) pilot Consultancy companies list is now live.

They exist in two categories
- assured for Discovery & Migration Planning
- assured for Discovery & Migration Planning, and Advice

www.ncsc.gov.uk/schemes/assu...

16.09.2025 06:04 — 👍 4    🔁 2    💬 0    📌 0
Preview
Airlines Sell 5 Billion Plane Ticket Records to the Government For Warrantless Searching New documents obtained by 404 Media show how a data broker owned by American Airlines, United, Delta, and many other airlines is selling masses of passenger data to the U.S. government.

New from @404media.co , travel information being sold to the US Government and accessible without a warrant - www.404media.co/airlines-sel...

15.09.2025 13:35 — 👍 1    🔁 0    💬 0    📌 0
Preview
Geedge & MESA Leak: Analyzing the Great Firewall’s Largest Document Leak The Great Firewall of China (GFW) experienced the largest leak of internal documents in its history on Thursday September 11, 2025. Over 500 GB of source code, work logs, and internal communication records were leaked, revealing details of the GFW's research, development, and operations.

The Great Firewall of China has apparently experienced a great data spill. > 500gb of source code, work logs and internal communication records were leaked. Some light reading for the weekend /s

https://gfw.report/blog/geedge_and_mesa_leak/en/

13.09.2025 14:30 — 👍 32    🔁 76    💬 2    📌 2

@cryptodd is following 20 prominent accounts