PaperMtn's Avatar

PaperMtn

@papermtn.co.uk

Cyber Security | Enthusiast of nature, chequered shirts and lists of three | DevSecOps | AI | Cloud | papermtn.co.uk | github.com/PaperMtn

91 Followers  |  564 Following  |  11 Posts  |  Joined: 20.11.2024  |  1.6311

Latest posts by papermtn.co.uk on Bluesky

@joeabercrombie.com and Steven Pacey. Name a more iconic duo.

22.09.2025 12:05 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

β€œMake comedy legal again” sure lasted long

18.09.2025 05:56 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

What difference does it make?

29.08.2025 15:33 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Two ponies leading me up a fern-flanked path on Dartmoor

Two ponies leading me up a fern-flanked path on Dartmoor

Often you’ll be walking on Dartmoor & some ponies will be like β€œFollow us, we will lead you to the castle where the wizard lives & life is perfect!” My advice, from experience, is to ignore them. Ponies are known liars who will make up any old shit to briefly relieve the vast boredom of their lives.

23.08.2025 06:06 β€” πŸ‘ 360    πŸ” 54    πŸ’¬ 11    πŸ“Œ 6
Post image

When you’ve finished your book and you’re waiting for the next one to be released…

@ryancahill.bsky.social

18.07.2025 19:56 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Secrets Management Part 2 – Encrypted Secret Retrieval with Gopass In this post I explain how to use gopass to GPG encrypt and store your secrets locally, then integrate with direnv to decrypt and load your secrets to environment variables in your shell without ex…

papermtn.co.uk/secrets-mana...

25.03.2025 20:59 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Talkback Talkback is an AI-powered infosec resource aggregator to be more productive with cyber security content.

talkback.sh by @elttam.bsky.social is a seriously good aggregator of news, research and technical stuff. Highly recommended.

03.01.2025 10:15 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Keep an eye out for notices - AWS RDS Protection for Guardduty seems to have had some issues collecting logs.

Unclear how pervasive this was!

26.12.2024 11:43 β€” πŸ‘ 7    πŸ” 4    πŸ’¬ 1    πŸ“Œ 0

Took me too long to realise that wasn’t a doggo

26.12.2024 18:37 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Obviously MFA is important, and any MFA is better than no MFA. But stories like this go to show how other controls are needed as well. I’ve seen too many cases of risks being downplayed because β€œwe have MFA though”

12.12.2024 19:38 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Researchers Crack Microsoft Azure MFA in an Hour A critical flaw in the company's rate limit for failed sign-in attempts allowed unauthorized access to a user account, including Outlook emails, OneDrive files, Teams chats, Azure Cloud, and more.

buT WE’VE gOT mFA eNabLeD

www.darkreading.com/cyberattacks...

12.12.2024 17:37 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0

In my mind the graphics are HD…

11.12.2024 18:31 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Probing Slack Workspaces for Authentication Information and other Treats Did you know that Slack provides some surprising information about a workspace to unauthenticated callers? Slack Watchman knows, and in this post I’m going to show you the information you can enume…

Probing Slack Workspaces for Authentication Information and other Treats papermtn.co.uk/probing-slac...

10.12.2024 22:00 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
GitHub - DataDog/supply-chain-firewall: A tool for preventing the installation of malicious PyPI and npm packages :fire: A tool for preventing the installation of malicious PyPI and npm packages :fire: - DataDog/supply-chain-firewall

Another cool little tool from Datadog Labs. #cybersecurity


https://github.com/DataDog/supply-chain-firewall

06.12.2024 12:43 β€” πŸ‘ 5    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0

@papermtn.co.uk is following 20 prominent accounts