Dhruv AHUJA

tens of thousands of UK/London startups will change their address from 86-90 Paul Street to 66 Paul Street 😅 IYKYK

#hoxtonmix

#penguin #startups #bootstrap

I am always pleasantly astonished at the quality of talent Cambridge has. It's a privilege to be among this crowd.

We've locked in dates and venues for the North American (NA) and European (EU) fwd:cloudsec conferences this year!

fwd:cloudsec NA will be in the Seattle, Washington area at the Meydenbauer Center in Bellevue on June 1 and 2. 🧵

Trump suggests US used cyberattacks to turn off lights in Venezuela during strikes U.S. Cyber Command was involved in setting the stage for the operation.

An example of cyber offence working with/for kinetic forces, perhaps. Next step is to defend in the digital battlefield from a possible retaliation.

www.politico.com/news/2026/01...

SpyGPT will shake James Bond’s world Open-source data and machine learning tools mean the challenge is not information scarcity but information overload

SpyGPT 🕵

www.ft.com/content/3925...

"On March 1, 2026, we are introducing a new $0.002 per-minute GitHub Actions cloud platform charge that will apply to self-hosted runner usage." 🤯

First, congratulations and well-deserved.

Second, if anyone hasn’t read this, it’s a hoot and worth your time.

I have to say Eldon Sprickerhoff's Committed has filled some critical gaps I didn't know I had. The book is also non-repetitive, has short-length chapters and to-the-point.

www.goodreads.com/book/show/21...

Monthly Rust Meetup, Wed, Nov 12, 2025, 6:45 PM | Meetup Join us for the new and improved monthly Cambridge Rust meetup, hosted at Quantinuum's office on Hill's Road. **Speaker:** **Daniel Hugenroth** **Topic:** In an era where

www.meetup.com/cambridge-ru...

Rust solves many problems we see in #cybersecurity at compile time. This choice reduces countless patching vulns, eases the load on security teams and increases the SNR for defensive products. Join us in #Cambridge for a deep dive into use of Rust for software you can trust 🧵

We dug deeper into data & telemetry sent #outbound by #Cursor, #Claude, #Copilot and 4 other agent editors, so you can make an informed choice. With the IOCs revealed, you can also monitor for shadow IT usage of these in your corporate/cloud networks.

chasersystems.com/blog/what-da...

I hired a director recently and this was my screening question: can you please explain the difference between public-key and symmetric-key cryptography.

Virtually all the candidates, who universally claimed security engineering expertise of some kind (some cryptography-related) could not. At all.

Solid work done by the team 💪. If you use agentic editors in your work, this is a must read. Only took two months of research.

...@chasersystems.bsky.social to focus on building detections for TTPs etc in the red and yellow parts, and developer experience to manage allowlists of the green part.

[1] detect-respond.blogspot.com/2013/03/the-...

The Pyramid of Pain [1] from over a decade ago is still 🎯. Block TTPs, Tools and Artifacts if you can detect them. Allow only trusted Domain Names and IP Addresses, in an otherwise default deny mode. Hashes just contribute to climate change. This graphic helps me at...

"Aston Martin now able to ship cars to US at lower tariff rate without hitting quota limit following JLR hack" 🤦

you couldn't make this up

www.ft.com/content/c08f...

More stock is on the way. Looks like we can keep this offer open for another week.

"The result is that there is often an inverse correlation between the size of an organization and how rapidly it installs patches." 💯

www.cs.columbia.edu/~smb/blog/20...

11:48 PM PDT Oct 19 ➡ 12:38 AM Oct 20 = 50 minutes. That's how long AWS took to "our engineers had identified DynamoDB’s DNS state as the source of the outage".

This is impressive, and evidence of "tribal knowledge" NOT having departed. IYKYK.

I only wish they used UTC 🇬🇧

I use openrouter·ai and agent Roo in vscode for exactly this. Can change the model per prompt in each step of the agent.

These were in solid demand at our @fwdcloudsec.org booth earlier this year and we couldn't help but spread the love among AWS users today. Get yours in the post. #us_east_1 #dns (GCP, Azure, etc peeps can also fill the form 😛 )

It's always DNS.

Or us-east-1.

...you from doing that when using wildcards!

ICO report: ico.org.uk/action-weve-...

...extracting a baseline and only then enforcing it. Once in enforcement mode, C2 channels become a thing of the past. Heck, we even detect whether what you may be trying to allow is an Effective TLD (like with *·it·com, anybody could register subdomains on it) and stop...

...threats. They will always be too late due to the nature of log collection and the human-in-the-loop.

A robust preventive tool is an *outbound* filtering firewall. We've invested great time & effort in making these easy to retrofit and go about monitoring the traffic,...

...channel working by then.

This is the difference between detective controls and preventive controls. The latter would've stopped it (had it been able to detect it, of course.) But the UK seems to be overly reliant on advocating use of SOCs to contain these kind of...

The UK ICO has fined Capita £14 million. Lots of juicy details in the doc re #ransomware components used: QakBot, Cobalt Strike, Bloodhound, SystemBC. The threat actor was able to laterally move and establish persistence before the SOC got around to the alerts. They had a C2...

...because the team who put that in has moved on!

...providers is safer than leaving open to the entire internet. Not saying don't patch systems - but take your time to get there. Attack from a tenant on the same provider is a slim chance. Some users will never get to patching Redis or changing server/client configs ever...