Kevin Noble's Avatar

Kevin Noble

@kevinnoble.bsky.social

Cyber Security Consultant, enjoy all things infosec.

98 Followers  |  242 Following  |  17 Posts  |  Joined: 03.12.2024  |  1.9631

Latest posts by kevinnoble.bsky.social on Bluesky

Post image

Since the decline of peer-to-peer botnets it's been difficult to track malware infection externally. But smart contract based C2 infrastructure provided us with unique insights into this campaign.

expel.com/blog/clearfa...

20.01.2026 23:32 β€” πŸ‘ 51    πŸ” 6    πŸ’¬ 0    πŸ“Œ 0
Preview
America vs. the World President Trump wants to return to the 19th century’s international order. He will leave America less prosperousβ€”and the whole world less secure.

This really is the article to read.

www.theatlantic.com/magazine/202...

19.01.2026 19:54 β€” πŸ‘ 160    πŸ” 61    πŸ’¬ 12    πŸ“Œ 11

My understanding is the vehicles are seized from the deported and the homes of the deported are used for staging. The article does not mention any of this.

13.01.2026 16:51 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

This is the language of pedophiles.

07.01.2026 18:03 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
The slow rise of SBOMs meets the rapid advance of AI Despite progress from CISA and global regulators, SBOM adoption in the private sector remains slow as experts debate if AI-driven coding will improve or undermine software security and transparency.

As SBOMs slowly progress at the federal level and in enterprises, the rise of AI coding assistants is fueling optimisticβ€”and, some experts argue, β€œkind of insane”—claims about a future with vulnerability-free software.

Check out my latest CyberScoop piece. 1/2
cyberscoop.com/sbom-adoptio...

24.11.2025 14:49 β€” πŸ‘ 7    πŸ” 4    πŸ’¬ 1    πŸ“Œ 2
Preview
Why Signal’s post-quantum makeover is an amazing engineering achievement | Ars Technica Happy to read this, not least because I’ve often seen the push for rapid adoption of PQ as coming from intelligence agencies seeking to sow confusion & discord; having a well researched h…

Why Signal’s post-quantum makeover is an amazing engineering achievement | Ars Technica
https://alecmuffett.com/article/117370
#EndToEndEncryption #PostQuantum #signal

14.10.2025 13:05 β€” πŸ‘ 8    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Poster with a gradient blue background. Large text reads β€œthe web we’ve built.” Smaller text says β€œCelebrating 1 trillion web pages archived.” Pixelated 3D icons of a floppy disk, magnifying glass, cursor arrow, computer window, and others radiate outward from a bright starburst in the center. On the right, text lists event details: β€œWednesday, October 22, 5–10PM PT. Live stream: 7–8PM PT. 300 Funston Avenue, San Francisco.” The Internet Archive logo appears in the bottom right corner.

Poster with a gradient blue background. Large text reads β€œthe web we’ve built.” Smaller text says β€œCelebrating 1 trillion web pages archived.” Pixelated 3D icons of a floppy disk, magnifying glass, cursor arrow, computer window, and others radiate outward from a bright starburst in the center. On the right, text lists event details: β€œWednesday, October 22, 5–10PM PT. Live stream: 7–8PM PT. 300 Funston Avenue, San Francisco.” The Internet Archive logo appears in the bottom right corner.

πŸ“’ The #InternetArchive is celebrating an extraordinary milestone: 1 trillion web pages preserved by the #WaybackMachine. πŸŽ‰

Join us!
πŸ“† Weds, Oct 22

🎟️ IN-PERSON: 5–10 PM PT (SF) ‡️
www.eventbrite.com/e/1626438133...

πŸ’» ONLINE: 7–8 PM PT ‡️
www.eventbrite.com/e/1626431011...

#Wayback1T

02.10.2025 17:05 β€” πŸ‘ 315    πŸ” 66    πŸ’¬ 2    πŸ“Œ 5
Preview
How the Infamous APT 1 Report Exposing China’s PLA Hackers Came to Be This is the first in a series of pieces I’ll publish that take an in-depth look at significant events, people and cases in security and surveillance from the past. If there’s something you think would...

Fascinating article by @kimzetter.bsky.social about the 2013 Mandiant APT 1 report that revealed the identities of the Chinese PLA threat actors behind the attacks. Q&A with the main report's architect reveals behind-the-scenes details. It's a great read! www.zetter-zeroday.com/how-the-infa...

11.09.2025 15:29 β€” πŸ‘ 24    πŸ” 8    πŸ’¬ 1    πŸ“Œ 0
Video thumbnail

What are Republicans afraid of that they closed the People’s House instead of facing a public vote?

op: @ericswalwell.bsky.social (via IG)uhh

25.07.2025 12:05 β€” πŸ‘ 573    πŸ” 161    πŸ’¬ 27    πŸ“Œ 7

β€œNot vicious, or malicious, just de-lovely, and delicious”

17.06.2025 14:43 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

New rules

14.06.2025 14:05 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
How a Spyware App Compromised Assad’s Army An investigation reveals how a cyberattack exploited soldiers' vulnerabilities and may have changed the course of the Syrian conflict

How Syrian army officers in final days of war with opposition were duped into 1) disclosing info to fake website about their rank/location and corps/division/brigade and 2) installing phone app that was actually spyware that recorded keystrokes, stole files/photos/call log and spied thru camera/mic

03.06.2025 11:28 β€” πŸ‘ 46    πŸ” 19    πŸ’¬ 2    πŸ“Œ 1
Preview
Hack of Contractor Was at Root of Massive Federal Data Breach Failures in cybersecurity practices at a software company that helps federal agencies manage investigations and FOIA requests allowed two convicted hackers to delete databases, according to internal d...

Failures in cybersecurity practices at a software company that helps federal agencies manage investigations and FOIA requests allowed two employees who had previously been convicted of hacking to delete government databases

21.05.2025 13:54 β€” πŸ‘ 13    πŸ” 11    πŸ’¬ 1    πŸ“Œ 0
Preview
Three Buddy Problem Technology Podcast Β· Updated Weekly Β· The Three Buddy Problem is a popular Security Conversations podcast that goes beyond industry talking points to discuss what others won’t -- nation-state malware,...

HEADS-UP! Professor Thomas Rid is a guest buddy on the pod this week. Currently cooking in the lab 😍πŸ”₯ @ridt.bsky.social

Listen, watch, subscribe!

Apple: bit.ly/3budprob
YouTube: bit.ly/TBP-YT
Spotify: bit.ly/3DH5wEO

25.04.2025 15:10 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 0    πŸ“Œ 1
Post image

And no one in America doubts why he's doing this.

09.04.2025 16:20 β€” πŸ‘ 10499    πŸ” 3883    πŸ’¬ 330    πŸ“Œ 196

The crypto-chuds are laying the groundwork for the next financial crisis.

The below tweet -- thanks, KoM -- sounds arcane, sounds like minutiae, but these are the mechanisms which a future financial crisis are built upon.

Now is a great time to be committing fraud via crypto.

05.04.2025 17:55 β€” πŸ‘ 58    πŸ” 10    πŸ’¬ 5    πŸ“Œ 1
Preview
NSA director fired, Ivanti's 0day screw-up, backdoor in robot dogs - Security Conversations Three Buddy Problem – Episode 41: Costin and Juanito join the show from Black Hat Asia in Singapore. We discuss Bunnie Huang's keynote on hardware […]

NEW POD ALERT! We cover the NSA director firing, Ivanti's latest 0day screw-up, risks from China's robotics dominance, Microsoft AI finding bootloader vulns. @jags.bsky.social @craiu.bsky.social

PLUS, rave reviews for Bunnie Huang's Black Hat Asia keynote!
securityconversations.com/episode/nsa-...

04.04.2025 17:29 β€” πŸ‘ 8    πŸ” 4    πŸ’¬ 2    πŸ“Œ 0

Thanks again for having me on the Three Buddy (& a Buddy) Problem podcast @ryanaraine.bsky.social @jags.bsky.social & @craiu.bsky.social !
It was great chatting with you about Chinese threat intel, CISA cuts, & spyware that dare not speak its name. Turning this into a musical episode was a fun bonus

24.03.2025 14:57 β€” πŸ‘ 29    πŸ” 7    πŸ’¬ 2    πŸ“Œ 0

Same exact thing for generative AI output.

13.03.2025 13:54 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Speaking at Frontiers of Innovation Day at #SXSW at 1pm - free registration here ✌️ lu.ma/v4a9d6ix?tk=...

10.03.2025 17:12 β€” πŸ‘ 8    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0

this is treason, and should be treated as such

10.03.2025 08:35 β€” πŸ‘ 11    πŸ” 4    πŸ’¬ 2    πŸ“Œ 0
Post image Post image Post image Post image

Unsealed documents indicating significant Russian interference in domestic U.S. affairs. The thematic propaganda themes are interesting. Modern technologies in use to spread content & analyze its reach, including psychological operations. www.justice.gov/archives/opa...

08.03.2025 17:57 β€” πŸ‘ 407    πŸ” 157    πŸ’¬ 13    πŸ“Œ 16
Preview
Revisiting the Lamberts, i-Soon indictments, VMware zero-days - Security Conversations Three Buddy Problem – Episode 37: This week, we revisit the public reporting on a US/Russia cyber stand down order, CISA declaring no change to […]

NEW POD ALERT: Revisiting the US/Russia cyber stand down order and the diplomatic optics. Plus, a dissection of β€˜The Lamberts’ and connections to US intelligence agencies, attribution around β€˜Operation Triangulation’, VMware 0days and i-Soon indictments securityconversations.com/episode/revi...

08.03.2025 18:27 β€” πŸ‘ 13    πŸ” 5    πŸ’¬ 1    πŸ“Œ 3
Preview
From MAGA to monarchy: How tech billionaires are engineering American autocracy Common sense for the Trump age

Pay attention please. www.salon.com/2025/02/26/f...

04.03.2025 15:46 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Exclusive: Hegseth orders Cyber Command to stand down on Russia planning The secretary of Defense has ordered U.S. Cyber Command to stand down from all planning against Russia, including offensive digital actions, sources tell Recorded Future News.

In a normal relationship with an enemy turned ally, we wouldn’t immediately stop contingency planning.

28.02.2025 20:48 β€” πŸ‘ 18    πŸ” 6    πŸ’¬ 2    πŸ“Œ 4
Preview
Russia's β€œFirehose of Falsehood” Propaganda Model Russia's propaganda model is high-volume and multichannel, and it disseminates messages without regard for the truth. It is rapid, continuous, and repetitive, and it does not commit to consistency.

One of the best write ups I've found on the Russian propaganda model "Firehose of Falsehood" how it works and counter measures.

www.rand.org/pubs/perspec...

23.02.2025 19:14 β€” πŸ‘ 8    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0

If you're having trouble tracking all of the executive orders, blog posts and other actions coming from the executive office, as well as policy changes and legislative developments, this site -- 47 Watch - is tracking them. It's bare bones, but useful

47-watch.com/index.html

21.02.2025 17:23 β€” πŸ‘ 39    πŸ” 10    πŸ’¬ 2    πŸ“Œ 1
Preview
Memory Safety Is this memory safety here in the room with us? Halvar Flake / Thomas Dullien DistrictCon 0 2025

I gave a day 1 closing keynote at DistrictCon yesterday. Surprisingly, it was a security talk about memory safety.

Slides are here:
docs.google.com/presentation...

22.02.2025 11:40 β€” πŸ‘ 120    πŸ” 29    πŸ’¬ 5    πŸ“Œ 9

I wonder if he mentioned this in his job interview for DOGE. I wonder if it helped him get the job.

21.02.2025 19:29 β€” πŸ‘ 32    πŸ” 10    πŸ’¬ 1    πŸ“Œ 0

@kevinnoble is following 20 prominent accounts