NCC Group North America InfoSec @NCCsecurityUS
NCC Group North America security consulting. Find our Corporate Global Account here: @NCCGroupPLC and our everything tech account here: @NCCGroupInfosec nccgroup.com/us/cybersecuri… United States Joined June 2008-
Tweets2K
-
Followers6K
-
Following244
-
Likes640
New Blog: Sifting through the spines: identifying (potential) Cactus ransomware victims research.nccgroup.com/2024/04/25/sif…
New Blog: Non-Deterministic Nature of Prompt Injection research.nccgroup.com/2024/04/12/non…
New Blog: Public Report – Confidential Mode for Hyperdisk – DEK Protection Analysis research.nccgroup.com/2024/04/12/pub…
New Blog: Technical Advisory – Ollama DNS Rebinding Attack (CVE-2024-28224) research.nccgroup.com/2024/04/08/tec…
New Blog: Public Report – Google Privacy Sandbox Aggregation Service and Coordinator research.nccgroup.com/2024/03/28/pub…
New Blog: Android Malware Vultur Expands Its Wingspan research.nccgroup.com/2024/03/28/and…
New Blog: LTair: The LTE Air Interface Tool research.nccgroup.com/2024/03/14/lta…
New Blog: The Development of a Telco Attack Testing Tool research.nccgroup.com/2024/03/13/the…
New Blog: Public Report – AWS Nitro System API & Security Claims Italian research.nccgroup.com/2024/03/04/pub…
New Blog: Public Report – AWS Nitro System API & Security Claims French research.nccgroup.com/2024/03/04/pub…
New Blog: Public Report – AWS Nitro System API & Security Claims Spanish research.nccgroup.com/2024/03/04/pub…
New Blog: Public Report – AWS Nitro System API & Security Claims German research.nccgroup.com/2024/03/04/pub…
New Blog: Unmasking Lorenz Ransomware: A Dive into Recent Tactics, Techniques and Procedures research.nccgroup.com/2024/02/22/unm…
New Blog: Puckungfu 2: Another NETGEAR WAN Command Injection research.nccgroup.com/2024/02/09/puc…
New Blog: Public Report: Aleo snarkOS Implementation and Consensus Mechanism Review research.nccgroup.com/2024/02/08/pub…
New Blog: Analyzing AI Application Threat Models research.nccgroup.com/2024/02/07/ana…
New Blog: Ivanti Zero Day – Threat Actors observed leveraging CVE-2021-42278 and CVE-2021-42287 for quick privilege escalation to Domain Admin research.nccgroup.com/2024/02/05/iva…
New Blog: Memory Scanning for the Masses research.nccgroup.com/2024/01/25/mem…
The figures for December take the total number of ransomware attacks in 2023 to 4,667, far beyond NCC Group’s initial expectations that cases would hit 4,000. The annual total marks an 84% increase from all recorded ransomware attacks in 2022. nccgroup.com/us/newsroom/nc…
New Blog: Rust for Security and Correctness in the embedded world research.nccgroup.com/2024/01/09/rus…
SwiftOnSecurity @SwiftOnSecurity
403K Followers 9K Following computer security person. former helpdesk.Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsmRr3b00t @UK_Daniel_Card
92K Followers 7K Following 真理的揭露者 Quis custodiet ipsos custodes fella in cyberspace #nafo undercover #FVEY Lovely Horse #fella #meme #farm #appreciator #cyber #specialistOllie Whitehouse @ollieatnowhere
5K Followers 1K Following CTO @NCSC Former: PortSwigger, Interrupt Labs, NCC Group, BlackBerry, Symantec and AtstakeAlex Plaskett @alexjplaskett
9K Followers 590 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Tweets about 0day, OS, mobile and embedded security.Clint Gibler @clintgibler
19K Followers 575 Following 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletterRobert Graham 𝕏 @ErrataRob
66K Followers 2K Following Created (BlackICE,IPS,sidejacking,masscan). Doing (blog,code,cyber-rights,Internet-scanning). @[email protected]Jennifer Fernick @enjenneer
3K Followers 2K Following Global Head of Research at @NCCGroupInfosec. Computer scientist. Board @theopenssf. Ex @quantumIQC, @waterlooENG. Almost always on twitter hiatus.Deirdre Connolly¹ @durumcrustulum
6K Followers 3K Following • 🜗 🝒 🝲 crypto as in 'cryptography' 🝳 🝡 🜖 • ¹ isogenist, co-host @SCWpod, @durumcrustulum.bsky.socialshubs @infosec_au
50K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnoteRachel (Eck) Shimansk.. @Rachel_C_Eck
391 Followers 760 Following #Cybersecurity #marketer, 🧑🚒 wife, 🐶🐶, #music lover, tenacious #Sagittarius, closet data geek. Currently working at NCC Group. My tweets are my own.seaking @seakingvalhalla
6 Followers 266 Following #infosec #hacking #USA #defense #redteam #programming #software_agnostic #2A #Patriot #BJJ #male #Jesus Full time #bluecollar Part time #cybersecurity #soberaslam ahammad @66Molleka53883
3 Followers 342 FollowingCatalin Visinescu @cvisines
91 Followers 142 Following Senior Security Consultant @ NCC Group (Hardware and Embedded Services)Emmanuel @Emmanuel1781812
34 Followers 84 Following I'm brilliant and gentle boy🙏🙏 We progress by lifting others.Ahlam saleh @Ahlamsaleh86
2 Followers 58 FollowingSamaor rohoman @SamaorR27235
4 Followers 45 FollowingKiran S Pillai @ks_pillai02
10 Followers 108 FollowingSimon Bgt @BgtSimon53112
5 Followers 21 FollowingP3p3_Acero @P3p3_Acero
29 Followers 176 Followingmiguel aya 🇺🇦 @miguelayayay
13 Followers 293 Following Why don’t you ask the kids on Tiananmen Square? Fuck Putininfradev @infradev2
10 Followers 738 Following Interested in infrastructure development, cyber operations and security engineeringKingRat @InfoSecZ
154 Followers 819 FollowingJay B @jaybuji
10 Followers 545 FollowingAlex 🇧🇷🇺🇸 @alexalmeida79
69 Followers 236 Followingzlgxzswjy @zlgxzswjy
45 Followers 1K FollowingMani @Supernal_Future
6 Followers 251 FollowingBiggestik @biggestik
280 Followers 3K Following everything goes..buh not bullshit😎 cryptocurrency, Digital Asset Investor 🪙🪙Daniel Montezuma @DanielMont88480
75 Followers 238 Following世界末日 @ZombieBing
0 Followers 124 FollowingBolly bobo @bolly_bobo
15 Followers 441 FollowingJohn Kollitidis @JKolliti
64 Followers 448 Followingfulco @fulco
354 Followers 2K Following A random accumulation of cybersecurity skills | Avid Reader | Aspiring Author | Photographergadget tech @PrimePickshu
42 Followers 15 FollowingArmando Huesca @0xhuesca
318 Followers 220 Following A 0day is a good day #freetimeresearcher #assembly #shellcoder #pentest #redteam #offensive #engineer he/himS @sokjnr
1K Followers 796 Following Security Researcher and Privacy Advocate. Strong proponent of Murphy's Law. Real Madrid fan.OKComputer22 @OComputer282557
27 Followers 91 FollowingVraj Patel @We_Are_A_J
135 Followers 765 Following Security Engineer | Hardware Security | Physical PenTesting Enthusiastst_user @soc127_0_0_1
212 Followers 449 Following There is no value in maintaining security. It is the building we are protecting with our bodies and souls, and the way we spend our limited budgets.Actually White @DeltaOGaming
1K Followers 1K Following Aries / Tiger / Actually White . Your opinion doesn’t matter to the truth . #88Swapnil Mengi @swapnil_mengi
45 Followers 415 Following Cyber Threat Intelligence | Threat Hunting | OSINT | Malware Analysis | Offensive Security | Scripting | Penetration Testing | Bug Bounty and CTF hobbyistFrankw @Frank_707H
13 Followers 125 Followingsanitarian huzaifa sh.. @sanitarian8933
15 Followers 208 FollowingKieshaNordahl @KieshaNord770
84 Followers 2K FollowingLucas Baril @luc4sbaril
37 Followers 2K Followingwinterknife 🌻 @_winterknife_
4K Followers 5K Following low-level developer with a focus on 𝙸𝚗𝚝𝚎𝚕 𝚡𝟾𝟼 ISA devices running 𝚆𝚒𝚗𝚍𝚘𝚠𝚜 | R&D @BHinfoSecurity | https://t.co/lyJL0y7qRZJames W. @cyberbiz4
193 Followers 3K Following looking for a cyber position in blue team. Metro Vancouver, Canada. Defender, GIAC x 3, M365, Splunk, AzureMichael @Michael63399633
482 Followers 5K FollowingMatthew Green @matthew_d_green
143K Followers 1K Following I teach cryptography at Johns Hopkins. Mastodon at [email protected] and BlueSky at https://t.co/GI4QlxYTdk.briankrebs @briankrebs
348K Followers 2K Following Independent investigative journalist. Author of 'Spam Nation,' a NYT bestseller. Former Washington Post reporter. Mastodon: https://t.co/fTKNavlMwpOllie Whitehouse @ollieatnowhere
5K Followers 1K Following CTO @NCSC Former: PortSwigger, Interrupt Labs, NCC Group, BlackBerry, Symantec and AtstakeClint Gibler @clintgibler
19K Followers 575 Following 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletterJennifer Fernick @enjenneer
3K Followers 2K Following Global Head of Research at @NCCGroupInfosec. Computer scientist. Board @theopenssf. Ex @quantumIQC, @waterlooENG. Almost always on twitter hiatus.ᴅᴀɴɪᴇʟ ᴍɪ.. @DanielMiessler
140K Followers 922 Following AI · SECURITY · MEANING → HUMAN 3.0 ⚒️Founder of UL, Creator of Fabric & Threshold 👤Human 2.0: 🟩🟩⬛️⬛️⬛️ Human 3.0 📋Apple, Robinhood, IOActive, HP, Armymatt blaze @mattblaze
78K Followers 945 Following Scientist, safecracker, writer, professor. 280 is the new 140 is the new 1536. He/Him. Not a paid subscriber. Mastodon: https://t.co/RAvcgh3JqMioXt Alliance @ioXtAlliance
438 Followers 816 Following The global standard for #IoT security and fastest-growing security alliance in the U.S. Leading the way with best security practices and testable standards.BrightTALK @BrightTALK
17K Followers 8K Following BrightTALK brings #professionals and businesses together to learn and grow with over 100,000 free #webinars and talks from industry #experts. Join us!Electronic Design @ElectronicDesgn
32K Followers 707 Following The source for emerging technologies for design solutions http://t.co/5hM6Y7ovE5OWASP SAMM @OwaspSAMM
1K Followers 19 Following The OWASP Software Assurance Maturity Model (SAMM) is the open framework to help you start and improve your secure software development lifecycleMark Manning @antitree
3K Followers 2K Following Process isolationist, k8s security, ᴎo-prem, software supply chain, trust denier🔸security architect @❄️, run @roc2600 @[email protected]OT Cyber Security All.. @OTCSAlliance
644 Followers 108 Following A group of global industry-leading organizations focused on providing OT operators with resources and guidance to mitigate their cyber risk in an evolving worldPentester Academy @SecurityTube
188K Followers 15K Following We help professionals acquire the skills, knowledge and certificates by teaching defense through offense to advance their careers in cybersecurity.BSides Las Vegas @BSidesLV
18K Followers 2K Following BSides Las Vegas will take place on August 6th and 7th, 2024Tim Rawlins - Directo.. @PinionSIRR
240 Followers 415 Following Tim Rawlins: Security, Intelligence, Risk & Resilience from Director & Senior Adviser at NCC Group. Opinions mine. Pinion: a small cog that makes a difference.CDO Insights @CDO_Insights
21K Followers 12K Following about that stuff what Chief Digital Officers are producing: #DigitalStrategy, #Transformation, #Digitalization hosted by @dig_revolution & @globaldatamakerDoug Levy @SFDoug
4K Followers 5K Following Fact-loving writer, #science & #emergency comms expert. Formerly @ColumbiaMed @USAToday @UCSF. Clients incl federal contractor supporting @BARDA.Hackfest.ca @hackfest_ca
5K Followers 637 Following Largest hacking event in Canada held in Quebec City, Canada every fall. Bilingual, Technical conferences, workshops #CTF and more #infosec | @SecuritePodcastMontréHack @montrehack
2K Followers 56 Following Monthly Capture-The-Flag (CTF) solving and cybersecurity workshop in Montréal and online// Atelier mensuel de résolution de Capture-The-Flag et de CybersécuritéMotherboard @motherboard
230K Followers 130 Following Tech by @VICE. Tip us securely: https://t.co/TDmsbmarG7…NuCypher ✜ @NuCypher
47K Followers 387 Following Builders of threshold cryptography, decentralized systems, and contributors to @TheTNetworkWIRED @WIRED
10.0M Followers 452 Following Where tomorrow is realized || Sign up for our newsletters: https://t.co/webmuFK9lNRobert McMillan @bobmcmillan
14K Followers 2K Following Reporter with the Wall Street Journal. BIO: https://t.co/olLOnHM1u2 Host of Hack Me if You Can https://t.co/vEoVoRszVv @[email protected]The Wall Street Journ.. @WSJ
20.6M Followers 1K Following Sign up for our newsletters and alerts: https://t.co/QevH0DLisA | Got a tip? https://t.co/iXIigdOLPr | For WSJ customer support: https://t.co/DZgH9n4vAICISOs Connect @SecurityCurrent
6K Followers 2K Following CISOs Connect™ & its Security Current™ division, known for its Security Shark Tank®, is led by CISOs across Fortune 500 companies, industry leaders & executivesZack Whittaker @zackwhittaker
76K Followers 979 Following Security editor @TechCrunch • +1 646.755.8849 • [email protected] • https://t.co/X6GJDYwaBETechCrunch @TechCrunch
10.3M Followers 460 Following Technology news and analysis with a focus on founders and startup teams. Got a tip? https://t.co/J0WxnZxSRYMikeydangerous @mth@f.. @MT_Heller
2K Followers 981 Following Was a #cybersecurity journo, now marketing manager at @PaloAltoNtwks Come for the nursery rhyme hot takes; stay for the tech. Tweets are not views of employerTechTarget News @TechTargetNews
32K Followers 1K Following Sharing the latest tech news, tips and in-depth insights, covering AI, cloud, cybersecurity, DevOps and more from the Editorial team at @TechTarget!Reuters Business @ReutersBiz
2.7M Followers 247 Following The latest business and financial news from around the 🌍 with insights from @breakingviews. Our new daily podcast is here: https://t.co/WoRUGLyyeHSarah Kuranda Vallone @skuranda
3K Followers 2K Following Former reporter now leading comms and marketing at @NightDragon, cookie baker, runner and lover of all things cats [email protected]Kelly Jackson Higgins @kjhiggins
11K Followers 2K Following Editor-in-Chief at Dark Reading, but most of my family and friends have no clue what I do. My opinions posted here are mine only.Infosecurity Magazine @InfosecurityMag
236K Followers 900 Following The only magazine dedicated to the strategy and technology of information security, delivering critical business and technical information for IT professionals.The Information @theinformation
96K Followers 697 Following The leading publication high-powered tech executives and founders read daily.eWeek @eWEEKNews
23K Followers 3K Following 💻 Technology news for IT professionals & technology buyers 📰 Weekly newsletter (link below) 🎧 eSPEAKS podcast with @JamesMaguire 🇬🇧 UK news @eweekukCyberScoop @CyberScoopNews
23K Followers 1K Following CyberScoop, a @ScoopNewsGroup property, reports on news and events impacting technology and security.@[email protected].. @dangoodin001
43K Followers 755 Following Please use this hell site as sparingly as possible. Elmo can't be allowed to succeed. Follow me on Mastodon @[email protected]Ars Technica @arstechnica
1.2M Followers 1K Following Original news, reviews, analysis of tech trends, and expert advice on the most fundamental aspects of tech.Asha Rangappa @AshaRangappa_
832K Followers 654 Following Fmr FBI Special Agent, lawyer, @JacksonYale. Tiger(ish) mom. @abc legal contributor. Editor @just_security. Steam mop influencer. Views mine.Jessica Haworth @JesscaHaworth
2K Followers 1K FollowingThe Daily Swig @DailySwig
12K Followers 408 Following Web security news and views. The latest on bug bounty programs, technical research, hacking tools, and more. DMs open for tips.SecurityWeek @SecurityWeek
220K Followers 3K Following #Cybersecurity News, Threats, Insights and Expert Analysis: #SCADA #Infosec #ICS CoverageIronCore Labs @IronCoreLabs
355 Followers 255 Following Bringing strong data protection to cloud apps and AI through usable, searchable, data-in-use encryption. @[email protected]Ben Lincoln @0x00C651E0
1K Followers 3K Following Penetration tester, managing security consultant, forward/reverse engineer, etc. He/him.Technology Diversifie.. @T3chDiversified
359 Followers 1K Following 501(c)(3) non-profit for education, employment resources, peer-support, diversity, and inclusion in tech. Organizers of @HackingDivConf #HackingDiversityTransferrable @HackingDivConf
856 Followers 4K Following Considering a career in #cybersecurity? You're making a wise decision with plenty of opportunities waiting for you! #cybersecurity #careerValentin Leon @vleonbonnet
62 Followers 155 FollowingISACA Los Angeles @isacala
1K Followers 373 Following ISACA Los Angeles Chapter | Professional Association Dedicated to #Risk, #Cybersecurity, #GRC, #ITAuditHOU.SEC.CON Security .. @HouSecCon
2K Followers 27 Following THE Houston-area information security conference.Jason @f2jason
25 Followers 33 FollowingInfoSec Southwest @InfoSecConf
2K Followers 65 Following Annual information security and hacking conference in Austin, Texas. Registration is open for ISSW 2020: May 1-3 in Hotel Ella.Docusign @DocuSign
155K Followers 25K Following Bringing Agreements to Life Free Trial → https://t.co/7tSk4biqrh → Support: https://t.co/NYAX3dxGnT → System Status: https://t.co/c6TmyOFyEyHIPAA Summit @hipaasummit
1K Followers 774 Following The Twenty-Ninth National HIPAA Summit March 3-5, 2020 #hipaasummitNCC Group is going to be onsite at Black Hat USA and my colleagues would love to see you there! We have a conference room in Mariners A – we're doing some cool things so be sure to check out the link below to learn more. Happy Black Hat-ing! bit.ly/43FHDV7
[SHAMELESS PLUG] [ARTICLE] "Florida water hack highlights risks of remote access work without proper security" Part 2 of the CNN article that contains more context from me. Full article: cnn.com/2021/02/13/us/… #infosec @NCCsecurityUS @NCCGroupInfosec #ICS
Loving the new company swag! @NCCsecurityUS @NCCGroupCareers #swag #CyberSecurity #infosec
.@NCCsecurityUS and @foxit have been tracking a threat group believed to be operating in Chinese interests that's abusing #cloud services to target semiconductor companies and the airline industry. Read more in @ZDNET. #APT #cybersecurity
A Chinese hacking group is stealing airline passenger details zdnet.com/article/a-chin…
Global experts in #cybersecurity & risk mitigation, @NCCsecurityUS & Gold Sponsors of the #xmasbabcsf share their research on how security decision-makers think #COVID19 will lead to increased organization cyber budgets. Read more below #SponsorLove
Organizations experienced a dramatic rise in multiple attack types, according to new research by NCC Group and Opinium. 69% of 500 security decision-makers surveyed think COVID-19 will lead to an increase in their cyber budgets. Learn more: newsroom.nccgroup.com/pressreleases/…
My @hardwear_io webinar "Sinking U-Boots with Depthcharge" is now on YouTube! In it, I... - Define"Security Debt" - Introduce SoC secure boot flows - Present my Depthcharge U-Boot hacking toolkit - Demo its use to perform a Sonos Symfonisk tethered root youtu.be/fTKMi3Is5x8
Our @NCCsecurityUS hardware and embedded devices security experts have conducted an ioXt audit of Google's Pixel 4/4XL and Pixel 4a. The public report is available to view here bit.ly/32a8U47
New @NCCsecurityUS Technical Advisory – Multiple HTML Injection Vulnerabilities in KaiOS Pre-installed Mobile Applications. We share details on the vulnerabilities, our recommendations and updates from the vendor with regards to fixes and updates. bit.ly/32nJBeP
New @NCCsecurityUS Technical Advisory – FreePBX – Multiple Authenticated SQL Injections in UCP application. Recommendation: Vendor has released updated cel and cdr modules addressing these vulnerabilities for FreePBX versions 13, 14, and 15. bit.ly/32jhfCF
New @NCCsecurityUS Technical Advisory – FreePBX – Multiple Authenticated SQL Injections in UCP application. Recommendation: Vendor has released updated cel and cdr modules addressing these vulnerabilities for FreePBX versions 13, 14, and 15. bit.ly/34spnDv
Today the @DCMS has issued an official call for evidence on the legislation that will mandate security requirements for consumer IoT devices. Our global CTO, @ollieatnccgroup, shares his thoughts on this crucial development for IoT security in the UK bit.ly/3fBj0jQ
Looking to get more out of your Third Party Risk Management Program? Be sure to register for our @NCCsecurityUS webinar, “Breaking Free From the Hamster Wheel of Third-Party Risk Management” tomorrow July 8 bit.ly/31WY9nd
Thank you very much @NCCsecurityUS for helping us improve @ZephyrIoT and working with Zephyr's PSIRT to make sure that all key vulnerabilities have been addressed prior to coming out of embargo. Product creators can register for future notifications at: zephyrproject.org/vulnerability-…
Research Paper: 26 vulnerabilities discovered in the Zephyr RTOS and MCUboot bootloader by Ilya Zhuravlev and @uffeux research.nccgroup.com/2020/05/26/res…
@NCCsecurityUS @uffeux 80 pages of quality. This is the stuff I want to read before starting my next research session. Thanks for sharing. 🎯
I am giving a webinar on June 17, 2020 and hope you can join me. #infosec
Is your #OTNetwork part of your security strategy? "Break" some social distancing rules and learn how to mitigate OT risk with IT & OT convergence in our June 17 webinar. Sign up: nccgroupus.lpages.co/061720webinar/
New NCC Group Whitepaper – A Tour of Curve 25519 in Erlang @NCCsecurityUS bit.ly/2VZZw02
Thanks to @NCCsecurityUS for including cloudseclist.com in the list of recommended resources to leverage to learn and stay up to date with AWS security!
New Blog post: "The Extended AWS Security Ramp-Up Guide" by Rami McCarthy (@ramimacisabird) research.nccgroup.com/2020/04/24/the…
New @NCCsecurityUS blog: Get FedRAMP right - the first time - We share our thoughts on the five steps an organization should take in order to ensure successful implementation of a FedRAMP program #infosec #infosecurity #cybersecurity bit.ly/2Y7JcwI
New NCC Group blog: The Zero Trust Model: Security inside and out @NCCsecurityUS @NCCGroupplc #infosec #informationsecurity #cybersecurity bit.ly/2zxgoDw
New blog by @tannerprynn on 'Code Patterns for API Authorization: Designing for Security' - helping you design and code secure software bit.ly/2znGFUW