security_dumpster @securitydumpstr
303: @ https://t.co/I4aYuNOKKY Life long snowboarder and opportunist threat hunter | my views are my own Joined July 2023-
Tweets73
-
Followers150
-
Following340
-
Likes158
Sophos analysts are investigating a new infection chain for the GOLD BLADE cybercriminal group’s custom RedLoader malware, which initiates command and control (C2) communications.
Sophos MDR has observed 2 distinct social engineering campaigns using a technique referred to as ClickFix spiking during March. Both of these campaigns—one surging on 2 March & the other 12 March—attempted to deploy SecTopRAT malware. We are tracking this activity as STAC6380./1
In November, Sophos MDR noted a rapid decline in detections for the Rockstar2FA phishing as a service platform. Its rise was documented in a report by Trustwave on November 26. /1 trustwave.com/en-us/resource…
Just put out this research on MiTM PaaS kits Rockstar/ FlowerStorm. While my name is on this, the primary researchers Josh Rawles (@ig3thack3d4u ) and Jordon Olness deserve the lions share of credit. They’re both brilliant to work with and hats off to them news.sophos.com/en-us/2024/12/…
Me when I saw the theatre showing The Fifth Element on a random Sunday night
My (and my copresenter Colin Cowie) @MSFTBlueHat talk “Patterns in the Shadows: Scaling Threat Hunting and Intelligence for the Modern Adversary” is on YouTube, hope you enjoy! youtu.be/n7GVxDxwOUc?fe…
My @MSFTBlueHat talk "Deprecating Azure AD Graph API is Easy and Other Lies We Tell Ourselves" is now on Youtube! Link to recording & slide deck at aadinternals.com/talks/
🔥 New from @philofishal , @syrion89 and @TomHegel: 🇰🇵 BlueNoroff Hidden Risk | Threat Actor Targets Macs with Fake Crypto News and Novel Persistence sentinelone.com/labs/bluenorof…
"China’s ‘mind-boggling’ space capabilities worry US, says Space Force chief Beijing’s tech is more concerning than reports of Russian space nukes, said General B. Chance Saltzman." 1/ politico.eu/article/china-…
Hey :) We published a blog talking about ORB networks and a summarise of the purpose, use cases and more: team-cymru.com/post/an-introd… This blog is also a teaser for more blogs to come 👀 @teamcymru_S2
This has been one of my favorites for a while, but now it's time to let it go. Here's my preferred way of getting the KeePass db that we often hunt for: downgrade the executable to version 2.53, use CVE-2023-24055 and wait for the busy admin to trigger the dump of the database.…
Sophos detailed to me its 5-year cat-and-mouse game with Chinese hackers repeatedly exploiting its firewalls. The company resorted to installing spy "implants" on devices the hackers were testing on—tracing them to a university and contractor in Chengdu. wired.com/story/sophos-c…
Recent trick related to .RDP files used by the SVR 🇷🇺 is worth threat hunting for. Basically they’re doing what this @BHinfoSecurity blog demoed in 2022: blackhillsinfosec.com/rogue-rdp-revi… Reports: 1. cert.gov.ua/article/6281076 2. aws.amazon.com/blogs/security… 3. microsoft.com/en-us/security…
OK, I promise to stop spamming about relays with NTLM/Kerberos 😅. But if you're a member of the Distributed COM or Performance Log group, these juicy CLSIDs let you trigger remotely machine authentication of any computer, including DCs, and relay DCOM -> HTTP, SMB… 👇
Great approach’s lined out👇, highly recommend the read
Great approach’s lined out👇, highly recommend the read
🚨 ITW Zero-Day Vulnerability Discovery: #APT37 (#Scarcruft) 🚨 For Responsible Disclosure, we disclose relevant details at this time: Unmasking CVE-2024-38178 The Silent Threat of Windows Scripting Engine 🔗 medium.com/s2wblog/unmask… 🔍 Key findings: - The attack used a freeware…
My DEF CON 32 talk "Behind Enemy Lines: Engaging and Disrupting Ransomware Web Panels" is up on YouTube! youtube.com/watch?v=T5K4AB…
📣SPEAKER ANNOUNCEMENT📣 We're excited to announce our next #BlueHat speakers: Mark Parsons (@securitydumpstr) and Colin Cowie from Sophos. They will be presenting a talk titled “Patterns in the Shadows: Scaling Threat Hunting and Intelligence for Modern Adversaries.” Mark is a…
The calendar for the Fall/Winter Virtual Research Workshop Series is out: eccri.eu/eccri-virtual-…
Helene Rodriguez @HeleneRodr52612
53 Followers 3K Following
ConstanceEvan @r4fA6et4Zl7dC2
6 Followers 630 Following
Tyrel Roberts @RobertsTyr20393
83 Followers 4K Following
Pearline Bartoletti @PearlineBa94646
42 Followers 3K Following
Bryce McDonald @Moses_876
69 Followers 667 Following
NotThing @Merisnotreal
19 Followers 521 Following
smthdfirent @smthdfirent
57 Followers 1K Following
spider @LulleLullu63135
133 Followers 3K Following
Pack @jkopacko
361 Followers 380 Following cybersec mcnulty // opinions are my own // yinzer ➡️ yall
Kkkkkk @qbdux
2 Followers 1K Following
Robert McMillan @bobmcmillan
13K Followers 2K Following Reporter with the Wall Street Journal. BIO: https://t.co/olLOnHuYs2 Host of Hack Me if You Can https://t.co/vEoVoRbwTv
Peter Schawacker @PeterSchawacker
1K Followers 7K Following Cyber Business Innovator & Strategist | CISO | AI | GRC & SOC | DFIR/TTX | SecOps | Drive Margin | Nearshoring | LATAM-USA | Emerging Markets | GTM Advisor
McMewthe @McMewtheGogdSf
25 Followers 376 Following
Rez0d @rez0d
18 Followers 244 Following Network and Information Security Professional | USAF Veteran
Parth Parmar @Parth97531
147 Followers 747 Following 🇮🇳 | OSCP | Alumni @UofMaryland | Volunteer @NullAhm | Internaut (Opinions are my own)
GzobraJn @gzobraJn
65 Followers 406 Following World of today, sciences and people. DFIR / Threat Intel on a daily basis. Music and books as often as possible. Opinions are my own. RTs are not endorsements.
ThiccFinger @Chris28969289
1 Followers 46 Following
Chris Duggan @TLP_R3D
7K Followers 3K Following Head of Threat Informed Defence for a FSTE 100 | Malware Geek | Curated Intel Member | Threat Intelligence Expert Extraordinaire
Andrew Mansell @ajmansell
104 Followers 938 Following Father, Brother, Nerd, Hipster, Photographer, Video/Board gamer, Bilingual, Dad joker kinda guy
Artemis Calvi @CyberHunterGal
29 Followers 137 Following Your Cyber Gal is Hunting Your Next Top Talent!
Thomas Hutchison @wanderinghacker
307 Followers 546 Following Security Engineer ❤+💙=😈 Will travel the world for the beautiful game💚💙Opinions are my own.
Malus Necessarium @NelsonKauley
12 Followers 43 Following Breaker of things. SecOps shenanigans. SPACE PIRACY. Opinions expressed are my own.
Nitesh Surana @_niteshsurana
689 Followers 1K Following Cloud Research w/ Trend Micro | Opinions/retweets are personal reflections | Metalhead | If you can, be kind.
Tim McGuffin @NotMedic
6K Followers 2K Following Back to Red Teaming. Risk Hunter. DEFCON Staff & CFP Board. MS in DF. Fmr Fire/EMS. Red and Blue. Builder. Morally Flexible. https://t.co/zakkIXeyHu @ bluesky
Ryan Smith 🇨🇦 @cybermarm0t
421 Followers 1K Following I help make the world a more secure place - Security Reasearcher @msftsecurity - @BSidesVI - Youth Sports Board Member x 2 - Views are 100% mine - he/him
Andrew McCallum @atr8472
726 Followers 6K Following
Microsoft BlueHat @MSFTBlueHat
5K Followers 203 Following BlueHat is where the security research community and @Microsoft security pros come together as peers, to connect, share and learn. Run by @MSFTSecResponse
Ben Verschaeren @0xBennyV
425 Followers 2K Following Information Security Specialist | Works @ SOPHOS | Python Connoisseur | Go Admirer | Cycling Aficionado
Christian Huhn @chrhuhn
14 Followers 270 Following
Judy @judy_downing_
288 Followers 3K Following
Mr. The Plague @dkmy_h4x0r
94 Followers 627 Following 👨💻 Just a dude appreciating the beauty of the baud. 🔍 Hacker by curiosity. #HackThePlanet
PC @pchobbit
1K Followers 2K Following Talos Incident Response global leader by day - former CISO, Risk Management, etc. Gamer, RPG. travel enthusiast by night -The views expressed are my own
KellyKane @KellyKane
1K Followers 2K Following Security geek, avid sentence finisher, lover of comedy and dogs. Tweets reflect my views, not those of my employer yada yada.
Andrew Pease @andythevariable
1K Followers 291 Following Elastic Security Labs Technical Lead. Lawful Neutral. Threat Hunting with the Elastic Stack author. Retired CW4.
James W. @cyberbiz4
169 Followers 4K Following looking for a cyber position in blue team. Metro Vancouver, Canada. Defender, GIAC x 3, AWS, M365, Splunk, Azure
skrappy0x4a @skrappy0x4a
449 Followers 2K Following Lead on Cyber Defense | GWOT | Dad | НОРД | 🏍🦑 | ◧◧◧ | 🌲
xyzzy @0xmap
15 Followers 1K Following
Super Sheep (@qutluch... @Qutluch
452 Followers 3K Following When these frail shadows we inhabit now have quit the stage, we'll meet and raise a glass again together in Valhalla.
dexter @dexter79331247
0 Followers 2K Following
Deep Web Konek @deepwebkonek
4K Followers 226 Following Philippine based cybersecurity advocacy group specializing in monitoring and addressing threats from the deep web and dark web.
ᴘᴏᴘᴇ ★☆�... @BlesstheInfoSec
793 Followers 802 Following Zeek and Suri things @corelight_inc, a11y things @PopeTechA11y - help where I can with @SAINTCON, @BSidesSLC, @sec_defcon, @defcon435, and @BlackHatEvents NOC
Secure Chicken 🐣 @securechicken
453 Followers 85 Following Rural cybersecurity practitioner and seasoned brewer. Opinions are my own, I work @HarfangLab (former GREAT, CISO and FR Gov).
John Althouse @4A4133
3K Followers 221 Following Founder & CTO at FoxIO Inventor of the JA4+ network fingerprinting suite. Also, JA3/S (TLS) HASSH (SSH) CYU (QUIC) JARM (TLS Servers)
Andrew Côté @Andercot
105K Followers 1K Following engineering physicist. writes about deep tech, energy, physics, sci-fi and whatever. founder @hyperstition_x
Peter Klapwijk | MVP @inthecloud_247
5K Followers 280 Following Microsoft MVP Security (Intune) & Windows and devices - Senior Modern workplace Consultant at @Wortell - Blogger @ https://t.co/njG1N4cFj3 #MVPBuzz #MsIntune
JD Work @HostileSpectrum
9K Followers 1K Following Former intel, now academic @NDU_CIC, @TheKrulakCenter, @SIWPSColumbia @ColumbiaSIPA, @CyberStatecraft, @ElliottSchoolGW, @PAISWarwick. Apolitical, views=own
Cyber Statecraft @CyberStatecraft
9K Followers 171 Following Official account of the @AtlanticCouncil's Cyber Statecraft Initiative. Working at the nexus of geopolitics & nat sec with cyber. RT≠Endorsement
Felix Bilstein @fxb_b
291 Followers 546 Following Security Researcher | YARA-Rules for @malpedia using YARA-Signator
Kandji @KandjiOfficial
2K Followers 45 Following Kandji’s unified platform brings together everything your team needs to empower secure and productive work on Apple devices.
CD-R0M @CD_R0M_
1K Followers 1K Following IR @Mandiant | Interested in #DFIR and #ThreatIntel | Tweets attributable to me and not my employer
Steve Stone @stonepwn3000
1K Followers 455 Following @sentinelone | Fmr. @Mandiant, @IBM, @rubrik, USG | TV/VCR repair, views are my own. Also [email protected]/stonepwn3000.bsky
RooCon @RooCon_AU
350 Followers 0 Following RooCon, a free conference on cyber threat intelligence & attribution, is happening in Sydney on 5-6 November 2025.
Drunk Binary @DrunkBinary
12K Followers 3K Following Principal Adversary Hunter @dragosinc, Army Veteran (3rd ACR, 1/10CAV, CYBERCOM), Cocktail Scientist, Threat Researcher/Analyst | #FSD
Matt Anderson @nosecurething
2K Followers 1K Following Staff Detection Engineer @HuntressLabs Threat Research | Threat Hunting | Malware Analysis
MalwareHunterTeam @malwrhunterteam
244K Followers 38 Following Official MHT Twitter account. Check out ID Ransomware (created by @demonslay335). More photos & gifs, less malware.
Félix Aimé @felixaime
6K Followers 2K Following Threat Intel. stakhanovite ⛏️ and proud dad. Former @Kaspersky & @CERT_FR. Principal CTI researcher at @sekoia_io, focused on state-sponsored / hybrid stuff.
Winnona 💾 @__winn
4K Followers 2K Following @DistrictCon Founder. Harvard-Georgetown MPP/JD, @CyberStatecraft / @BelferCenter researcher, ex-Google RE / threat research. https://t.co/MJHKl7Myic 👩🏻💻
Artemis Calvi @CyberHunterGal
29 Followers 137 Following Your Cyber Gal is Hunting Your Next Top Talent!
Hexacon @hexacon_fr
5K Followers 1 Following Offensive security conference in the heart of Paris. 10-11th October 2025 Join our Discord server! https://t.co/Btl15G8LsI
Thomas Hutchison @wanderinghacker
307 Followers 546 Following Security Engineer ❤+💙=😈 Will travel the world for the beautiful game💚💙Opinions are my own.
John Scott-Railton @jsrailton
162K Followers 2K Following Chasing digital badness. Sr. Researcher @citizenlab @UofT @munkschool. Fmr.Ed. @SecPlanner. Tweets mine. Other platforms @jsrailton too.
James Forshaw @tiraniddo
49K Followers 339 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
David B. Cross 🇺�... @MrDBCross
2K Followers 341 Following #Cloud #Security Engineering leader with all tweets & opinions being my own. Ex-MSFT, Google and now CISO for Oracle SaaS Cloud Security #USNavy #veteran he/him
Svetlana Gaivoronski @SadieSv
1K Followers 180 Following Security researcher/ Windows Azure Security Team/ Compromise Investigation Services/. Views are mine.
Michael.Gorelik @smgoreli
1K Followers 322 Following CTO at Morphisec, CISSP, GitHub - https://t.co/JlYOhDEG5c
Malus Necessarium @NelsonKauley
12 Followers 43 Following Breaker of things. SecOps shenanigans. SPACE PIRACY. Opinions expressed are my own.
Nitesh Surana @_niteshsurana
689 Followers 1K Following Cloud Research w/ Trend Micro | Opinions/retweets are personal reflections | Metalhead | If you can, be kind.
Rachel G @soul_crusher86
270 Followers 46 Following something something threat intel....blah blah cyber security...probably gave that one talk that one time
Miriam Wiesner @MiriamXyra
4K Followers 764 Following Security Research PM at @Microsoft, Passionate about #hacking, #security and #powershell, tweets are my own | @[email protected]
Tom Gallagher @secbughunter
2K Followers 200 Following Vice President of Engineering, Microsoft Security Response Center (MSRC)
Tim McGuffin @NotMedic
6K Followers 2K Following Back to Red Teaming. Risk Hunter. DEFCON Staff & CFP Board. MS in DF. Fmr Fire/EMS. Red and Blue. Builder. Morally Flexible. https://t.co/zakkIXeyHu @ bluesky
Fox_threatintel @banthisguy9349
14K Followers 261 Following Just a person who is against cyber crime and dictators like Putin
Dark Web Informer @DarkWebInformer
129K Followers 60 Following Providing Cyber Threat Intelligence from the Dark Web & Clearnet: Breaches, Ransomware, Darknet Markets, Threat Alerts & more. https://t.co/Fi7VW9lg94
Lindsay Kaye @TheQueenofELF
1K Followers 270 Following VP of Threat Intelligence @SecurewithHUMAN | Reverse Engineer | Conference Speaker | Ransomware Columnist
Katie Knowles @_sigil
2K Followers 303 Following Senior Security Researcher @ Datadog. 🐕 Head in the (Azure) clouds. Sometimes blogging, always curious. Aim to be, rather than to seem.
Bear Market Brief @BearMarketBrief
8K Followers 343 Following Russia's economy and politics. In brief. An @FPRI newsletter and podcast series. Sign up today! https://t.co/2jctxvBy1D
Eric Woodruff | MVP |... @ericonidentity
2K Followers 712 Following Security researcher @SemperisTech. Microsoft Security MVP, Entra nerd. Part-time hiker, full-time dad and partner. Opinions expressed are from my cat.
CHA Minseok(Jacky) @mstoned7
3K Followers 5K Following CHA is my family name. Senior Principal Threat Intelligence Researcher at AhnLab / Keybase : mstoned7 , Signal : mstoned7.21 / Tweets are my own.
Justin Ibarra @br0k3ns0und
2K Followers 917 Following Tech Lead, security intel @elastic @elasticseclabs via @endgameinc | security research | detection engineering | bench press: 455lbs & 📈 | I like my own tweets
Sam Bent @DoingFedTime
11K Followers 383 Following Journalist | OSINT & OPSEC Specialist | Darknet Expert (Ex Vendor & DNM Admin) | DEFCON/SANS Speaker | Youtuber | Social Engineer | Author | ParalegalTrends for United States
You might like
