Just put out this research on MiTM PaaS kits labeled Rockstar and Flowerstorm over the past few months. While my name is on this I partnered with two researchers, Josh Rawles and Jordon Olness who did a bulk of the work alongside @thepacketrat.net, and Colin Cowie who are all individually brilliant!
Excited to share that I was on the finale episode of Malspace to discuss Operation Crimson Palace, a year and a half long intrusion into a government agency located in Southeastern Asia, where we identified 3 PRC-aligned apt actors operating within the same environment simultaneously #cti #apt
I love posts like this one, sharing out easily translate-able methods, like the cc recipe for gen’ing ur own hashes
#PIVOTcon25 registration is now OPEN 🤟📥📥📥
pivotcon.org
#CTI #ThreatResearch #ThreatIntel
Please read carefully the whole 🧵 for the rules about invite -> registration (1/5)
Me when I saw the theatre showing The Fifth Element on a random Sunday night
My Microsoft BlueHat talk "Deprecating Azure AD Graph API is Easy and Other Lies We Tell Ourselves" is now on Youtube!
Link to recording & slide deck at aadinternals.com/talks/
Researchers say Twitter changed its algorithm to promote Elon Musk and Republican posts leading up to the election.
"The date at which [the spike] in engagement occurs coincides with Elon Musk's formal endorsement of Donald Trump on 13th July 2024." eprints.qut.edu.au/253211/
Check out my most recent talk on scaling threat hunting and threat intelligence at this years BlueHat! youtu.be/n7GVxDxwOUc?...
Here's why Adam thinks a Linux malware variant that recently turned up in Russia was probably developed by Western SIGINT. More details in this week's Risky Business podcast, available on YouTube (www.youtube.com/watch?v=s7iP...) or wherever you get your audio podcasts...
