Ram @Taitlex
Incident Response & Threat Intelligence @Atlassian New York, NY Joined December 2014-
Tweets6K
-
Followers265
-
Following485
-
Likes15K
Hacking Google with A.I. for $500,000 brutecat.com/r/hacking-goog…
NEW: malware developers added nuclear & biological weapons text to to their spyware. Goal? To trigger LLM safety refusals... so that their spyware wouldn't be analyzed by an AI security scanner. Cleanest practical example I can think of for why over-indexing on first order safety alignment is risky. When closed (and open) models ship with aggressive refusals, they will be sprinkled with second-order blindspots that attackers will discover...and exploit. We are only in the earliest days of attackers leveraging these features, and it wouldn't surprise me if users systems that need to handle complex cybersecurity issues demand that models be less safety-blunted. In the weeds: @SocketSecurity's post also shows why intention matters in how you design a malware analysis pipeline to avoid prompt manipulation. H/T to colleagues that shared this with me socket.dev/blog/mini-shai…
"Urgent Security Notice re: Your Sentry Organization" Someone tried to hack Sentry-using apps that use coding agents by 1. Sending a fake bug alert to their project (all you need is the app's public Data Source Name) 2. The fake bug tried tricking a coding agent trying to fix it into installing some a compromised NPM package 3. The compromised package would send the env contents of the machine to advisory-tracker[.]com/api/v1/telemetry This highlights a crucial thing for using agents in an automated way:
Leopold was so right
Confirming this. Per a summary I've seen, the EO has two sections, one for cybersecurity vis-a-vis AI and one for pre-release testing of frontier models. The second section will establish a voluntary process for AI developers to give the government 90 days of pre-release access.
New Robinhood phishing chain that's kinda beautiful: 1. Attacker creates an RH account using the Gmail dot trick of your email (same inbox, different address) 2. Sets device name to HTML 3. RH's "unrecognized activity" email renders the device name unsanitized (html injection) The result is a real email from [email protected], DKIM pass, SPF pass, DMARC pass, with a phishing CTA Just because it's real, doesn't mean it's safe... $HOOD
yesterday I reported on GitHub employee concerns about reliability and leadership, and then hours later GitHub suffered a catastrophic outage 😬 theverge.com/news/918001/gi…
Didn't think Github's reliability could get worse, and then they ship a bug that _randomly reverts previously merged commits_. Betting that this caused multiple serious production issues out there.
Honestly, I have never, never seen in my life an article that openly, without dissimulation, calls for two distinct judicial systems: one for upper races, another for lower.
According to the Washington Post Israel should not be investigated by the ICC because Hamas is “human shielding” and Israel is a democracy fighting barbarians. ICC is not for civilized colonial powers.
I am currently seeking an exceptional Security Incident Response Engineer to join our esteemed global security incident response team. This rare opportunity doesn't come around often. Join us in this exciting role! jobs.apple.com/en-us/details/…
Americans have no idea how difficult legal immigration is for "high-skilled immigrants". I have 4 degrees incl a PhD. Einstein visa. 250K salary at FAANG. Lived in this country since I was a teenager. I won't be able to obtain citizenship until middle age Guide for Intl PhDs🧵
If they’ve lied so blatantly in the middle of a European city with the entire political and media establishment’s consent - just imagine in Palestine
I keep hearing this, but is it really true? Can someone un-blur these center digits? (AE's basic "Fast Box Blur" set to 20, font: Arial Narrow Bold.)
@CDisillusion I always worry when I see blur because technically speaking, blur IS usually non-destructive
Ad industry is so fucked up they have become a national security issue lol
In absolute awe that this is the official website for Paint․NET Complete cancer covered in fake download button ads. Is this what the internet is like without an adblocker? The fact that Google allows these types of ads is insane. No wonder malware is so prevalent.
65 doctors, nurses, and paramedics told the New York Times what they saw in Gaza. What they saw was a pattern of children being shot in the head.
Adams allegedly liaised directly with a "senior" Turkish official, who organized "many straw donations" to Adams - as well as provided "free or discounted" travel on Turkish Airlines, taking Adams and his friends around the world, with free stays at "opulent hotels."
The Eric Adams indictment has now been unsealed - the first time in American history a sitting mayor has ever been formally accused of being an effective foreign agent. s3.documentcloud.org/documents/2517…
This is the high quality linguistics research the journals don't want you to see
Confluence DC/Server customers affected by CVE-2023-22515 should review new investigation findings from Microsoft in which they report evidence of threat actor activity as early as 14 September.
Microsoft has observed nation-state threat actor Storm-0062 exploiting CVE-2023-22515 in the wild since September 14, 2023. CVE-2023-22515 was disclosed on October 4, 2023. Storm-0062 is tracked by others as DarkShadow or Oro0lxy.
Microsoft has observed nation-state threat actor Storm-0062 exploiting CVE-2023-22515 in the wild since September 14, 2023. CVE-2023-22515 was disclosed on October 4, 2023. Storm-0062 is tracked by others as DarkShadow or Oro0lxy.
Apparently Mark Twain wrote about threat detection engineering and the problems with it, about 141 years ago. If you work in the field, this should be a mandatory reading: The McWilliamses And The Burglar Alarm. americanliterature.com/author/mark-tw…
Moshe Siman Tov Busta... @MosheTov
1K Followers 497 Following Security Research Team Lead @OX__Security Guitars @CompileBand 23x CVEs 3x Conference Talks
Alex Kan 🇭🇰🇩... @0xUltraviolence
959 Followers 2K Following Onchain @Artemis prev: cybernetics @ messari, meta | blocked by Nassim Taleb | (cypher)punk, (neo)vim maxi
Is Kulusevski Back? @IsKuluBack
657 Followers 3K Following 396 DAYS OUT DEJAN KULUSEVSKI WILL RETURN
lazarusholic @lazarusholic
2K Followers 817 Following a big fan of #LAZARUS. Everyday is https://t.co/BDseMuN8KV, 🇰🇵 #DPRK, #CTI
syscallr👀kie @syscallr00kie
3 Followers 1K Following
Kim Castro @KimCastro365
11 Followers 378 Following
Berk Albayrak @brkalbyrk7
1K Followers 2K Following Security Engineer @trendyol | TI | OSINT | Cybercrime | TA2AQX 📡
Tarantool Database @TarantoolDB
718 Followers 786 Following Follow us as we improve performance and simplify development with powerful #NoSQL #NewSQL #IIoT #ACIDTransactions #Innovation
Abdullah Talayhan @talayhan_a
1K Followers 939 Following Assistant Professor @CS_Bilkent. Previously, PhD @EPFL_en LASEC. Interested in cryptography.
1fe1se @1fe1se
6 Followers 141 Following
Harsh Thakur @hthakur6293
35 Followers 2K Following
@[email protected]... @1njection
8K Followers 4K Following Focused on hacking! Check out my new book on real-time computer conflict and deception below
ahmet kotan @ahmetcode
863 Followers 480 Following co-founder and cto @octoxlabs | cybersecurity solutions, software architecture
CUJO AI Labs @CujoaiLabs
449 Followers 941 Following CUJO AI Labs #IoT #Security #malware https://t.co/l3vstGR3RT https://t.co/Cnf0QIOr6a
Casperinous @Casperinous
677 Followers 540 Following
Bahzadxalaf @Bahzadxalaf2576
0 Followers 29 Following
Jurriaan Bremer @skier_t
4K Followers 509 Following @RecordedFuture, @hatching_io, @eb_CTF. Join us on our malware sandboxing cloud, https://t.co/52BGPxSrsH!
SEVGİ @tue42391079
420 Followers 1K Following ücret karşılğı güzel vakit geçirmek.istaynler beni tayablir
conancharlie @conancharlie
16 Followers 396 Following
Lise Chatel @LiseChatel
356 Followers 3K Following jeune fille sans enfants libre de toute relation et responsabilité
null @suspended_null
91 Followers 828 Following
Ferhat @yuzirneymbitmis
574 Followers 526 Following Mind is like a compiled program you’ve lost the source of. It works, but you don’t know why.
f(ekan)= @cakirefekan
50 Followers 790 Following
Cani @cd_carteblanche
84 Followers 752 Following I am not Can Divan, This is a parody account, not in any way affiliated with the human Can Divan
This Phone @ShrigleyDimond
964 Followers 5K Following
Back in Town @BusemDemirkol
21 Followers 366 Following
Çağdaş Devrim Kü�... @mak1938
1K Followers 6K Following BU Econ 97, Türkiyeli değil, Türküm! Ne Mutlu Türküm Diyene! Bir de Türk düşmanlarına Atatürk ve Emir Timur’u hatırlatmak istiyorum, çünkü o kan yine bu kandır!
İsmail B. @t4rkd3vilz
2K Followers 5K Following
Merter @merterhk
93 Followers 292 Following Ben aslında oto tamircisi olacaktım ama imkanımız yoktu, mühendis oldum.
Ebubekir Takashi @Nortuss
41 Followers 443 Following
Fularsız Entellik @imTolstoyevski
168K Followers 548 Following Halk için halka rağmen entellik. Kitap: https://t.co/78FpUIVFZk | Podcast: https://t.co/lLov9atKxV | Bonus: https://t.co/56INXbqv2q |
LiveOverflow 🔴 @LiveOverflow
160K Followers 1K Following wannabe hacker... he/him 🌱 grow your hacking skills @hextreeio
skull @brutecat
8K Followers 375 Following hacker, security researcher. 21. i run a blog @ https://t.co/cBW6gzTpV2
John Scott-Railton @jsrailton
165K Followers 3K Following Chasing digital badness. Sr. Researcher @citizenlab @UofT @munkschool. Fmr.Ed. @SecPlanner. Tweets mine. Other platforms @jsrailton too.
Chungking Archive @chungking151994
49K Followers 70 Following I share links for films in (mostly) high quality. Not taking requests for now at least. Thanks! Films with subtitles lover.
solst/ICE of Astarte @IceSolst
31K Followers 2K Following Voidweaver @AstarteSecurity - Pentester turned seceng turned meeting canceller - meetup https://t.co/E4rlINC0U6 - conf tracker https://t.co/tReNhuhANF
Perly 🦈 @_Shark_byte
1K Followers 980 Following security @tryramp | Investing @alya_capital | prev @getunuvo
Summercon @SummerC0n
4K Followers 61 Following We're America's longest running security conference. Summercon 2026 is July 10-11. Tip your bartender.
BSides Pyongyang @BSidesPyongyang
1K Followers 705 Following 🇰🇵 #BSidesPyongyang2026 : Nov 18 2026 (Missile Industry Day) @ Lazarus HQ Pyongyang & Live Stream | 31st anniversary 🎂 https://t.co/gb9sDPJC8X
Steve Newman @snewmanpv
5K Followers 84 Following Co-founder of Writely (aka Google Docs) and 7 other startups. Now at the Golden Gate Institute for AI, working to bring AI’s toughest questions into focus.
Moshe Siman Tov Busta... @MosheTov
1K Followers 497 Following Security Research Team Lead @OX__Security Guitars @CompileBand 23x CVEs 3x Conference Talks
chrisrohlf @chrisrohlf
11K Followers 926 Following Waging algorithmic warfare since 2003. Engineer, Researcher. MTS @ Anthropic, Non-Resident Research Fellow @CSETGeorgetown CyberAI
Jeremy Kirk @Jeremy_Kirk
14K Followers 7K Following Threat intel @Okta. Personal account. Interests: AI, cyber threat intelligence, cybercrime, data breaches, OSINT.
Security BSides @SecurityBSides
57K Followers 874 Following Building communities one event at a time. Thirteen years, over eight hundred events, and we're just getting started. @[email protected]
The HOPE Conference �... @hopeconf
17K Followers 342 Following Hackers On Planet Earth - New York City, USA - New Yorker Hotel - August 14-16 2026 🗝💻📻☎️ 🐘:@[email protected] • 🦋:@hope.net • ig/threads:hopeconf
@[email protected]... @2600
52K Followers 5 Following The Hacker Quarterly Bluesky: @2600.com Mastodon: @[email protected]
Alex Kan 🇭🇰🇩... @0xUltraviolence
959 Followers 2K Following Onchain @Artemis prev: cybernetics @ messari, meta | blocked by Nassim Taleb | (cypher)punk, (neo)vim maxi
ReliaQuest Threat Res... @ReliaQuestTR
8K Followers 2K Following
Will @BushidoToken
38K Followers 3K Following Senior Threat Intel Advisor @TeamCymru | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | Co-founder @BSidesBournemth | @darknetdiaries #126: REvil
Brad Spengler @spendergrsec
7K Followers 4 Following President of @opensrcsec, developer of @grsecurity Personal account
billy leonard @billyleonard
5K Followers 707 Following pogue life. sec @ A\, fmr @Google TAG, Global Head of Analysis of State Sponsored Hacking And Threats.
lazarusholic @lazarusholic
2K Followers 817 Following a big fan of #LAZARUS. Everyday is https://t.co/BDseMuN8KV, 🇰🇵 #DPRK, #CTI
Austin Larsen @AustinLarsen_
2K Followers 1K Following Principal Analyst - Google Threat Intelligence Group Rapid response and investigations into significant cyber events.
IntelOps @IntelOpsV3
6K Followers 58 Following The internet holds vast secrets for those who know how to look A darkweb forum for security researchers
John Hultquist @JohnHultquist
30K Followers 1K Following Chief Analyst, Google Threat Intelligence Group. @CYBERWARCON and @SLEUTHCON founder. Johns Hopkins professor. Army vet.
DefSecSentinel @DefSecSentinel
2K Followers 1K Following 179CPT Cyber Operations Technician 170A @MOARNG
Mirai @gOPwbi7qqtWeD9o
112K Followers 444 Following
Nassim Nicholas Taleb @nntaleb
1.2M Followers 2K Following Flaneur: probability (philosophy), probability (mathematics), probability (real life),Phoenician wine, deadlifts & dead languages. Greco-Levantine.Canaan. #RWRI
Dark Web Informer @DarkWebInformer
217K Followers 76 Following One guy. Global cybercrime. Tracked so you don't have to. Ransomware, data breaches, dark web activity, darknet markets, IOCs & emerging threats. Stay informed!
vxdb @vxdb
25K Followers 489 Following Journalist | Cybercrime News | Staff @vxunderground | PGP - https://t.co/VWwniNXrEc
Zach Dorfman @zachsdorfman
19K Followers 4K Following National Security Reporter. Words in Foreign Policy, Politico, Axios, Yahoo News, the Atlantic, Rolling Stone and more. Email: [email protected]
Scott Hanselman 🌮 @shanselman
332K Followers 10K Following VP, Member of Technical Staff @ MSFT/GitHub - Code, OSS, STEM, Beyoncé, T1D, #DevRel YouTube/TikTok and listen to the @Hanselminutes tech podcast
Adem (亚德姆) @deep_hand
198 Followers 207 Following Software development cat @Google working on @GoogleChrome. Previously @Amazon, @BilkentUniv, @NUSingapore & @fenLisesi. 🗣:🇹🇷🇬🇧🇩🇪🇳🇱🇨🇳🇫🇷💻
Mustafa Suleyman @mustafasuleyman
567K Followers 495 Following CEO, @MicrosoftAI | Author: The Coming Wave | Past: Co-founder, @InflectionAI & @GoogleDeepMind
John Carmack @ID_AA_Carmack
2.2M Followers 286 Following AGI at Keen Technologies, former CTO Oculus VR, Founder Id Software and Armadillo Aerospace
John Burn-Murdoch @jburnmurdoch
476K Followers 6K Following Columnist and chief data reporter @FinancialTimes | Stories, stats & scatterplots | Senior fellow @LSEdataScience | [email protected]
Paul Graham @paulg
3.3M Followers 791 Following
Maddie Stone @maddiestone
62K Followers 796 Following Security Researcher. Previously Google Project Zero and TAG | 0days all day. Love all things bytes, assembly, and glitter. she/her.
Robert Graham @robertgraham
68K Followers 2K Following Created (BlackICE,IPS,sidejacking,masscan). Doing (blog,code,cyber-rights,Internet-scanning). Macrodata refiner.
Scott Piper @0xdabbad00
20K Followers 253 Following Cloud security historian Developed https://t.co/ZXFwkuyseC, CloudMapper, and Parliament Organizer for @fwdcloudsec Researcher at @wiz_io
Daniel Grzelak @dagrz
3K Followers 2K Following Super Serious Internet Guy™️ Founder of Milo Twitter. Peak Milo. At the intersection of cyber security, Milo, and stonks. Chief Innovation Officer @ Plerion.
Classical Studies Mem... @CSMFHT
466K Followers 1K Following Memes and humorous content around Ancient Greece🏺, Rome 🗡️and more - plus plenty of stuff to learn as well! Come for the jokes and expand your world!
Royal Hansen @royalhansen
9K Followers 1K Following Vice President, Engineering, Google - Privacy, Safety, Security: Posts on InfoSec, Privacy, Data, AI, Counter Abuse and random stuff from life in CA; Tweets=own
Adel Ka @0x4D31
4K Followers 2K Following D&R Security Lead @perplexity_ai | ex-{OpenAI, Google}. views are my own!You might like
