Menu 

Part 1: Tweet Storm: The Best InfoSec Tweets of July

Part 1: Tweet Storm: The Best InfoSec Tweets of July

Twitter is simply the best place to get #infosec news, gossip, rumors, and updates. Much of the community is alive, well and active on Twitter and, so am I under the handle @hackerhiker (because.. erm.. I hack and I hike). Many people I have spoken to tell me that Twitter is nothing but a wasteland of trolling, sh** posting, partisan rants, and (alleged) Russian bots. Frankly, I think they’d rather get a root canal! Fear not, gentle reader! I wade through the Twitter cesspool so you don’t have to and will present monthly my favorite InfoSec Tweets of the month.

 

Twitter Community Delivers for WISP

Lead by Social Engineering extraordinaire @racheltobec, WISP (Women in Security and Privacy) was able to raise enough money via Twitter to send 57 women to DEFCON that wouldn’t have been able to go otherwise. I’ve been a huge advocate of diversity in the tech space and I think the reason are clear: To understand different threats and risks, we must have different viewpoints. Bluntly, this means that the security community needs to evolve beyond the world of Caucasian neck-beards. I am thrilled that @WISP has put this effort together and congrats to the 57 scholarship winners!

Intrinium CEO on Cerner Podcast

I was thrilled to listen to Intrinium’s own @Nolan_Garrett was an invited guest on the Cerner podcast to talk about Incident Response and all the work we’ve been doing to secure hospitals in the US. 

Failing the OSCP

To me, the OSCP is an excellent benchmark cert that separates a hacker from a person who runs a vuln scanner. The trouble? The test is HARD. It’s taken 24 hours straight and you are given a network to pwn. Many, many people fail the first time they attempt (myself included). Twitter user @pink_panther gives an account of taking (and failing) the OSCP  is like and how you can #TryHarder.

Applied the patch, closing ticket

’nuff said…. 

Microsoft: Midterm Election Hacking Underway

At the Aspen Security Forum, Microsoft’s Tom Burt, VP of Security, revealed that Microsoft has stopped three attacks against Congressional candidates so far this year.

Krebs on the Cyberinsurance Lawsuit

Information Security Journalist Brian Krebs released an article detailing the ongoing lawsuit between The National Bank of Blacksburg and Everest National Insurance Company. The lawsuit alleges that the insurance company is denying a claim after a series of hacking attempts lead to a loss of $2.4M. The reason? The insurer claims that even though the attack originated as a cyberattack, the attackers used the bank’s debit card system to create phony cards and physically withdraw the funds from an ATM, instead of stealing electronically. It will be fascinating to watch and see how this lawsuit affects future cyber insurance claims. Much like the previous article, this hack started with an email phishing attack.

Becoming a Juggalo to defeat security

Security and Privacy researcher TAHKION made the earth-shattering (ok mostly hilarious) discovery that using Insane Clown Posse inspired “Juggalo” make up, facial recognition systems can be fooled.

#(Bad)DefconAdvice

With Defcon 26 just around the corner, the hacker community is up to it’s usual “Defcon is canceled” shenanigans (but seriously, RIP Defcon ). Upping the ante, many people took to Twitter to share their terrible Defcon advice.

Here are a couple of the gems:

How to keep your phone safe…

As Marcus Hutchins, the arrested hero of the WannaCry attack continues to sit in Las Vegas under house arrest…

The storm continues…. Best of July, Part 2

Submit a Comment

Pin It on Pinterest

Share This