I watch Heated Rivalry for the Russian dialogue, okay? 🏒

Leftovers sandwich 😌

What are they up to at Matt's in the Market in Seattle? 👀

Currently backed myself into a corner by ignoring my own advice: When researching vulns in a cloud service, learn how the service works BEFORE you start hunting. Do it in the reverse order and you’ll end up with a vuln you can’t tie to real impact, because you never learned how harm could occur.

ICYMI: @sentinelone.com released a new Synapse power-up for Validin giving analysts faster pivots across DNS history, certs, WHOIS + web content to reveal hidden related infrastructure. Get the full story here: www.sentinelone.com/labs/threat-...

You can now convert your Notion pages and databases to durable, private, local files. Your data, offline, forever, for free.

i don't know why we wouldn't just have a big meal on thursday and take friday off, every week

Well, I've finally installed the Partiful app. Reached critical mass of events to prepare for in a short period (admittedly a good problem to have) 🫨

If the talks at @cyberwarcon.bsky.social today are any indication, while you may think threat actor adoption of generative AI improves sophistication and eliminates telling mistakes in phishing and info ops, that future is not evenly distributed!

Kabob Palace is the move 🤤

HOLY SHIT. Unusual Whales has been mentioned BY NAME in the US Congressional hearing on getting US Congress banned from stock trading. "Get on that Unusual Whales site...this is pathetic folks, we all know what is going on [on stock trading]" Said by Rep Tim Burchett!

A former Russian military cartographer told Mediazona that Moscow’s battlefield maps are often grossly inaccurate. He also compared the Russian army to the Third Reich, saying many soldiers know the war in Ukraine is “criminal and unwinnable.” meduza.io/en/feature/2...

Great talk by @pylos.co on possible futures for Volt Typhoon and why the cluster's strategic goal means the activity will evolve and at times be disrupted but not stop any time soon

Now I can say I've seen a DPRK IT Worker (recorded) on a video call, thanks to Caleb Marquis and Eric Kerr! Next up is @pylos.co on Volt Typhoon.

Kicked off @cyberwarcon.bsky.social with @dmitri.silverado.org apologizing for 15yrs of threat actor naming chaos and proposing a new scheme, and plenty of Russia-related content (with top-tier memes)

Watching @bsidespyongyang.bsky.social on the way to @cyberwarcon.bsky.social twitch.tv/BSidesPyongy...

Fix me, brisket pho 🍲

we gotta start calling people pipsqueaks again

Just finished the season, there was more than good music 👍

There's an open role for a Staff CTI Analyst on my team here @huntress.com 📢💫 ✨Do you love doing correlations between different incidents, sometimes digging into them, or doing malware analysis? ✨Do you like doing data analysis, and using this to make threat reports? 👇

As we head into roast/full bird/etc season in the northern hemisphere, remember at min an instant read thermometer is your best friend

October delivered AI agents, time mastery, and purple team curveballs. From scaling hunts like code to aligning GRC with threat-informed defense, this month’s Dispatch lineup from @thorcollective.bsky.social hit every layer of the stack. Full recap here: dispatch.thorcollective.com/p/dispatch-d...

Jetlagged 😴

New Blog! Lessons from the BlackBasta Ransomware Attack on Capita When a company that manages data for millions of UK citizens falls victim to ransomware, the whole industry should pay attention to it. 📝 blog.bushidotoken.net/2025/10/less...

If your protest privacy/security advice does not start with a discussion of threat models, it is probably not good advice.

Finally a convincing use case for the blockchain: bulletproof hosting.

House of Guinness so far: there's Fontaines D.C. and Kneecap!

Satellite analysis by Bellingcat found that wildfires destroyed over a third of Namibia’s most visited wildlife reserve last month, impacting crucial grazing lands for endangered species, including black rhinos and elephants. www.bellingcat.com/news/2025/10...

Just updated my vault template to show how I use the new Maps feature for Obsidian Bases. Super useful for travel planning.

a-ha are actually underrated

One must imagine Sisyphus cracking open a cold one

Is there a generic term for "mouse jigglers" and apps like Caffeine? Apps that keep systems from locking, sleeping, or that simulate normal activity. Keepalives? Mouse movers? There has to be something more succinct. 🤔

Got kids who want a friendly introduction to Python? Get them to check out learnpy.dev, an interactive, web-based introduction to coding in Python. I built it for my 9 & 11 year-olds... maybe it'll be useful for others?

When the overnight low slips to 49

CYBERWARCON is coming!!! Registration and CFP are now open for this year's #CYBERWARCON! This year's keynote speaker will be @dmitri.silverado.org!! We are back in Arlington, VA this year on November 19th. www.cyberwarcon.com

Russia’s postal service joins others worldwide in halting parcel delivery to the U.S. after Trump ends the de minimis duty-free rule. For nearly 90 years, the exemption has allowed packages valued below a rising set threshold (raised to $800 in 2015) to enter duty-free. Not after Friday.

🚨NEW🚨 Russia is mandating a new VK messaging app called Max. We had some researchers take a look and—surprise, surprise—it's tracking basically everything users do. “This app just gathers all the data and logs it. I don’t remember seeing that in any messenger app." www.forbes.com/sites/thomas...

Sources & Methods #CTI newsletter issue 25 is out with more articles, tools, and conferences for you 📨 sourcesmethods.com/sources-meth...

Supreme Leader needs IT workers like you! Apply today!

Starting an exciting new chapter as a Threat Intelligence Engineer at Remitly. 🎉 Stoked about the new team and opportunity to protect a service that's vital for many people around the world.

The only foolproof way to avoid getting arrested at the Russian border is not to go. Still, over 20,000 people from E.U. countries have made the trip this year anyway. If you’re determined to join them, at least read this first. meduza.io/en/cards/jew...

“Most people know what they’re getting into,” she said of the hike to the inn along state park access roads/trails. “There just is something really old-fashioned about that ... I continue to be blown away by the amount of enthusiasm and happiness.” via @sfgate.com www.sfgate.com/food/article...

🍎 machofile 🍏 first official release is finally live: github.com/pstirparo/ma... It is a python module to parse #Mach-O binary files, with a focus on malware analysis and reverse engineering. machofile is self-contained. #macho #ios #reverseengineering #detection #threathunting #threatintel 1/3

EFF fights surveillance…and we do so in 14 languages in our educational resource, Surveillance Self-Defense.