Bryan Nolen
@bryannolen.bsky.social
Also found at infosec.exchange/@BryanNolen.
Previously but not recently twitter.com/@BryanNolen
Previously but not recently twitter.com/@BryanNolen
Reposted by Bryan Nolen
Cybersecurity was always political.
You can't escape effects on defense, intelligence, and even the increasingly flooded industry job market by closing your eyes really hard and sticking your fingers in your ears. You can't escape cybersecurity being political by being, "not really into politics".
You can't escape effects on defense, intelligence, and even the increasingly flooded industry job market by closing your eyes really hard and sticking your fingers in your ears. You can't escape cybersecurity being political by being, "not really into politics".
October 15, 2025 at 9:44 PM
Cybersecurity was always political.
You can't escape effects on defense, intelligence, and even the increasingly flooded industry job market by closing your eyes really hard and sticking your fingers in your ears. You can't escape cybersecurity being political by being, "not really into politics".
You can't escape effects on defense, intelligence, and even the increasingly flooded industry job market by closing your eyes really hard and sticking your fingers in your ears. You can't escape cybersecurity being political by being, "not really into politics".
Reposted by Bryan Nolen
PancakesCon & @comfyconau.bsky.social are THIS SUNDAY, September 21st. Here are some final notes on how to make the most of virtual conferences and where to find useful information! pancakescon.com/2025/09/17/f...
Final Pre-Conference Notes for 2025
PancakesCon is this coming Sunday, the 21st of September (running into the 22nd for some of us!). It will start at 6AM Central US Time (Chicago), for a very good reason. No, I have not become a mor…
pancakescon.com
September 18, 2025 at 2:55 AM
PancakesCon & @comfyconau.bsky.social are THIS SUNDAY, September 21st. Here are some final notes on how to make the most of virtual conferences and where to find useful information! pancakescon.com/2025/09/17/f...
Reposted by Bryan Nolen
I do not know another way to express to people that trying to appease fascists by “being a good minority” or totally deferring to them publicly has saved absolutely no marginalized group or profession in human history. They are coming after us anyway. Even if you scold peers for not being nice.
September 17, 2025 at 12:27 AM
I do not know another way to express to people that trying to appease fascists by “being a good minority” or totally deferring to them publicly has saved absolutely no marginalized group or profession in human history. They are coming after us anyway. Even if you scold peers for not being nice.
Reposted by Bryan Nolen
No one, no matter their age, should have to hand over their passport or driver’s license just to access legal information and speak freely. www.eff.org/deeplinks/2...
Blocking Access to Harmful Content Will Not Protect Children Online,
The UK is having a moment. In late July, new rules took effect that require all online services available in the UK to assess whether they host content considered harmful to children, and if so,
www.eff.org
August 9, 2025 at 6:00 PM
No one, no matter their age, should have to hand over their passport or driver’s license just to access legal information and speak freely. www.eff.org/deeplinks/2...
Reposted by Bryan Nolen
@comfyconau.bsky.social CFP (Australian Time) and @pancakescon.com CFP (US Time) close in 5 days! Get your submission in ASAP!
If you want any help in submitting, please reach out to @wan0.net who can help you work through. There are no silly submissions, and we are really keen to hear from you today!
CFP is here: forms.gle/bRS7CVVWyB1q...
CFP is here: forms.gle/bRS7CVVWyB1q...
ComfyCon AU 2025 #rescheduled Expression of Interest - Closes 9th August
ComfyCon AU 2025 #rescheduled will be hosted online on 21st September 2025 in conjunction with PancakesCon. ComfyCon welcome all Australian and New Zealand speakers (although international speakers ar...
forms.gle
August 4, 2025 at 5:37 AM
@comfyconau.bsky.social CFP (Australian Time) and @pancakescon.com CFP (US Time) close in 5 days! Get your submission in ASAP!
Reposted by Bryan Nolen
Today @Google Project Zero announced a new trial policy: Reporting Transparency. We’ll now share when we report a security vuln to a vendor within 1 week including products + deadlines. Goal: shrink the patch gap + drive faster, safer updates for users: googleprojectzero.blogspot.com/2025/07/repo...
Policy and Disclosure: 2025 Edition
Posted by Tim Willis, Google Project Zero In 2021, we updated our vulnerability disclosure policy to the current "90+30" model. Our goals we...
googleprojectzero.blogspot.com
July 30, 2025 at 2:10 AM
Today @Google Project Zero announced a new trial policy: Reporting Transparency. We’ll now share when we report a security vuln to a vendor within 1 week including products + deadlines. Goal: shrink the patch gap + drive faster, safer updates for users: googleprojectzero.blogspot.com/2025/07/repo...
Reposted by Bryan Nolen
You have two weeks left to get your awesome talks into @pancakescon.com and @comfyconau.bsky.social !!!! Don’t miss out being part of our insane global free online con!!! forms.gle/H5bCRSaJY1f3... #cybersecurity #cfp
PancakesCon 6: Family Brunch - CFP
PancakesCon is a cybersecurity conference that will be conducted all day on 9/21/2025 (US Central Time). This conference is 100% virtual, not for profit and free to stream.
**PancakesCon has a UNIQUE...
forms.gle
July 27, 2025 at 5:27 AM
You have two weeks left to get your awesome talks into @pancakescon.com and @comfyconau.bsky.social !!!! Don’t miss out being part of our insane global free online con!!! forms.gle/H5bCRSaJY1f3... #cybersecurity #cfp
Reposted by Bryan Nolen
It's neat to say that AI will kill entry level SOC analyst jobs, but if you're a CISO and really believe that, I have to ask where you think you'll get your next generation of "not entry level" SOC analysts from.
July 23, 2025 at 12:31 PM
It's neat to say that AI will kill entry level SOC analyst jobs, but if you're a CISO and really believe that, I have to ask where you think you'll get your next generation of "not entry level" SOC analysts from.
Reposted by Bryan Nolen
This is the moment for image macros to spread their wings and fly.
The Metropolitan Museum of Art Puts 490,000 High-Res Images Online & Makes Them Free to Use
The Metropolitan Museum of Art Puts 490,000 High-Res Images Online & Makes Them Free to Use
Update: The Metropolitan Museum of Art has put online 492,000 high-resolution images of artistic works. Even better, the museum has placed the vast majority of these images into the public domain, mea...
www.openculture.com
July 18, 2025 at 2:12 AM
This is the moment for image macros to spread their wings and fly.
Reposted by Bryan Nolen
Since 2021, Mastercard has been imposing strict regulations on platforms that use the company's financial services — and Steam appears to be their latest target.
Tell Mastercard to reverse this harmful policy at action.aclu.org/petition/mas....
Tell Mastercard to reverse this harmful policy at action.aclu.org/petition/mas....
Valve just updated their Steam rules to ban content that “may violate rules set by payment processors or banks.” Sounds boring. It’s not. It’s the quiet normalization of financial censorship and it’s going to hurt LGBTQ+ games and devs
July 16, 2025 at 7:38 PM
Since 2021, Mastercard has been imposing strict regulations on platforms that use the company's financial services — and Steam appears to be their latest target.
Tell Mastercard to reverse this harmful policy at action.aclu.org/petition/mas....
Tell Mastercard to reverse this harmful policy at action.aclu.org/petition/mas....
When people call the Aussie govt "The Nanny State" it is because of badly thought-out and utterly ineffective "regulation" like this: www.abc.net.au/news/2025-07...
This is just the beginning, and they will not stop.
This is just the beginning, and they will not stop.
Australia is quietly rolling out age checks for search engines like Google
Just as Australians are adjusting to the idea of having their ages checked for social media, age assurance rules are being applied to search engines and many other corners of the internet.
www.abc.net.au
July 11, 2025 at 3:35 AM
When people call the Aussie govt "The Nanny State" it is because of badly thought-out and utterly ineffective "regulation" like this: www.abc.net.au/news/2025-07...
This is just the beginning, and they will not stop.
This is just the beginning, and they will not stop.
Reposted by Bryan Nolen
Do you enjoy guzzling real-time TLS certificate allocations, but don't want to use a third-party service (crt.sh, CertStream, etc.)? Drink straight from the Certificate Transparency log firehose using ctail:
$ go run github.com/hdm/ctail@latest -f -m '^autodiscover\.'
github.com/hdm/ctail
$ go run github.com/hdm/ctail@latest -f -m '^autodiscover\.'
github.com/hdm/ctail
June 21, 2025 at 5:57 AM
Do you enjoy guzzling real-time TLS certificate allocations, but don't want to use a third-party service (crt.sh, CertStream, etc.)? Drink straight from the Certificate Transparency log firehose using ctail:
$ go run github.com/hdm/ctail@latest -f -m '^autodiscover\.'
github.com/hdm/ctail
$ go run github.com/hdm/ctail@latest -f -m '^autodiscover\.'
github.com/hdm/ctail
Reposted by Bryan Nolen
One more time, here is EFF/Freedom of the Press' guide for journalists securing their devices to cross the US border.
Stories like Alistair's help us understand the real threats on the ground and allow us to threat model more accurately.
freedom.press/digisec/blog...
Stories like Alistair's help us understand the real threats on the ground and allow us to threat model more accurately.
freedom.press/digisec/blog...
June 15, 2025 at 2:51 PM
One more time, here is EFF/Freedom of the Press' guide for journalists securing their devices to cross the US border.
Stories like Alistair's help us understand the real threats on the ground and allow us to threat model more accurately.
freedom.press/digisec/blog...
Stories like Alistair's help us understand the real threats on the ground and allow us to threat model more accurately.
freedom.press/digisec/blog...
Reposted by Bryan Nolen
There is a maximum amount of time each day you're supposed to focus on the world's problems instead of your own, after which you have a legitimate need for therapy on your thought processes being self-destructive. At some point you have to stop scrubbing your hands you are bleeding into the sink.
June 11, 2025 at 11:06 PM
There is a maximum amount of time each day you're supposed to focus on the world's problems instead of your own, after which you have a legitimate need for therapy on your thought processes being self-destructive. At some point you have to stop scrubbing your hands you are bleeding into the sink.
The frequency at which the bsky mobile app force signs you out is infuriating, seriously why only this app?
June 3, 2025 at 4:02 AM
The frequency at which the bsky mobile app force signs you out is infuriating, seriously why only this app?
Reposted by Bryan Nolen
Inside you there are two wolves. One is active, the other one is on hot standby and becomes active if the first one fails or is taken down for maintenance. Add more wolves as necessary for increased redundancy load balancing. A quorum badger can be added for environments with multiple active wolves.
May 4, 2025 at 3:09 AM
Inside you there are two wolves. One is active, the other one is on hot standby and becomes active if the first one fails or is taken down for maintenance. Add more wolves as necessary for increased redundancy load balancing. A quorum badger can be added for environments with multiple active wolves.
Reposted by Bryan Nolen
Google announced they will support privacy preserving age verification via zero-knowledge proofs.
You prove you have a signed digital copy of a drivers license and it says you are over 18 without revealing anything about you (name, birthdate, etc)
blog.google/products/goo...
You prove you have a signed digital copy of a drivers license and it says you are over 18 without revealing anything about you (name, birthdate, etc)
blog.google/products/goo...
It’s now easier to prove age and identity with Google Wallet
Learn more about new Google Wallet updates, including new ways to use your digital ID for age and identity verification.
blog.google
May 1, 2025 at 11:00 PM
Google announced they will support privacy preserving age verification via zero-knowledge proofs.
You prove you have a signed digital copy of a drivers license and it says you are over 18 without revealing anything about you (name, birthdate, etc)
blog.google/products/goo...
You prove you have a signed digital copy of a drivers license and it says you are over 18 without revealing anything about you (name, birthdate, etc)
blog.google/products/goo...
Reposted by Bryan Nolen
Hey DFIR Peeps! I am hiring incident responders in two locations - Boulder, CO and Sunnyvale, CA. It'd be hard to find a bigger CSIRT with more scope and more interesting stuff to do than this one. :D
SVL: www.google.com/about...
BLD: www.google.com/about...
SVL: www.google.com/about...
BLD: www.google.com/about...
April 25, 2025 at 10:24 PM
Hey DFIR Peeps! I am hiring incident responders in two locations - Boulder, CO and Sunnyvale, CA. It'd be hard to find a bigger CSIRT with more scope and more interesting stuff to do than this one. :D
SVL: www.google.com/about...
BLD: www.google.com/about...
SVL: www.google.com/about...
BLD: www.google.com/about...
Reposted by Bryan Nolen
You know that friend who always had an excuse when you asked them to pick up Baldur’s Gate 3 because there was no cross-play?
Well buddy, you’re out of excuses now.
Well buddy, you’re out of excuses now.
April 17, 2025 at 3:01 PM
You know that friend who always had an excuse when you asked them to pick up Baldur’s Gate 3 because there was no cross-play?
Well buddy, you’re out of excuses now.
Well buddy, you’re out of excuses now.
Reposted by Bryan Nolen
If you think this can’t happen, remember that of the 125,000 Japanese Americans who were interned during WWII for years without charge or trial, two-thirds were U.S. citizens. Including me.
April 4, 2025 at 7:51 PM
If you think this can’t happen, remember that of the 125,000 Japanese Americans who were interned during WWII for years without charge or trial, two-thirds were U.S. citizens. Including me.
Reposted by Bryan Nolen
Reposted by Bryan Nolen
Right now there are a lot of new eyes on Signal, and not all of them are familiar with secure messaging and its nuances. Which means there’s misinfo flying around that might drive people away from Signal and private communications. 1/
March 25, 2025 at 10:52 PM
Right now there are a lot of new eyes on Signal, and not all of them are familiar with secure messaging and its nuances. Which means there’s misinfo flying around that might drive people away from Signal and private communications. 1/