Kevin Beaumont
@doublepulsar.com
cybersecurity weather man. scanning the horizons for cloudy cyber. Expert at nothing except computer rubbish. Anti-ransomware since 2015.
Found this photo from 2018 where I was making fun of CheckPoint’s crappy cyber marketing.
Fave moment, @ericjgeller.com getting somehow drawn into a Wikipedia war when it was discovered the vendor had added their own marketing.
In the age of GenAI most vendors have worse marketing now. 🫡
Fave moment, @ericjgeller.com getting somehow drawn into a Wikipedia war when it was discovered the vendor had added their own marketing.
In the age of GenAI most vendors have worse marketing now. 🫡
November 26, 2025 at 8:23 PM
Found this photo from 2018 where I was making fun of CheckPoint’s crappy cyber marketing.
Fave moment, @ericjgeller.com getting somehow drawn into a Wikipedia war when it was discovered the vendor had added their own marketing.
In the age of GenAI most vendors have worse marketing now. 🫡
Fave moment, @ericjgeller.com getting somehow drawn into a Wikipedia war when it was discovered the vendor had added their own marketing.
In the age of GenAI most vendors have worse marketing now. 🫡
Reposted by Kevin Beaumont
Lily Allen's album has healed a part of me
November 1, 2025 at 3:04 PM
Lily Allen's album has healed a part of me
Nvidia unveiled their new logo today.
November 25, 2025 at 5:17 AM
Nvidia unveiled their new logo today.
Did Capita have a ransomware response that “will go down as a case history for how to deal with a sophisticated cyberattack”, as their CEO claimed? I take a look. doublepulsar.com/what-organis...
What organisations can learn from the record breaking fine over Capita’s ransomware incident
No, a Nessus vulnerability scan isn’t good enough.
doublepulsar.com
November 21, 2025 at 12:54 PM
Did Capita have a ransomware response that “will go down as a case history for how to deal with a sophisticated cyberattack”, as their CEO claimed? I take a look. doublepulsar.com/what-organis...
Reposted by Kevin Beaumont
Big news on the corporate accountability (or lack thereof) front: The SEC just dropped its case against SolarWinds and its former CISO for allegedly defrauding investors about the company's cybersecurity posture prior to its major hack. www.sec.gov/enforcement-...
SEC.gov | SolarWinds Corp. and Timothy G. Brown
www.sec.gov
November 20, 2025 at 10:23 PM
Big news on the corporate accountability (or lack thereof) front: The SEC just dropped its case against SolarWinds and its former CISO for allegedly defrauding investors about the company's cybersecurity posture prior to its major hack. www.sec.gov/enforcement-...
I don’t think Microsoft yet understands how the public views their obsession GenAI. They will come to.
November 19, 2025 at 12:14 PM
I don’t think Microsoft yet understands how the public views their obsession GenAI. They will come to.
Reposted by Kevin Beaumont
Half-Life 3 looks fucking SICK
November 19, 2025 at 12:27 AM
Half-Life 3 looks fucking SICK
Reposted by Kevin Beaumont
Just so it’s clear, Cook would be in prison if he lived in Saudi Arabia
Tim Cook, the head of Apple, is having a nice dinner with MBS, who regularly orders executions, including for tweets.
Apple hosts "a Saudi app that allows men to track the movement of their wives and daughters. In 2019, Mr. Cook said he would investigate the app, but it is still available today."
Apple hosts "a Saudi app that allows men to track the movement of their wives and daughters. In 2019, Mr. Cook said he would investigate the app, but it is still available today."
November 19, 2025 at 3:41 AM
Just so it’s clear, Cook would be in prison if he lived in Saudi Arabia
Reposted by Kevin Beaumont
“talking to Copilot in Windows 11 is an exercise in pure frustration — a stark reminder that the reality of AI is nowhere close to the hype.” www.theverge.com/report/82244...
Talking to Windows’ Copilot AI makes a computer feel incompetent
Hey Copilot, are you useful yet?
www.theverge.com
November 18, 2025 at 10:01 PM
“talking to Copilot in Windows 11 is an exercise in pure frustration — a stark reminder that the reality of AI is nowhere close to the hype.” www.theverge.com/report/82244...
Reposted by Kevin Beaumont
Web 1.0: The web is for information
Web 2.0: The web is for ads
Web 3.0: The web is for scams
Web 2.0: The web is for ads
Web 3.0: The web is for scams
November 17, 2025 at 5:16 PM
Web 1.0: The web is for information
Web 2.0: The web is for ads
Web 3.0: The web is for scams
Web 2.0: The web is for ads
Web 3.0: The web is for scams
This isn’t a joke btw.
Also it ships with Half Life 3.
November 16, 2025 at 12:41 PM
This isn’t a joke btw.
Some notes on an awkward stage in career over GenAI, and Chinese Whispers. cyberplace.social/@GossiTheDog...
Kevin Beaumont (@[email protected])
I'm a really weird stage in my career - a bad point - where I'm having to go to prominent industry leaders and be like 'you realise that article you just shared about 90% of ransomware being from GenA...
cyberplace.social
November 15, 2025 at 12:57 PM
Some notes on an awkward stage in career over GenAI, and Chinese Whispers. cyberplace.social/@GossiTheDog...
There's a Russian disinformation network operating from Mastodon to push content into BlueSky, it's a few hundred active accounts (they also exist directly on BlueSky natively too).
It probably costs more to run than the value it provides to whoever runs it, tbh.
cyberplace.social/@GossiTheDog...
It probably costs more to run than the value it provides to whoever runs it, tbh.
cyberplace.social/@GossiTheDog...
Kevin Beaumont (@[email protected])
I dunno if anybody has done a write up of it but there’s a pretty big Russian disinformation operation that runs on the Fediverse
If you search on Mastodon for t.me/RussianBaZa you’ll find some of i...
cyberplace.social
November 15, 2025 at 11:46 AM
There's a Russian disinformation network operating from Mastodon to push content into BlueSky, it's a few hundred active accounts (they also exist directly on BlueSky natively too).
It probably costs more to run than the value it provides to whoever runs it, tbh.
cyberplace.social/@GossiTheDog...
It probably costs more to run than the value it provides to whoever runs it, tbh.
cyberplace.social/@GossiTheDog...
This reminds me of Leslie Benzies, who gave an interview claiming he wasn’t designing video games, but inventing technology as important as the phone and internet.
That was in his interview for MindsEye btw. Hopefully Brendan has somebody telling him if he’s a tit.
That was in his interview for MindsEye btw. Hopefully Brendan has somebody telling him if he’s a tit.
Did you know Brendan "PlayerUnknown" Greene, the creator of PUBG, wants to remake the internet? www.eurogamer.net/did-you-know...
November 15, 2025 at 11:00 AM
This reminds me of Leslie Benzies, who gave an interview claiming he wasn’t designing video games, but inventing technology as important as the phone and internet.
That was in his interview for MindsEye btw. Hopefully Brendan has somebody telling him if he’s a tit.
That was in his interview for MindsEye btw. Hopefully Brendan has somebody telling him if he’s a tit.
Volexity put out some IOCs over that WSJ GenAI hype piece they were in.
My thoughts:
cyberplace.social/@GossiTheDog...
tl;dr keep calm and keep defending. This is easily detected .exe files inside WinRAR archives. Volexity aren't doing cyberslop in the report btw, it's pretty good.
My thoughts:
cyberplace.social/@GossiTheDog...
tl;dr keep calm and keep defending. This is easily detected .exe files inside WinRAR archives. Volexity aren't doing cyberslop in the report btw, it's pretty good.
Kevin Beaumont (@[email protected])
Attached: 4 images
Volexity put out a report about likely GenAI being used in cyber attacks by China... and it contains IOCs! It's a good report.
It has all the low hanging fruit classics defenders...
cyberplace.social
November 14, 2025 at 5:01 PM
Volexity put out some IOCs over that WSJ GenAI hype piece they were in.
My thoughts:
cyberplace.social/@GossiTheDog...
tl;dr keep calm and keep defending. This is easily detected .exe files inside WinRAR archives. Volexity aren't doing cyberslop in the report btw, it's pretty good.
My thoughts:
cyberplace.social/@GossiTheDog...
tl;dr keep calm and keep defending. This is easily detected .exe files inside WinRAR archives. Volexity aren't doing cyberslop in the report btw, it's pretty good.
Reposted by Kevin Beaumont
Anthropic's AI cyberespionage report feels as odd as the last one. Just 13 pages, it has none of the traditional components of a usual threat intel report (IoCs, payload hashes, etc.) and it seems to bury the lead re: technical sophistication. I wonder if a target will come forward. #infosec
November 14, 2025 at 7:40 AM
Anthropic's AI cyberespionage report feels as odd as the last one. Just 13 pages, it has none of the traditional components of a usual threat intel report (IoCs, payload hashes, etc.) and it seems to bury the lead re: technical sophistication. I wonder if a target will come forward. #infosec
Ooof - latest Call of Duty has launched to player numbers way, way below previous entries. They’ve somehow lost a majority of the audience in the space of one year.
November 14, 2025 at 7:03 AM
Ooof - latest Call of Duty has launched to player numbers way, way below previous entries. They’ve somehow lost a majority of the audience in the space of one year.
Reposted by Kevin Beaumont
mad Respect for checkout.com CTO for holding out instead of paying the ransom.
Instead of paying a ransom demand after getting hit by extortionists last week, payment services provider Checkout.com donated the demanded amount to fund cybercrime research.
Ransomed CTO falls on sword, refuses to pay extortion demand
: Checkout.com will instead donate the amount to fund cybercrime research
www.theregister.com
November 14, 2025 at 6:16 AM
mad Respect for checkout.com CTO for holding out instead of paying the ransom.
what's even worse is if you know how that cyber attack(tm) went down. Put it this way, the person doing it didn't even know what they were doing.
Extraordinary day and historic for the wrong reasons - a cyber attack featured in the GDP figures
November 13, 2025 at 12:21 PM
what's even worse is if you know how that cyber attack(tm) went down. Put it this way, the person doing it didn't even know what they were doing.
one to be aware of, browsers allow any website to go full screen, so now ClickFix are faking Windows update reboot prompts to get remote access for ransomware groups.
cyberplace.social/@GossiTheDog...
cyberplace.social/@GossiTheDog...
Kevin Beaumont (@[email protected])
Attached: 1 image
Interesting one spotted by Daniel B in the NHS - ClickFix (fake browser adverts to encourage people to run commands which provide remote access) have a new technique - they use brow...
cyberplace.social
November 13, 2025 at 12:15 PM
one to be aware of, browsers allow any website to go full screen, so now ClickFix are faking Windows update reboot prompts to get remote access for ransomware groups.
cyberplace.social/@GossiTheDog...
cyberplace.social/@GossiTheDog...
The Ice Cubes Mastodon client on iOS is so good.
November 12, 2025 at 11:20 PM
The Ice Cubes Mastodon client on iOS is so good.
Steam plan to bury Xbox with this, releasing next year.
November 12, 2025 at 5:42 PM
Steam plan to bury Xbox with this, releasing next year.
Where's Microsoft's 2025 Global Diversity and Inclusion report?
November 12, 2025 at 5:33 PM
Where's Microsoft's 2025 Global Diversity and Inclusion report?
OH NO THE AI IS COMING!!!1!
November 12, 2025 at 12:33 PM
OH NO THE AI IS COMING!!!1!
Volume up and try not to laugh challenge:
November 11, 2025 at 9:25 PM
Volume up and try not to laugh challenge: