I won’t be at CYBERWARCON this year so I need someone to give @hultquist.bsky.social a hard time for me. I don’t yet know why he deserves this, but I’m sure a reason will present itself between now and then. The man never disappoints in the shenanigans and tomfoolery department.

Have you ever wanted to see two terminally online nerds really (and I mean *really*) get into the SVR deep lore while continuing the eternal goal of making 2016 last forever?

Gosh does @cyberwarcon.bsky.social have a talk for you!

DMV folks, I'll be in town for CYBERWARCON this year. I'm proud to say I'll be giving a lightning talk about a certain APT group, and their association with some interesting corners of the nuclear sector.

More details to follow!

CYBERWARCON is gooooooooo! This year’s agenda is live! Thank you submitters.

Announcing this year's CYBERWARCON speaker lineup and agenda! We've got some fantastic talks this year, and more will be announced soon.

Don't miss your chance to register now! Thank you everyone who submitted to the CFP. The selection was a truly grueling process!

What's that?

www.cyberwarcon.com/oil-into-the...

🚨🚨🚨 Google released a report on "Brickstorm" this morning — a next-level, suspected China-linked campaign targeting U.S. firms. Ultra-stealthy, 400+ day dwell times, focus on stealing IP, finding zero-days, and focused on long-term cyberespionage. cyberscoop.com/chinese-cybe...

We are expecting several organizations who use this tool and actively hunt for this threat will find that this actor has been active in their networks for some time.

We are releasing details on BRICKSTORM malware activity, a China-based threat hitting US tech to potentially target downstream customers and hunt for data on vulnerabilities in products. This actor is stealthy, and we've provided a tool to hunt for them. cloud.google.com/blog/topics/...

This is unironically one of the wildest photos ever taken.

Last week to get your @CYBERWARCON submissions in! Don’t miss out!

We've got some good submissions flowing into the @CYBERWARCON CFP, but there's still time for more. If you have good content, and you're worried the honorarium won't cover your travel, please submit, and we'll work it out. We do this because we believe this research matters.

Finland is so small that I once visited and Mikko found me in a bookstore.

PAPERS PLEASE!
#BSidesPyongyang2025 🇰🇵

Submit your CFP now:
https://forms.gle/y6QRMeYuJPYXZi1k9

Tech startup idea: instead of starting your car with your key, you get in, turn on the display panel, enter your password, get your phone out, open the authenticator app, enter your pin, enter the timed passcode, then open the start menu, then helpdesk, then "request engine start", then submit a tic

Yo! #CYBERWARCON CFP & Reg is LIVE! You know what to do. AI can't do it for you...or wear these socks.

@hultquist.bsky.social @cyberwarcon.bsky.social

Major Update: We now believe this incident impacts other Salesloft Drift integrations, not just Salesforce. We’re advising Salesloft Drift customers to treat any and all authentication tokens stored in or connected to the Drift platform as potentially compromised.

Wait til they see the socks!

NEW: Google's Threat Intelligence Group has found the Salesloft issue impacting Salesforce actually impacts *all* Salesloft integrations, including those with Google Workspace. @mattkapko.com has it all (and will have more as this is developing) cyberscoop.com/salesloft-dr...

it's that time!!! @cyberwarcon.bsky.social tickets are on sale!!
Get one before they sell out!!

www.cyberwarcon.com/registration

#CYBERWARCON #sockarmy

CYBERWARCON is coming!!! Registration and CFP are now open for this year's #CYBERWARCON! This year's keynote speaker will be @dmitri.silverado.org!!
We are back in Arlington, VA this year on November 19th.

www.cyberwarcon.com

No known relation at this time. Still investigating motives.

An actor we are tracking as UNC6395 is targeting Salesforce customer instances through compromised OAuth tokens associated with the Salesloft Drift third-party application. This is ongoing and widespread. cloud.google.com/blog/topics/...