James Atack
@jamesatack.com
Cyber defender with an offensive name.
Deputy CTO at @onyphe.io | http://onyphe.io
Managing your attack surface... from Europe 👀
Opinions : all mine
Special skill : machine empathy
Deputy CTO at @onyphe.io | http://onyphe.io
Managing your attack surface... from Europe 👀
Opinions : all mine
Special skill : machine empathy
<epic movie trailer voice>
First they came for Birmingham City Council.
Now they're back. And they want ... EVERYTHING
First they came for Birmingham City Council.
Now they're back. And they want ... EVERYTHING
Bank of England Oracle Cloud bill balloons – but when you print money, who's counting?
Bank of England Oracle Cloud bill balloons – but when you print money, who's counting?
Old Lady of Threadneedle Street to pay millions for 'amended implementation methodology'
The Bank of England has nearly doubled the money it is dedicating to partner spending for an Oracle cloud transformation, which it began imagining in 2020.…
dlvr.it
January 9, 2026 at 11:39 AM
<epic movie trailer voice>
First they came for Birmingham City Council.
Now they're back. And they want ... EVERYTHING
First they came for Birmingham City Council.
Now they're back. And they want ... EVERYTHING
Reposted by James Atack
Tomorrow we are going to have USA and Iran each telling the other to stop shooting citizens who protest.
January 8, 2026 at 8:25 PM
Tomorrow we are going to have USA and Iran each telling the other to stop shooting citizens who protest.
Reposted by James Atack
For those keeping score, Bellingcat, The New York Times Visual Investigation Team, & Washington Post's Visual Forensic team have all published analysis showing the ICE shooter wasn't in the path of Renee Nicole Good’s vehicle when he shot her, contradicting statements by the President & his cronies
January 8, 2026 at 3:35 PM
For those keeping score, Bellingcat, The New York Times Visual Investigation Team, & Washington Post's Visual Forensic team have all published analysis showing the ICE shooter wasn't in the path of Renee Nicole Good’s vehicle when he shot her, contradicting statements by the President & his cronies
Arbitrary file read for administrators
This is only a threat fo Cisco management
This is only a threat fo Cisco management
Patch Cisco ISE bug now before attackers abuse proof-of-concept exploit
Patch Cisco ISE bug now before attackers abuse proof-of-concept exploit
No reports of active exploitation … yet
Cisco patched a bug in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) products that allows remote attackers with admin-level privileges to access sensitive information - and warned that a public, proof-of-concept exploit for the flaw exists online.…
dlvr.it
January 8, 2026 at 7:06 PM
Arbitrary file read for administrators
This is only a threat fo Cisco management
This is only a threat fo Cisco management
Reposted by James Atack
Is Steam down for you? Users are reporting problems with Steam. Repost if you are having issues. #steamdown
Check Steam status
IsDown monitors the status of Steam and other 4600+ services. Check the page for updates.
isdown.app
December 24, 2025 at 6:33 PM
Is Steam down for you? Users are reporting problems with Steam. Repost if you are having issues. #steamdown
Reposted by James Atack
Wowzers, another perfect 10 from Cisco on Secure Email Gateway, Secure Mail, and Web Manager. This one has:
- RCE
- No patch
- No workaround
- No public IoCs
Recommendation is to reimage to a known-good config. Whatever that is, without indicators.
Good luck I guess??
- RCE
- No patch
- No workaround
- No public IoCs
Recommendation is to reimage to a known-good config. Whatever that is, without indicators.
Good luck I guess??
Cisco Security Advisory: Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager
On December 10, Cisco became aware of a new cyberattack campaign targeting a limited subset of appliances with certain ports open to the internet that are running Cisco AsyncOS Software for Cisco Secu...
sec.cloudapps.cisco.com
December 17, 2025 at 4:38 PM
Wowzers, another perfect 10 from Cisco on Secure Email Gateway, Secure Mail, and Web Manager. This one has:
- RCE
- No patch
- No workaround
- No public IoCs
Recommendation is to reimage to a known-good config. Whatever that is, without indicators.
Good luck I guess??
- RCE
- No patch
- No workaround
- No public IoCs
Recommendation is to reimage to a known-good config. Whatever that is, without indicators.
Good luck I guess??
Reposted by James Atack
Talos has IoCs, which for some reason are not in the advisory itself?? blog.talosintelligence.com/uat-9686/
UAT-9686 actively targets Cisco Secure Email Gateway and Secure Email and Web Manager
Cisco Talos is tracking the active targeting of Cisco AsyncOS Software for Cisco Secure Email Gateway, formerly known as Cisco Email Security Appliance (ESA), and Cisco Secure Email and Web Manager, f...
blog.talosintelligence.com
December 17, 2025 at 6:01 PM
Talos has IoCs, which for some reason are not in the advisory itself?? blog.talosintelligence.com/uat-9686/
Who needs reality when you can have virtual slop ?
Who needs a priest when you have a chatbot? on.ft.com/4aKLHKH | opinion
Who needs a priest when you have a chatbot?
As technology acquires quasi-religious qualities, traditional faiths could be moving in a more solitary direction
on.ft.com
December 11, 2025 at 11:30 AM
Who needs reality when you can have virtual slop ?
Reposted by James Atack
Security firm Flare has scanned the Docker Hub portal and found secrets and tokens, including for production systems, in more than 10,000 images
flare.io/learn/resour...
flare.io/learn/resour...
Thousands of Exposed Secrets Found on Docker Hub - Flare
In a month, we found Docker Hub images that contained leaked secrets (including live credentials to production systems) from over 100 companies.
flare.io
December 11, 2025 at 11:11 AM
Security firm Flare has scanned the Docker Hub portal and found secrets and tokens, including for production systems, in more than 10,000 images
flare.io/learn/resour...
flare.io/learn/resour...
Reposted by James Atack
RE: https://infosec.exchange/@ossir/115603757755275844
Rappel : la prochaine réunion de l'OSSIR, c'est demain (mardi) à 14h00 chez TotalEnergies Digital Factory (33 rue des Jeûneurs, 75002 Paris)
N'oubliez pas de vous inscrire gratuitement sur https://billetweb.fr/reunion-ossir-decembre-2025 […]
Rappel : la prochaine réunion de l'OSSIR, c'est demain (mardi) à 14h00 chez TotalEnergies Digital Factory (33 rue des Jeûneurs, 75002 Paris)
N'oubliez pas de vous inscrire gratuitement sur https://billetweb.fr/reunion-ossir-decembre-2025 […]
December 8, 2025 at 9:43 AM
RE: https://infosec.exchange/@ossir/115603757755275844
Rappel : la prochaine réunion de l'OSSIR, c'est demain (mardi) à 14h00 chez TotalEnergies Digital Factory (33 rue des Jeûneurs, 75002 Paris)
N'oubliez pas de vous inscrire gratuitement sur https://billetweb.fr/reunion-ossir-decembre-2025 […]
Rappel : la prochaine réunion de l'OSSIR, c'est demain (mardi) à 14h00 chez TotalEnergies Digital Factory (33 rue des Jeûneurs, 75002 Paris)
N'oubliez pas de vous inscrire gratuitement sur https://billetweb.fr/reunion-ossir-decembre-2025 […]
I read “Canadian” at first glance.
So soon… I thought
So soon… I thought
Americans are advised to avoid all travel within 50 km of the border and follow Cambodian authorities’ instructions.
December 8, 2025 at 10:27 AM
I read “Canadian” at first glance.
So soon… I thought
So soon… I thought
Reposted by James Atack
"Imagine you stole all of the intellectual property in the world. And you're using it to help people write middling emails and make revenge porn about women, and also children. And you're powering this plagiarism and non-consensual porn machine by eating up what's left of humanity's carbon budget."
How to explain AI to your family this holiday season | CNN Business
Politics, football and movies are among the many topics that tend to come up around Thanksgiving. In 2025, a new question may arise at the table: Why the heck is everyone talking about AI, and what sh...
www.cnn.com
November 27, 2025 at 4:04 AM
"Imagine you stole all of the intellectual property in the world. And you're using it to help people write middling emails and make revenge porn about women, and also children. And you're powering this plagiarism and non-consensual porn machine by eating up what's left of humanity's carbon budget."
Reposted by James Atack
Le gestionnaire de mots de passe open-source et multiplateforme KeePassXC (version 2.7.9) vient de recevoir sa certification CSPN (Certification de sécurité de premier niveau) délivrée par l'ANSSI #Infosec cyber.gouv.fr/produits-cer...
KEEPASSXC version 2.7.9 | ANSSI
Acces rapide
cyber.gouv.fr
November 25, 2025 at 12:45 PM
Le gestionnaire de mots de passe open-source et multiplateforme KeePassXC (version 2.7.9) vient de recevoir sa certification CSPN (Certification de sécurité de premier niveau) délivrée par l'ANSSI #Infosec cyber.gouv.fr/produits-cer...
“Having a Fortinet on your perimeter is the strongest correlation to getting owned that you can have” @metlstorm.risky.biz
Not hating, just campaigning for the “more engineering, less marketing” party
Not hating, just campaigning for the “more engineering, less marketing” party
November 19, 2025 at 8:35 AM
“Having a Fortinet on your perimeter is the strongest correlation to getting owned that you can have” @metlstorm.risky.biz
Not hating, just campaigning for the “more engineering, less marketing” party
Not hating, just campaigning for the “more engineering, less marketing” party
Reposted by James Atack
At the EU Summit on Digital Sovereignty, the US internet service Cloudflare is sponsoring today's side event "Digital Resilience: Between Aspiration and Reality." /s
November 18, 2025 at 2:27 PM
At the EU Summit on Digital Sovereignty, the US internet service Cloudflare is sponsoring today's side event "Digital Resilience: Between Aspiration and Reality." /s
Or living in France, for now.
November 12, 2025 at 7:01 AM
Or living in France, for now.
Reposted by James Atack
Bank of England says JLR's cyberattack contributed to UK's unexpectedly slower GDP growth
Bank of England says JLR's cyberattack contributed to UK's unexpectedly slower GDP growth
This kind of material economic impact from online crooks thought to be a UK-first
The Bank of England (BoE) has cited the cyberattack on Jaguar Land Rover (JLR) as one of the reasons for the country's slower-than-expected GDP growth in its latest rates decision.…
dlvr.it
November 7, 2025 at 11:47 AM
Bank of England says JLR's cyberattack contributed to UK's unexpectedly slower GDP growth
Reposted by James Atack
#VisaSécurité | ✅La gestion de crise d’origine cyber devient une activité à part entière du référentiel PRIS !
🔁 Avec cette mise à jour, le référentiel d’exigences applicables aux prestataires de réponse aux incidents de sécurité comprend ainsi 5 activités.
🔗 cyber.gouv.fr/actualites/p...
🔁 Avec cette mise à jour, le référentiel d’exigences applicables aux prestataires de réponse aux incidents de sécurité comprend ainsi 5 activités.
🔗 cyber.gouv.fr/actualites/p...
October 28, 2025 at 3:31 PM
#VisaSécurité | ✅La gestion de crise d’origine cyber devient une activité à part entière du référentiel PRIS !
🔁 Avec cette mise à jour, le référentiel d’exigences applicables aux prestataires de réponse aux incidents de sécurité comprend ainsi 5 activités.
🔗 cyber.gouv.fr/actualites/p...
🔁 Avec cette mise à jour, le référentiel d’exigences applicables aux prestataires de réponse aux incidents de sécurité comprend ainsi 5 activités.
🔗 cyber.gouv.fr/actualites/p...
Reposted by James Atack
BNP PARIBAS SHARES FALL 7.1%, HALTED FOR VOLATILITY
October 20, 2025 at 9:04 AM
BNP PARIBAS SHARES FALL 7.1%, HALTED FOR VOLATILITY
Reposted by James Atack
Edinburgh castle failing to render, likely thanks to the AWS outage
October 20, 2025 at 8:35 AM
Edinburgh castle failing to render, likely thanks to the AWS outage
The question is, which banks are down?
October 20, 2025 at 8:42 AM
The question is, which banks are down?
Reposted by James Atack
Kinda sucks when going to bed requires the internet and alexa for that matter
Alexa is down, wont turn off the fan or turn on the light. 2 things I can't get to because of my wheelchair but was placed in strategic useful places... except when stuff like this happens. ugh lol
Alexa is down, wont turn off the fan or turn on the light. 2 things I can't get to because of my wheelchair but was placed in strategic useful places... except when stuff like this happens. ugh lol
October 20, 2025 at 8:28 AM
Kinda sucks when going to bed requires the internet and alexa for that matter
Alexa is down, wont turn off the fan or turn on the light. 2 things I can't get to because of my wheelchair but was placed in strategic useful places... except when stuff like this happens. ugh lol
Alexa is down, wont turn off the fan or turn on the light. 2 things I can't get to because of my wheelchair but was placed in strategic useful places... except when stuff like this happens. ugh lol
Reposted by James Atack
Das Internet ist kaputt 😩
October 20, 2025 at 8:16 AM
Das Internet ist kaputt 😩
Reposted by James Atack
is it because AWS went down??
half the internet is out rn
half the internet is out rn
October 20, 2025 at 8:16 AM
is it because AWS went down??
half the internet is out rn
half the internet is out rn