Andrea
@justaddnotes.bsky.social
Military veteran, linguist, and cybersecurity professional. Areas of focus: Advanced Persistent Threats, ransomware, disinformation, Artificial Intelligence, Language. Слава Україні, Героям слава! 🇺🇦💛💙
Reposted by Andrea
Regarding recent news that Microsoft et al plan to *not* eliminate silly threat actor names, @ciaranm.bsky.social m.bsky.social and Jen Easterly weigh in on the silliness and call for a moratorium on ridiculous marketing names for state-sponsored Russian/Chinese/Iranian/NK hacker groups.
Call Them What They Are: Time to Fix Cyber Threat Actor Naming
The Microsoft-CrowdStrike partnership on cyber threat actor naming conventions is welcome, but more comprehensive reform is needed to serve defenders and the public.
www.justsecurity.org
June 13, 2025 at 12:07 PM
Regarding recent news that Microsoft et al plan to *not* eliminate silly threat actor names, @ciaranm.bsky.social m.bsky.social and Jen Easterly weigh in on the silliness and call for a moratorium on ridiculous marketing names for state-sponsored Russian/Chinese/Iranian/NK hacker groups.
Reposted by Andrea
www.nytimes.com/2025/06/11/w...
This is exactly what I've been arguing. Perhaps the only positive thing to come out of this administration is the move to a more multipolar world.
This is exactly what I've been arguing. Perhaps the only positive thing to come out of this administration is the move to a more multipolar world.
Trump Is Pushing Allies Away and Closer to Each Other
www.nytimes.com
June 12, 2025 at 10:30 PM
www.nytimes.com/2025/06/11/w...
This is exactly what I've been arguing. Perhaps the only positive thing to come out of this administration is the move to a more multipolar world.
This is exactly what I've been arguing. Perhaps the only positive thing to come out of this administration is the move to a more multipolar world.
Reposted by Andrea
My statement on the arrest of California SEIU President David Huerta.
June 8, 2025 at 1:05 PM
My statement on the arrest of California SEIU President David Huerta.
Link to more information about the GI Rights Hotline for anyone who may need it girightshotline.org/en/about/
June 8, 2025 at 1:11 PM
Link to more information about the GI Rights Hotline for anyone who may need it girightshotline.org/en/about/
Reposted by Andrea
The French government confirms Olympics related activity tied to APT28 in lead up to Paris games. The era of Russian Olympics shenanigans has not yet ended. www.diplomatie.gouv.fr/fr/dossiers-...
Russie – Attribution de cyberattaques contre la France au service de renseignement militaire russe (APT28) (29.04.25)
La France condamne avec la plus grande fermeté le recours par le service de renseignement militaire russe (GRU) au mode opératoire d'attaque APT28, (…)
www.diplomatie.gouv.fr
April 29, 2025 at 2:46 PM
The French government confirms Olympics related activity tied to APT28 in lead up to Paris games. The era of Russian Olympics shenanigans has not yet ended. www.diplomatie.gouv.fr/fr/dossiers-...
Reposted by Andrea
Jen Easterly speaks out on the cybersecurity industry’s silence as Trump goes after Krebs et al:
“If we allow the quiet dismissal of dedicated public servants in our community to pass without comment — we’re not defending national security; we’re compromising it.”
www.reuters.com/world/us/ex-...
“If we allow the quiet dismissal of dedicated public servants in our community to pass without comment — we’re not defending national security; we’re compromising it.”
www.reuters.com/world/us/ex-...
Ex-CISA boss says Trump actions risk 'dangerously degrading' US cyber defenses
U.S. President Donald Trump's purges and apparent acts of retribution aimed at top cyber officials put the nation's digital defenses at risk, the former head of the Cybersecurity and Infrastructure Security Agency (CISA) said in a post on Friday.
www.reuters.com
April 25, 2025 at 5:37 PM
Jen Easterly speaks out on the cybersecurity industry’s silence as Trump goes after Krebs et al:
“If we allow the quiet dismissal of dedicated public servants in our community to pass without comment — we’re not defending national security; we’re compromising it.”
www.reuters.com/world/us/ex-...
“If we allow the quiet dismissal of dedicated public servants in our community to pass without comment — we’re not defending national security; we’re compromising it.”
www.reuters.com/world/us/ex-...
Reposted by Andrea
At this point it's not even just that they're lying, it's that the lies are so insultingly obvious. This is up there with "no, the details of an imminent airstrike weren't classified" and "we have no way of getting abductees back from the guy we're paying to house them."
Tulsi Gabbard claims that intelligence professionals have told her that under Biden they were expected to spend half their day on "DEI work"
April 25, 2025 at 6:51 PM
At this point it's not even just that they're lying, it's that the lies are so insultingly obvious. This is up there with "no, the details of an imminent airstrike weren't classified" and "we have no way of getting abductees back from the guy we're paying to house them."
Reposted by Andrea
🚨 Erlang SSH RCE (CVE-2025-32433) is a significant supply chain risks to ICS and OT devices, particularly critical networking equipment like routers, switches, and smart sensors. The public availability of a POC makes this vulnerability especially concerning, as it is straightforward to exploit.
April 25, 2025 at 8:02 PM
🚨 Erlang SSH RCE (CVE-2025-32433) is a significant supply chain risks to ICS and OT devices, particularly critical networking equipment like routers, switches, and smart sensors. The public availability of a POC makes this vulnerability especially concerning, as it is straightforward to exploit.
Reposted by Andrea
My first blog with Proofpoint is live! And we love a good crossover. State-sponsored actors try their hand at ClickFix - the hottest thing in cybercrime. Meet the North Koreans, Iranians, and Russians who are upping their social engineering game www.proofpoint.com/us/blog/thre...
Around the World in 90 Days: State-Sponsored Actors Try ClickFix | Proofpoint US
Key Findings While primarily a technique affiliated with cybercriminal actors, Proofpoint researchers discovered state-sponsored actors in multiple campaigns using the ClickFix social
www.proofpoint.com
April 17, 2025 at 11:12 AM
My first blog with Proofpoint is live! And we love a good crossover. State-sponsored actors try their hand at ClickFix - the hottest thing in cybercrime. Meet the North Koreans, Iranians, and Russians who are upping their social engineering game www.proofpoint.com/us/blog/thre...
Reposted by Andrea
"the president defied a Supreme Court ruling to return a man mistakenly sent to a gulag... and spoke of sending Americans to foreign concentration camps.
This is the beginning of an American policy of state terror, and it has to be identified as such to be stopped"
snyder.substack.com/p/state-terror
This is the beginning of an American policy of state terror, and it has to be identified as such to be stopped"
snyder.substack.com/p/state-terror
State Terror
A brief guide for Americans
snyder.substack.com
April 15, 2025 at 3:02 PM
"the president defied a Supreme Court ruling to return a man mistakenly sent to a gulag... and spoke of sending Americans to foreign concentration camps.
This is the beginning of an American policy of state terror, and it has to be identified as such to be stopped"
snyder.substack.com/p/state-terror
This is the beginning of an American policy of state terror, and it has to be identified as such to be stopped"
snyder.substack.com/p/state-terror
Reposted by Andrea
Here's DOGE behaving like an APT or Scattered Spider
DOGE officials engaged in a security breach from the National Labor Relations Board, likely taking data "on unions, ongoing legal cases and corporate secrets" unrelated to efficiency, and then tried to cover their tracks. If they are doing it here, no reason to assume they are not doing it elsewhere
April 15, 2025 at 1:16 PM
Here's DOGE behaving like an APT or Scattered Spider
Extensive & really concerning report from NPR here about DOGEs exfiltration of data at the Dept. of Labor. Within the activity were indications of suspicious activity & access attempts from Russian IPs. Overall things that should NOT be happening to US Labor related data www.npr.org/2025/04/15/n...
A whistleblower's disclosure details how DOGE may have taken sensitive labor data
A whistleblower tells Congress and NPR that DOGE may have taken sensitive labor data and hid its tracks. "None of that ... information should ever leave the agency," said a former NLRB official.
www.npr.org
April 15, 2025 at 1:14 PM
Extensive & really concerning report from NPR here about DOGEs exfiltration of data at the Dept. of Labor. Within the activity were indications of suspicious activity & access attempts from Russian IPs. Overall things that should NOT be happening to US Labor related data www.npr.org/2025/04/15/n...
Reposted by Andrea
Everyone seems to have forgotten I attacked Ukraine every single day Trump was POTUS the 1st time.
Every. Single. Day.
Every. Single. Day.
April 15, 2025 at 12:15 PM
Everyone seems to have forgotten I attacked Ukraine every single day Trump was POTUS the 1st time.
Every. Single. Day.
Every. Single. Day.
Reposted by Andrea
If you are National Guard or active duty military & you are ordered to violate the Constitutional rights of your fellow Americans, call the Gl Rights Hotline 1-877-447-4487
There is support, you don't have to go through with it.
There is support, you don't have to go through with it.
April 15, 2025 at 1:45 AM
If you are National Guard or active duty military & you are ordered to violate the Constitutional rights of your fellow Americans, call the Gl Rights Hotline 1-877-447-4487
There is support, you don't have to go through with it.
There is support, you don't have to go through with it.
Reposted by Andrea
The Trump admin has just detained Mohsen Mahdawi, who:
–has green card
–was Columbia Buddhist club president
–saw his best friend shot & killed by Israeli soldier
–said "we are against antisemitism because antisemitism is a form of injustice, and injustice anywhere is a threat to justice everywhere"
–has green card
–was Columbia Buddhist club president
–saw his best friend shot & killed by Israeli soldier
–said "we are against antisemitism because antisemitism is a form of injustice, and injustice anywhere is a threat to justice everywhere"
April 14, 2025 at 6:08 PM
The Trump admin has just detained Mohsen Mahdawi, who:
–has green card
–was Columbia Buddhist club president
–saw his best friend shot & killed by Israeli soldier
–said "we are against antisemitism because antisemitism is a form of injustice, and injustice anywhere is a threat to justice everywhere"
–has green card
–was Columbia Buddhist club president
–saw his best friend shot & killed by Israeli soldier
–said "we are against antisemitism because antisemitism is a form of injustice, and injustice anywhere is a threat to justice everywhere"
We need more of this energy. Every single university, business, media outlet, organization, & individual NEEDS to stand up to this administration. Right fucking now & for every day forward. The sooner we push back, the better. We can’t hesitate or be afraid. Fascists rely on that. We cannot give in.
Harvard to Trump: “Fuck you. See you in court.”
BREAKING: On Friday, the federal government issued new demands of Harvard University. The university's lawyers just responded: back off.
April 14, 2025 at 6:26 PM
We need more of this energy. Every single university, business, media outlet, organization, & individual NEEDS to stand up to this administration. Right fucking now & for every day forward. The sooner we push back, the better. We can’t hesitate or be afraid. Fascists rely on that. We cannot give in.
Look. This is where the rubber meets the road in our system. Either we are a nation of laws that everyone is subjected to, or we are not. The president of the United States, together with a South American autocrat, appears to believe it’s the latter. 1/2 www.nytimes.com/live/2025/04...
Trump Live Updates: U.S. and El Salvador Say They Won’t Return Man Who Was Mistakenly Deported
www.nytimes.com
April 14, 2025 at 6:21 PM
Look. This is where the rubber meets the road in our system. Either we are a nation of laws that everyone is subjected to, or we are not. The president of the United States, together with a South American autocrat, appears to believe it’s the latter. 1/2 www.nytimes.com/live/2025/04...
It’s absolutely the case that actions Russia has taken against Ukraine have been wholly unprovoked. Russia has been interfering in Ukrainian politics since at least 2014, then they illegally annexed territory, then attempted to take more by force in 2020. Any rational person supports Ukraine here
Just to be clear: 1) Ru first attacked Ukraine in 2014 and the war raged throughout Trump’s first term and he didn’t stop Ru; 2) there’s one and only one way of “preventing” Ru’s 2022 invasion: Ukraine’s unconditional capitulation. He’s angry at Ukraine for refusing to surrender.
April 14, 2025 at 3:27 PM
It’s absolutely the case that actions Russia has taken against Ukraine have been wholly unprovoked. Russia has been interfering in Ukrainian politics since at least 2014, then they illegally annexed territory, then attempted to take more by force in 2020. Any rational person supports Ukraine here
Reposted by Andrea
More authoritarian behaviour: threatening to use regulatory and economic pressure on a television station which broadcasts political dissent.
Seems difficult for Zelensky to strategize on diplomacy with US if just doing an interview with 60 Minutes leads to this reaction
April 14, 2025 at 8:39 AM
More authoritarian behaviour: threatening to use regulatory and economic pressure on a television station which broadcasts political dissent.
Reposted by Andrea
“Trump used to say: if I were the president this would never happen. But now he can’t say this. All these atrocities are occurring on his watch. He is the president now.”
Ukraine wants FBI inquiry as Trump calls Sumy strike a ‘mistake’
A senior MP called for an investigation into Russian propaganda in the White House after Trump’s comments on a missile strike that left at least 34 dead
www.thetimes.com
April 14, 2025 at 10:20 AM
“Trump used to say: if I were the president this would never happen. But now he can’t say this. All these atrocities are occurring on his watch. He is the president now.”
Reposted by Andrea
The death toll from Russia’s Palm Sunday ballistic missile attack on Sumy is now 32 killed, including 2 children, and 99 people injured, of which 11 are children, according to the state emergency service of Ukraine.
Russia just killed dozens of Ukrainians in a missile strike on Palm Sunday, a day after Trump’s envoy Steve Witkoff met Putin, shook hands and posed for cameras. Witkoff visited an Orthodox Christian cathedral. Today church-goers were targeted.
Report w/ @maxseddon.bsky.social
on.ft.com/42k2tuc
Report w/ @maxseddon.bsky.social
on.ft.com/42k2tuc
Russia targets Ukrainian city on Palm Sunday
[FREE TO READ] Dozens killed and at least 80 injured in missile attack on Sumy
on.ft.com
April 13, 2025 at 1:44 PM
The death toll from Russia’s Palm Sunday ballistic missile attack on Sumy is now 32 killed, including 2 children, and 99 people injured, of which 11 are children, according to the state emergency service of Ukraine.
Reposted by Andrea
This is what “partial ceasefire” in the sphere of energy looks like in reality: #Russia may target #Ukraine’s power plants less frequently — but has doubled down on killing Ukrainians, including children. A week ago, it struck Kryvyi Rih; this time, it’s Sumy.
Russia just killed dozens of Ukrainians in a missile strike on Palm Sunday, a day after Trump’s envoy Steve Witkoff met Putin, shook hands and posed for cameras. Witkoff visited an Orthodox Christian cathedral. Today church-goers were targeted.
Report w/ @maxseddon.bsky.social
on.ft.com/42k2tuc
Report w/ @maxseddon.bsky.social
on.ft.com/42k2tuc
Russia targets Ukrainian city on Palm Sunday
[FREE TO READ] Dozens killed and at least 80 injured in missile attack on Sumy
on.ft.com
April 13, 2025 at 1:03 PM
This is what “partial ceasefire” in the sphere of energy looks like in reality: #Russia may target #Ukraine’s power plants less frequently — but has doubled down on killing Ukrainians, including children. A week ago, it struck Kryvyi Rih; this time, it’s Sumy.
Reminder that Curtis Yarvin, the scumbag seen here admitting to be a ‘moderate Holocaust denier” has been cited by (and potentially even inspired) none other than JD Vance. open.spotify.com/episode/2n0l...
April 13, 2025 at 4:01 AM
Reminder that Curtis Yarvin, the scumbag seen here admitting to be a ‘moderate Holocaust denier” has been cited by (and potentially even inspired) none other than JD Vance. open.spotify.com/episode/2n0l...