Kade Morton
@kademorton.bsky.social
Empower. Defend. Prevail.
Cofounder of Arachne Digital
Cofounder of Arachne Digital
Reposted by Kade Morton
✈️👾 Scattered Spider: Anatomy of a Modern AiTM Threat
🔍 How the crew hijacks MFA with Evilginx
🕷️ Supplier pivots (T1199 Trusted Relationship)
🛡️ Rapid-fire mitigations & SIEM hunts
Read the full breakdown ➜ arachnedigital.medium.com/scattered-sp...
#ThreatIntel #Evilginx #ATTACK #CyberSecurity
🔍 How the crew hijacks MFA with Evilginx
🕷️ Supplier pivots (T1199 Trusted Relationship)
🛡️ Rapid-fire mitigations & SIEM hunts
Read the full breakdown ➜ arachnedigital.medium.com/scattered-sp...
#ThreatIntel #Evilginx #ATTACK #CyberSecurity
Scattered Spider: Anatomy of a Modern AiTM Threat and How to Stop It
Scattered Spider (UNC3944 / Octo Tempest) is driving a renewed surge of intrusions against high-availability enterprises. After ransacking…
arachnedigital.medium.com
July 6, 2025 at 6:50 AM
✈️👾 Scattered Spider: Anatomy of a Modern AiTM Threat
🔍 How the crew hijacks MFA with Evilginx
🕷️ Supplier pivots (T1199 Trusted Relationship)
🛡️ Rapid-fire mitigations & SIEM hunts
Read the full breakdown ➜ arachnedigital.medium.com/scattered-sp...
#ThreatIntel #Evilginx #ATTACK #CyberSecurity
🔍 How the crew hijacks MFA with Evilginx
🕷️ Supplier pivots (T1199 Trusted Relationship)
🛡️ Rapid-fire mitigations & SIEM hunts
Read the full breakdown ➜ arachnedigital.medium.com/scattered-sp...
#ThreatIntel #Evilginx #ATTACK #CyberSecurity
If you're buying into the AI SOC hype, make sure you are doing the basics of log management!
AI agents are only as good as the information they have to work with. If you haven't got the right logs in your SIEM, you can have the best AI agent in the world, but it won't detect anything.
AI agents are only as good as the information they have to work with. If you haven't got the right logs in your SIEM, you can have the best AI agent in the world, but it won't detect anything.
🤖 Your AI-driven SOC is only as smart as its logs. We show how a threat-informed matrix cuts noise, trims storage 💸, and boosts detection 🚀
Get the details: medium.com/p/c4849cc31c35 #AI #BlueTeam #ThreatIntel #SIEM
Get the details: medium.com/p/c4849cc31c35 #AI #BlueTeam #ThreatIntel #SIEM
Smarter Logs for Smarter SOCs: Threat-Informed Telemetry That Powers AI Agents and Cuts Costs
A Familiar Hype Cycle
medium.com
June 22, 2025 at 2:17 AM
If you're buying into the AI SOC hype, make sure you are doing the basics of log management!
AI agents are only as good as the information they have to work with. If you haven't got the right logs in your SIEM, you can have the best AI agent in the world, but it won't detect anything.
AI agents are only as good as the information they have to work with. If you haven't got the right logs in your SIEM, you can have the best AI agent in the world, but it won't detect anything.
Keen to get feedback, as I think this is pretty good!
⚡We just dropped a deep-dive on where cyber threat intelligence fits in a security program and how to turn it into action (feat. a live telecom/ISP use-case).
Read, copy, deploy 👉 arachnedigital.medium.com/how-cyber-th...
#CTI #ThreatIntel #SecurityOps
Read, copy, deploy 👉 arachnedigital.medium.com/how-cyber-th...
#CTI #ThreatIntel #SecurityOps
How Cyber Threat Intelligence Fits Into Cyber Security
The daily grind in a SOC
arachnedigital.medium.com
June 7, 2025 at 4:52 AM
Keen to get feedback, as I think this is pretty good!
Reposted by Kade Morton
Come listen to our co-founder @kademorton.bsky.social talk sustainable open source in security!
podcast.sustainoss.org/271
Thanks @abbycabs.dev and @github.com for supporting #MaintainerMonth and Richard Littauer and @erioldoesdesign.bsky.social for hosting
#opensource #cybersecurity #blueskyTech
podcast.sustainoss.org/271
Thanks @abbycabs.dev and @github.com for supporting #MaintainerMonth and Richard Littauer and @erioldoesdesign.bsky.social for hosting
#opensource #cybersecurity #blueskyTech
Maintainer Month 2025 with Kade Morton on Cybersecurity
Kade Morton of Arachne Digital joins hosts Richard and Eriol to delve into cybersecurity, open source security, and global digital threat contexts.
podcast.sustainoss.org
May 30, 2025 at 11:29 PM
Come listen to our co-founder @kademorton.bsky.social talk sustainable open source in security!
podcast.sustainoss.org/271
Thanks @abbycabs.dev and @github.com for supporting #MaintainerMonth and Richard Littauer and @erioldoesdesign.bsky.social for hosting
#opensource #cybersecurity #blueskyTech
podcast.sustainoss.org/271
Thanks @abbycabs.dev and @github.com for supporting #MaintainerMonth and Richard Littauer and @erioldoesdesign.bsky.social for hosting
#opensource #cybersecurity #blueskyTech
Reposted by Kade Morton
I'm excited to be speaking at UX Scotland in June uxscotland.net
uxscotland.net/programme/wh...
This has been an aspiration speaking engagement for years for me. I'm excited to connect with speakers and attendees on designing in humanitarian and human rights technology spaces.
uxscotland.net/programme/wh...
This has been an aspiration speaking engagement for years for me. I'm excited to connect with speakers and attendees on designing in humanitarian and human rights technology spaces.
May 22, 2025 at 8:37 AM
I'm excited to be speaking at UX Scotland in June uxscotland.net
uxscotland.net/programme/wh...
This has been an aspiration speaking engagement for years for me. I'm excited to connect with speakers and attendees on designing in humanitarian and human rights technology spaces.
uxscotland.net/programme/wh...
This has been an aspiration speaking engagement for years for me. I'm excited to connect with speakers and attendees on designing in humanitarian and human rights technology spaces.
Reposted by Kade Morton
We hosted a panel for #MaintainerMonth to talk open source, security & community care.
🔧 Collective maintenance
🌍 Public sector support
💞 Emotional labor in OSS
Catch the full convo: www.youtube.com/watch?v=e9GS...
Thank you @github.com for supporting #MaintainerMonth!
#OpenSource #CyberSecurity
🔧 Collective maintenance
🌍 Public sector support
💞 Emotional labor in OSS
Catch the full convo: www.youtube.com/watch?v=e9GS...
Thank you @github.com for supporting #MaintainerMonth!
#OpenSource #CyberSecurity
Open Source Cyber: Co Creating Our Futures #Maintainer Month
YouTube video by Arachne Digital
www.youtube.com
May 24, 2025 at 4:01 AM
We hosted a panel for #MaintainerMonth to talk open source, security & community care.
🔧 Collective maintenance
🌍 Public sector support
💞 Emotional labor in OSS
Catch the full convo: www.youtube.com/watch?v=e9GS...
Thank you @github.com for supporting #MaintainerMonth!
#OpenSource #CyberSecurity
🔧 Collective maintenance
🌍 Public sector support
💞 Emotional labor in OSS
Catch the full convo: www.youtube.com/watch?v=e9GS...
Thank you @github.com for supporting #MaintainerMonth!
#OpenSource #CyberSecurity
I wrote a blog post for #MaintainerMonth!
Big thank you to @abbycabs.dev and @github.com for the opportunity to partner and help secure the open source ecosystem.
Big thank you to @abbycabs.dev and @github.com for the opportunity to partner and help secure the open source ecosystem.
Maintainers shouldn’t have to fend off cyber threats alone.
We’re giving away free cyber threat intel reports for #MaintainerMonth
What’s in them and why it matters👇
medium.com/p/141a2968b3c7
Check the partner pack for your copy: maintainermonth.github.com/partner-pack
🛡️💻🫶
We’re giving away free cyber threat intel reports for #MaintainerMonth
What’s in them and why it matters👇
medium.com/p/141a2968b3c7
Check the partner pack for your copy: maintainermonth.github.com/partner-pack
🛡️💻🫶
Securing the Stack: Why Maintainers Deserve Real Threat Intel This May
It’s May, which means it’s Maintainer Month, a time to spotlight the people who quietly keep the digital world running: open source…
medium.com
May 10, 2025 at 6:49 PM
I wrote a blog post for #MaintainerMonth!
Big thank you to @abbycabs.dev and @github.com for the opportunity to partner and help secure the open source ecosystem.
Big thank you to @abbycabs.dev and @github.com for the opportunity to partner and help secure the open source ecosystem.
Very proud that @arachnedigital.bsky.social is a part of #MaintainerMonth and giving back to open source.
Thanks for all the work you do @abbycabs.dev and @github.com in providing a space for the global commons to grow and thrive.
Thanks for all the work you do @abbycabs.dev and @github.com in providing a space for the global commons to grow and thrive.
We are excited to be partnering with GitHub for #MaintainerMonth!
Check out the partner pack for free stuff from amazing companies, including us! We're giving away cyber threat intelligence reports to help maintainers secure their projects and organisations!
Thank you @github.com @abbycabs.dev !
Check out the partner pack for free stuff from amazing companies, including us! We're giving away cyber threat intelligence reports to help maintainers secure their projects and organisations!
Thank you @github.com @abbycabs.dev !
Happy #MaintainerMonth! 🎉 To celebrate, we've launched a special Partner Pack filled with exclusive discounts, freebies, and perks. 🎁 See what's inside! 👇
maintainermonth.github.com/partner-pack
maintainermonth.github.com/partner-pack
May 1, 2025 at 8:07 PM
Very proud that @arachnedigital.bsky.social is a part of #MaintainerMonth and giving back to open source.
Thanks for all the work you do @abbycabs.dev and @github.com in providing a space for the global commons to grow and thrive.
Thanks for all the work you do @abbycabs.dev and @github.com in providing a space for the global commons to grow and thrive.
Love seeing our stuff getting used out in the wild and people finding it of use!
Someone just added our blog post on the 3 levels of threat intel to their SecOps list on Medium. That’s open source in action, sharing, learning, helping each other get better. Check out the SecOps list that Kashifhasnain curates: medium.com/@kashifhasna...
List: SecOps | Curated by Kashifhasnain | Medium
500+ stories
medium.com
April 20, 2025 at 3:28 AM
Love seeing our stuff getting used out in the wild and people finding it of use!
Despite all the recent chaos, it's good to see that ATT&CK is still continuing to be built out. www.linkedin.com/feed/update/...
#attackingmondays #mitreattack #attackv17 #cyberthreatintel… | Lex Crumpton
🔥 MITRE ATT&CKing Mondays lands right before the big v17 release—so let’s talk about it! 🔥
We're just around the corner from ATT&CK v17 going live on April 22, and April 21st ATT&CKin...
www.linkedin.com
April 18, 2025 at 5:13 AM
Despite all the recent chaos, it's good to see that ATT&CK is still continuing to be built out. www.linkedin.com/feed/update/...
Reposted by Kade Morton
Most orgs think CTI = IOCs. That’s just tactical intel.
You need all 3 levels:
🔹 Strategic
🔹 Operational
🔹 Tactical
New post from Arachne Digital breaks it down + how to use each.
🧵 Read here: medium.com/@arachnedigi...
You need all 3 levels:
🔹 Strategic
🔹 Operational
🔹 Tactical
New post from Arachne Digital breaks it down + how to use each.
🧵 Read here: medium.com/@arachnedigi...
The Three Levels of Cyber Threat Intelligence (And Why You Need All of Them)
By Kade Morton, Co-Founder, Arachne Digital
medium.com
April 13, 2025 at 12:20 AM
Most orgs think CTI = IOCs. That’s just tactical intel.
You need all 3 levels:
🔹 Strategic
🔹 Operational
🔹 Tactical
New post from Arachne Digital breaks it down + how to use each.
🧵 Read here: medium.com/@arachnedigi...
You need all 3 levels:
🔹 Strategic
🔹 Operational
🔹 Tactical
New post from Arachne Digital breaks it down + how to use each.
🧵 Read here: medium.com/@arachnedigi...
You know there is chaos in the world when every single podcast you listen to opens with "This podcast was recorded the day before x occurred, just in case you're wondering why we don't discuss it."
April 11, 2025 at 5:46 AM
You know there is chaos in the world when every single podcast you listen to opens with "This podcast was recorded the day before x occurred, just in case you're wondering why we don't discuss it."
Threat-Informed Defence. Here's a primer if you're working in cybersecurity and you're not across this concept yet. medium.com/p/54b67b7085db
Understanding Threat-Informed Defence
Threat-informed defence (TID) is a proactive cybersecurity strategy that helps organisations stay ahead of adversaries by systematically…
medium.com
April 9, 2025 at 8:36 PM
Threat-Informed Defence. Here's a primer if you're working in cybersecurity and you're not across this concept yet. medium.com/p/54b67b7085db
Very interested in this. Russia has diverted APTs like Cozy Bear from espionage to go after domestic drug rings before. Is this a CEO making side money, or a Wagner-style story of a state tool gaining too much power and meeting ‘unfortunate’ ends? therecord.media/doppelganger...
Russia arrests CEO of tech company linked to Doppelgänger disinformation campaign
Two other employees at the St. Petersburg-based hosting provider Azea Group were arrested. The company has alleged links to state-sponsored disinformation campaigns and cybercriminal infrastructure.
therecord.media
April 8, 2025 at 6:42 AM
Very interested in this. Russia has diverted APTs like Cozy Bear from espionage to go after domestic drug rings before. Is this a CEO making side money, or a Wagner-style story of a state tool gaining too much power and meeting ‘unfortunate’ ends? therecord.media/doppelganger...
Reposted by Kade Morton
📢 Last call: Join us tomorrow for our Open Source Cyber Security Series on Crypto Crimes!
We'll dive into what cryptocurrency is, recent crimes, and how it might be combatted with threat-informed defense tools.
RSVP: www.eventbrite.com/e/open-sourc...
We'll dive into what cryptocurrency is, recent crimes, and how it might be combatted with threat-informed defense tools.
RSVP: www.eventbrite.com/e/open-sourc...
March 20, 2025 at 11:51 PM
📢 Last call: Join us tomorrow for our Open Source Cyber Security Series on Crypto Crimes!
We'll dive into what cryptocurrency is, recent crimes, and how it might be combatted with threat-informed defense tools.
RSVP: www.eventbrite.com/e/open-sourc...
We'll dive into what cryptocurrency is, recent crimes, and how it might be combatted with threat-informed defense tools.
RSVP: www.eventbrite.com/e/open-sourc...
Reposted by Kade Morton
From memecoins to crypto heists, there's no shortage of news about cryptocurrency 🪙.
Arachne Digital cofounder, @kademorton.bsky.social will discuss cyber criminals and their use of cryptocurrency for this month's Open Source Cyber Security Series.
🔗 RSVP:
www.eventbrite.co.nz/e/open-sourc...
Arachne Digital cofounder, @kademorton.bsky.social will discuss cyber criminals and their use of cryptocurrency for this month's Open Source Cyber Security Series.
🔗 RSVP:
www.eventbrite.co.nz/e/open-sourc...
Open Source Cyber Security: Crypto Crimes
Join Arachne Digital for our virtual community call. This month, we will discuss cyber criminals and their use of cryptocurrency
www.eventbrite.co.nz
March 11, 2025 at 11:48 PM
From memecoins to crypto heists, there's no shortage of news about cryptocurrency 🪙.
Arachne Digital cofounder, @kademorton.bsky.social will discuss cyber criminals and their use of cryptocurrency for this month's Open Source Cyber Security Series.
🔗 RSVP:
www.eventbrite.co.nz/e/open-sourc...
Arachne Digital cofounder, @kademorton.bsky.social will discuss cyber criminals and their use of cryptocurrency for this month's Open Source Cyber Security Series.
🔗 RSVP:
www.eventbrite.co.nz/e/open-sourc...
Reposted by Kade Morton
🗓️ Just a few days away from our first contributor onboarding call of the year.
Join our team to learn more about our open source projects and community.
🔗 RSVP on Eventbrite: www.eventbrite.com/e/open-sourc...
Join our team to learn more about our open source projects and community.
🔗 RSVP on Eventbrite: www.eventbrite.com/e/open-sourc...
Open Source Cyber Security Contributor Onboarding
Connect directly with our global open source cyber security team at Arachne Digital & learn how to contribute to our open source projects.
www.eventbrite.com
February 25, 2025 at 5:19 PM
🗓️ Just a few days away from our first contributor onboarding call of the year.
Join our team to learn more about our open source projects and community.
🔗 RSVP on Eventbrite: www.eventbrite.com/e/open-sourc...
Join our team to learn more about our open source projects and community.
🔗 RSVP on Eventbrite: www.eventbrite.com/e/open-sourc...
Reposted by Kade Morton
Fresh from our pitch in London earlier this month, join us for our Open Source Cyber Security Contributor Onboarding 💫.
🌎 Meet with our global team
💻 Learn about our open source projects and how to contribute
💬 Ask questions & connect with peers
🔗 RSVP here: www.eventbrite.com/e/open-sourc...
🌎 Meet with our global team
💻 Learn about our open source projects and how to contribute
💬 Ask questions & connect with peers
🔗 RSVP here: www.eventbrite.com/e/open-sourc...
February 20, 2025 at 5:27 PM
Fresh from our pitch in London earlier this month, join us for our Open Source Cyber Security Contributor Onboarding 💫.
🌎 Meet with our global team
💻 Learn about our open source projects and how to contribute
💬 Ask questions & connect with peers
🔗 RSVP here: www.eventbrite.com/e/open-sourc...
🌎 Meet with our global team
💻 Learn about our open source projects and how to contribute
💬 Ask questions & connect with peers
🔗 RSVP here: www.eventbrite.com/e/open-sourc...
I gave a talk!
Our co-founder, @kademorton.bsky.social , gave a talk at @owasp.org's New Zealand day last year about applying threat intelligence to defend organisations. Check out the talk here: www.youtube.com/watch?app=de...
Kade Morton - Dynamic Defense: Crafting threat models with real-world Intelligence
YouTube video by OWASP NZ Day
www.youtube.com
February 16, 2025 at 11:51 AM
I gave a talk!
seekingalpha.com/news/4401706...
Mixed messages out of OpenAI around open source.
OpenAI chief executive Sam Altman said on Friday the company has been "on the wrong side of history" regarding open source.
That is a big statement.
Mixed messages out of OpenAI around open source.
OpenAI chief executive Sam Altman said on Friday the company has been "on the wrong side of history" regarding open source.
That is a big statement.
OpenAI reconsiders closed-source approach after DeepSeek shocker (NASDAQ:MSFT)
OpenAI faces competition from China's DeepSeek with open-source AI models.
seekingalpha.com
February 4, 2025 at 6:35 PM
seekingalpha.com/news/4401706...
Mixed messages out of OpenAI around open source.
OpenAI chief executive Sam Altman said on Friday the company has been "on the wrong side of history" regarding open source.
That is a big statement.
Mixed messages out of OpenAI around open source.
OpenAI chief executive Sam Altman said on Friday the company has been "on the wrong side of history" regarding open source.
That is a big statement.
The fact that Ukraine is able to do this, and execute it so well, on Russian soil, doesn't bode well for Russia's war effort. www.theguardian.com/world/2025/f...
Moscow bomb kills pro-Russia paramilitary leader from Ukraine
Armen Sarkisyan, founder of battalion fighting against Ukraine, dies after blast that also killed bodyguard
www.theguardian.com
February 3, 2025 at 8:16 PM
The fact that Ukraine is able to do this, and execute it so well, on Russian soil, doesn't bode well for Russia's war effort. www.theguardian.com/world/2025/f...
I'm very excited to be taking part and can't wait to meet all the other finalists soon!
We are coming into a busy period for Arachne Digital! In just over a week's time our co-founders will be at the Shard in London, pitching as part of the Future of Capitalism competition! www.futureofcapitalism.tech
Tech Startup Competition
Pitch for up to $1m startup funding
www.futureofcapitalism.tech
February 2, 2025 at 1:43 AM
I'm very excited to be taking part and can't wait to meet all the other finalists soon!