ryanaraine.bsky.social
Ryan Naraine
@ryanaraine.bsky.social
910 followers 0 following 260 posts
Three Buddy Problem https://securityconversations.com
securityconversations.com
Posts Media Videos Starter Packs
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 26m
YouTube
youtu.be/fsDJTtIfMc8?...
Chris Eng on lessons learned from the NSA, @Stake, Veracode
YouTube video by Three Buddy Problem
youtu.be
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 27m
Listen on Spotify open.spotify.com/episode/5FKD...
Chris Eng on lessons learned from the NSA, @Stake, Veracode, and 20 years in cybersecurity
open.spotify.com
1
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 27m
From my conversation with Chris Eng youtube.com/shorts/-PzmE...
The problem with AI training itself #ai #artificialintelligence #llm #supplychain #cybersecurity
YouTube video by Three Buddy Problem
youtube.com
1
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 20h
YouTube youtu.be/fsDJTtIfMc8?...
Chris Eng on lessons learned from the NSA, @Stake, Veracode
YouTube video by Three Buddy Problem
youtu.be
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 20h
My interview with Chris Eng for the SecuirtyConversations show is now up on YouTube @ceng.bsky.social
www.youtube.com/watch?v=fsDJ...
Chris Eng on lessons learned from the NSA, @Stake, Veracode
YouTube video by Three Buddy Problem
www.youtube.com
2
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 22h
the commuter
1 1
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 22h
Apple Podcasts podcasts.apple.com/us/podcast/c...
Chris Eng on lessons learned from the NSA, @Stake, Veracode, and 20 years in cybersecurity
Podcast Episode · Three Buddy Problem · 10/07/2025 · 45m
podcasts.apple.com
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 22h
FULL SHOW
open.spotify.com/episode/5FKD...
Chris Eng on lessons learned from the NSA, @Stake, Veracode, and 20 years in cybersecurity
open.spotify.com
1
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 22h
"How many CISOs are personally briefing their board of directors? Chris Eng with thoughts @ceng.bsky.social
1 1
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 22h
Apple Podcasts podcasts.apple.com/us/podcast/c...
Chris Eng on lessons learned from the NSA, @Stake, Veracode, and 20 years in cybersecurity
Podcast Episode · Three Buddy Problem · 10/07/2025 · 45m
podcasts.apple.com
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 22h
SPOTIFY
open.spotify.com/episode/5FKD...
Chris Eng on lessons learned from the NSA, @Stake, Veracode, and 20 years in cybersecurity
open.spotify.com
1
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 22h
For the SecurityConversations show, I interviewed appsec and software supply chain security expert Chris Eng @ceng.bsky.social

LISTEN securityconversations.com/episode/chri...
Chris Eng on lessons learned from the NSA, @Stake, Veracode, and 20 years in cybersecurity - Security Conversations
This week on Security Conversations, Ryan sits down with Chris Eng, former Chief Research Officer at Veracode, to talk about life after nearly two decades […]
securityconversations.com
3 3 3
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 2d
This week's show is up on YouTube. We dig into an Oracle vuln leading to ransomware extortion campaigns youtu.be/519suxip6uM
Oracle cl0p ransomware crisis, EU drone sightings, Cisco bootkit fallout
YouTube video by Three Buddy Problem
youtu.be
6
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 5d
We're streaming live to YouTube in ~20 mins. Come hang out with us www.youtube.com/watch?v=zjdh...
Three Buddy Problem (Episode 66)
YouTube video by Three Buddy Problem
www.youtube.com
5 5
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 7d
it's coming, we're building up scarcity :)
2
Reposted by Ryan Naraine
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 9d
Costin with some advice for threat hunters @craiu.bsky.social @jags.bsky.social
youtube.com/shorts/z6fX1...
Costin's advice for threat hunters: Look at Ukraine CERT reports
YouTube video by Three Buddy Problem
youtube.com
2 4
Reposted by Ryan Naraine
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 11d
The three buddies back together for a fresh problem. @craiu.bsky.social @jags.bsky.social

WATCH on YouTube youtu.be/yBrNMWvYQ6A?...
Cisco firewall zero-days and bootkits in the wild
YouTube video by Three Buddy Problem
youtu.be
1 5 6
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 9d
Costin with some advice for threat hunters @craiu.bsky.social @jags.bsky.social
youtube.com/shorts/z6fX1...
Costin's advice for threat hunters: Look at Ukraine CERT reports
YouTube video by Three Buddy Problem
youtube.com
2 4
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 10d
Watch on YouTube youtu.be/yBrNMWvYQ6A
1 2
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 10d
This week's pod is up on Spotify open.spotify.com/episode/5c5t...
Cisco firewall zero-days and bootkits in the wild
open.spotify.com
2 3
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 11d
The three buddies back together for a fresh problem. @craiu.bsky.social @jags.bsky.social

WATCH on YouTube youtu.be/yBrNMWvYQ6A?...
Cisco firewall zero-days and bootkits in the wild
YouTube video by Three Buddy Problem
youtu.be
1 5 6
Reposted by Ryan Naraine
hrcberkeley.bsky.social
Human Rights Center @hrcberkeley.bsky.social · 12d
HRC Senior Director @lindsaysfreeman.bsky.social cial joined @sentinellabs.bsky.social's Juan Andres Guerrero-Saade and @ryanaraine.bsky.social to discuss the Wagner Group’s war crimes in Mali at #LABScon25 for The Three Buddy Problem podcast. Full episode here: www.youtube.com/watch?v=XOAa...
2 4
Reposted by Ryan Naraine
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 14d
NEW!! TBP x LABScon live podcasts! 😍

Visi Stark on lessons from the APT1 report youtu.be/CTFd6KyiQzU

Lindsay Freeman on tracking war criminals on social media youtu.be/XOAaLN4zmGc

Aurora Johnson/Trevor HIlligoss on flushing China's 'Internet Toilets' youtu.be/2g_DgVSaSvI
Live at LABScon: Visi Stark shares memories of creating the APT1 report
YouTube video by Three Buddy Problem
youtu.be
3 5
Reposted by Ryan Naraine
ryanaraine.bsky.social
Ryan Naraine @ryanaraine.bsky.social · 14d
WATCH: A conversation with Visi Stark on nation-state stuff @invisig0th.bsky.social @jags.bsky.social
youtu.be/CTFd6KyiQzU?...
4 8
Reposted by Ryan Naraine
matrosov.bsky.social
Alex Matrosov @matrosov.bsky.social · 14d
This research demonstrates how easily full persistence can be achieved on Supermicro BMC, allowing complete takeover of the server.

- CVE-2025-7937: bypassed “fix” for CVE-2024-10237.
- CVE-2025-6198: Supermicro RoT bypass.

www.binarly.io/blog/broken-...
1 1