Wrapping up training day for #BSidesTampa2026! Huge thanks to everyone who joined the workshops and labs. A special shoutout to the trainers and krewe for their incredible efforts. Ready to carry this momentum into the main event - see you at the conference! #BREAKTHECURSE

2026 BSides Tampa *Unlucky 13* Session Announcement 11:00 AM – 12:00 PM | Common SMB security gaps by Patrick Gorman Don't let this session and many others pass you by. If you haven't already, be sure to get your tickets here: bsidestampa.net/tickets #BSidesTampa2026

Thank you, Seal Cybersecurity Solutions, for being a GOLD 2026 BSides Tampa Sponsor! seal.security/ If you are interested in becoming a BSides Tampa Sponsor, please fill out this form: bsidestampa.net/sponsors #BSidesTampa2026 #Unlucky13BSides #InfoSecCommunity

🏴‍☠️ ROLL CALL! 🏴‍☠️ Who is coming to the 2026 Unlucky BSides Tampa happening May 16 at the USF Marshall Student Center?!?! Repost if you are. Still need a ticket? Snag yours here: bsidestampa.net/tickets #BSidesTampa2026 #Unlucky13BSides #InfoSecCommunity #Cybersecurity

Happy Easter to all who celebrate!

What does eating sushi at a gas station have to do with being a CISO? LIVE now with Thomas Quinn, T Rowe Price CISO on #unicorndispatchlive 🦄🎙️

👀👀👀

@OneRSAC 2026, that's a wrap. Five hands-on sessions, all grounded in real adversary behavior. Trey Bilbrey (@TCraf7): threat emulation, intel to live campaign Trey Bilbrey (@TCraf7) Michael Rogers (@ANC13NT ): IR meets adversarial exposure validation @FilipiPires: APT28 kill chain → repeatable emulation, real detection gaps @brysonbort Jacob Williams (@MalwareJake): LLMs in offensive ops. @brysonbort @Tom_VanNorman: securing legacy OT without killing production Evidence over assumption in every session. #RSAC2026 #ThreatEmulation

Lets go!! Be sure to check out Unicon 2026. cc: @mox_five

Landing today and will be out here until Thursday! If you are at @OneRSAC let me know, would love to meet up. cc: @mox_five

Improper Secure Boot configuration could be putting your organizations at a greater risk of exposure to threats. Our guidance outlines how to check for proper configuration and recover if needed. Review here! 🔗media.defense.gov/2025/Dec/1…

🍂 Happy Thanksgiving! 🍂 We are profoundly thankful for each one of you and the joy you bring into our lives. This special holiday is a wonderful occasion to express our gratitude and appreciation for the support and

Presentation is a wrap @CrowdStrike #FalCon2025 ! Great turn out and engagement. #apt #russia @mox_five

Scattered Spider IRL! @mox_five 🕸️

So common unfortunately! Exclusions in SIEM/EDR to AV continue to wreck companies. Eeek. @_JohnHammond

Heading to Fal.Con tomorrow! cc: @CrowdStrike - If you're there, send me a note to meet up!

Our latest MOXFIVE Monthly Insights is out! July brought a surge in ransomware activity with Inc. emerging as the most deployed variant, overtaking Akira and Qilin. The Technology sector was the most targeted, followed by Healthcare and Manufacturing. Several campaigns deploying Akira ransomware were linked to a previously disclosed vulnerability in the SonicWall SSL VPM (CVE-2024-40766). In our Case Study, we look at the SharePoint Zero-Day (CVE-2025-49704/06) which was used by multiple threat actors including state-backed groups. 🛡️ What Organizations Should Do: • Patch fast, rotate credentials, and harden external-facing apps • Segment networks, protect backups, and test recovery • Use EDR and monitor for post-exploit behavior As threat actors evolve, so must your defenses. MOXFIVE is here to help with response, recovery, and building resilient environments. Read the full Monthly Insights at bit.ly/3V9t7Ts #CyberSecurity #Ransomware #ThreatIntel #IncidentResponse #Akira #Qilin

Client’s vendor sent 4 hashes to them… almost 3 weeks after a breach. 🤦‍♂️ ✅ Good: full IOC set (IPs/domains, file hashes, shared compromised accounts, general TTPs) ⚠️ Okay: partial list 🚩 Bad: just hashes, late 🤮 #CyberSecurity #IOCs