783 Photos and videos
Pinned Tweet
25 Jan 2022
SOC Analysts DO NOT NEED A CISSP.
$52k? That would be low for the midwest, let alone IRVINE,CA!
And of course "you need to work on weekends 2 to 3 days a month (but you can get day offs when you work on weekends)"🧐
So much wrong with this, and yet this isnt even abnormal
41
34
228
Immanuel Chavoya retweeted
15 May 2024
🚀Exciting Breaking News! Our CEO, Immanuel Chavoya, the founder and CEO of RiskHorizon AI, was highlighted in a recent InfoSec piece from #RSAC that clarified the serious issues raised by the #NVDbacklog.
Read full article : infosecurity-magazine.com/ne…
1
2
303
Immanuel Chavoya retweeted
25 Sep 2023
Because nerds keep asking us about alleged Sony ransomware incident
tl;dr Threat Actors did not deploy ransomware, no corporate data was stolen, services not impacted. Data was exfiltrated from Jenkins, SVN, SonarQube, and Creator Cloud Development. They're extorting Sony
11
86
550
154,725
Immanuel Chavoya retweeted
13 Sep 2023
All ALPHV ransomware group did to compromise MGM Resorts was hop on LinkedIn, find an employee, then call the Help Desk.
A company valued at $33,900,000,000 was defeated by a 10-minute conversation.
143
1,072
4,603
1,583,598
8 Sep 2023
Malicious LLM's are on the rise, sparking AI Threat concerns👀. Many articles lack real context and countermeasures. I've tried to provide both in my guide.
Read the guide: linkedin.com/pulse/malicious…
#AI #Cybersecurity #StayInformed
122
14 Jul 2023
🚨Actively Exploited #ZeroDay Vulnerability in Zimbra Collaboration Suite (ZCS)🚨
➡️A XSS vulnerability has been discovered by Google TAG & is actively exploited in ZCS email servers
➡️ Apply the manual workaround provided by Zimbra to stop the bleeding
securityaffairs.com/148429/h…
A security vulnerability in Zimbra Collaboration Suite Version 8.8.15 that could potentially impact the confidentiality and integrity of your data has surfaced.
Read the blog for steps to apply the fix. hubs.ly/Q01XzK1h0
226
13 Jul 2023
Is the difference between us cyber defenders and threat actors simply how we chose to be paid?
grahamcluley.com/rogue-it-se…
88
North Korea test-fired 10 missiles last month. Expensive stuff for a country cut off from the global economy.
How do they do it? Via the world's most successful crypto hacking programme.
My piece 👇
dlnews.com/articles/regulati…
1
4
11
1,478
Immanuel Chavoya retweeted
30 Mar 2023
Two things are true:
1. Better firewalls alone are not going to stop ransomware attacks against schools.
2. Jesus Christ, we don’t even allocate enough funding to schools to buy next generation firewalls? WTF?
@johnnysaks130 or @samsabin923 am I reading this correctly?
30 Mar 2023
1/2 LA Unified and hundreds of other school districts from 40 states and Puerto Rico urge the FCC to modernize E-rate to cover advanced or next generation firewalls. bit.ly/42R8myA @CoSN @SETDA @GreatCitySchls @NSBAPublicEd @All4Ed @CenDemTech @SHLBCoalition @CCSSO
2
13
21
6,380
Immanuel Chavoya retweeted
17 Mar 2023
The administrator of BreachedForums, Pompomurin, has been arrested by the FBI.
More information: bloomberg.com/news/articles/…
28
209
741
147,567
Immanuel Chavoya retweeted
17 Mar 2023
Following some additional testing of #CVE-2023-23397 - I can confirm MS have only partially fixed this. You can still trigger auth to systems in trusted zones - ie other AD joined systems, which can then be relayed for privilege escalation 🔥vimeo.com/809084317
7
106
320
71,853
17 Mar 2023
🚨CVE-2023-23397
➡️Name: #BearMail
(This name is a nod to the APT28 group moniker #FancyBear. Credit goes to Cert-UA for discovering and reporting this vulnerability to Microsoft!)
❓Thoughts on an image for this vuln❓
15 Mar 2023
Excuse this cute gif that caught your attention - but this is a special delivery📩
🚨1 of the #0Days patched by MSFT was leveraged by APT28 (#FancyBear) - CVE-2023-23397
Dubbing it #BearMail so its easier to track - go patch BearMail and audit your logs for exploitation!
3
5
1,823
15 Mar 2023
Excuse this cute gif that caught your attention - but this is a special delivery📩
🚨1 of the #0Days patched by MSFT was leveraged by APT28 (#FancyBear) - CVE-2023-23397
Dubbing it #BearMail so its easier to track - go patch BearMail and audit your logs for exploitation!
14 Mar 2023
We've just published a quick write up on CVE-2023-23397, which allows a remote adversary to leak NetNTLMv2 hashes: mdsec.co.uk/2023/03/exploiti… by @domchell
1
2
2,331
15 Mar 2023
Credit goes to Cert-UA for discovering and reporting this vulnerability to Microsoft!
Audit for signs of exploitation using MSFTs Powershell script:github.com/microsoft/CSS-Exc…
126
Immanuel Chavoya retweeted
14 Mar 2023
We've just published a quick write up on CVE-2023-23397, which allows a remote adversary to leak NetNTLMv2 hashes: mdsec.co.uk/2023/03/exploiti… by @domchell
9
407
813
302,791
Immanuel Chavoya retweeted
7 Mar 2023
What can #security teams learn from a year of cyberwarfare? @computerweekly talks with SonicWall's @FullM3talPacket about the shifting #cybercriminal ecosystem and the need to continuously monitor and analyze the #cyber threat landscape to mitigate risk. bit.ly/3kWw4bB
4
4
264
Immanuel Chavoya retweeted
8 Mar 2023
Using data from the 2023 SonicWall Cyber Threat Report, @CityAM looks at what's contributing to the increase in #IoT #malware attacks on UK government devices with comments from SonicWall #cybersecurity experts Terry Greer-King and @FullM3talPacket. bit.ly/3ZSHlsu
5
5
381
Immanuel Chavoya retweeted
1 Mar 2023
Get the actionable cyber threat intelligence needed to adapt to the evolving tactics of bad actors. Join SonicWall #cybersecurity expert @FullM3talpacket for an insider's look at the exclusive findings from the 2023 SonicWall Cyber Threat Report. bit.ly/3xvn7Zm
5
7
372
Immanuel Chavoya retweeted
1 Mar 2023
Covert cyberattacks on the rise as attackers shift tactics for maximum impact - helpnetsecurity.com/2023/03/… - @SonicWall @VanKirk_Bob @FullM3talPacket #Ransomware #Malware #IoT #Cryptojacking #CyberSecurity #CISO #netsec #InfoSecurity #ITsecurity #CyberSecurityNews #SecurityNews
6
7
876
Immanuel Chavoya retweeted
3 Feb 2023
If you're a GoAnywhere MFT customer, heads up — exploited zero-day vuln, no CVE, no patch (that we can tell). Mitigation available, has to be applied to every node. rapid7.com/blog/post/2023/02…
1
9
15
3,408