Security research team lead @TenableSecurity
Joined November 2021
- Tweets 125
- Following 612
- Followers 277
- Likes 408
12 Photos and videos
Pinned Tweet
Mar 26
It was a pleasure! Big thanks to the Cloud Village team for having me!
Mar 25
Huge thanks to @shellyraban for showing us how to turn attacker behavior into detections that matter! 👏
From leaked credentials to forensic logging, Shelly proved that understanding the adversary is the best way to strengthen real defenses.
Thanks for joining us! ☁️ @OneRSAC
1
4
237
May 28
Super excited about this one!!
May 28
Autonomous #AI agents raise major security questions. At @fwdcloudsec North America, Tenable researchers @cnotin and @popov1ron will explore how AI agent identities function as a specialized, high-velocity breed of Non-Human Identity (NHI).
🔗: spr.ly/6013B8XRCv
2
47
May 18
7K weekly downloads. 730 versions of legitimate package, then Sliver C2 drops in the postinstall. Amazing work by Ron from my team catching this! Pin to 1.1.558, check for /tmp/.sshd on build servers - the masqueraded implant. Rotate creds if you installed it.
May 18
Tenable Research has detected yet another npm supply chain attack 🚨
This attack is part of an ongoing wave hitting the ecosystem right now
Affected: "cqa-lib/cqa-ui", version 1.1.559, 1.1.560
Last known clean version: 1.1.558
#SupplyChainAttack #npm #malware #SliverC2
7
230
Shelly Raban retweeted
Apr 15
Most organizations are flying blind when it comes to the Non-Human Identities behind their agentic AI🕵️
We'll present at @fwdcloudsec NA 2026 "Who Are the Robots? Uncovering AI Agents Identities." Covering Microsoft’s “Entra Agent ID” and Google’s “GCP Vertex AI Agent identities”
2
3
8
1,449
Shelly Raban retweeted
Mar 25
Starting in 15 mins: @shellyraban is live at #CloudVillage breaking down how to track attacker behavior in managed cloud services without the risk! 🛡️
Catch the reality of cloud deception live in Room 204! 🔍
📍 Moscone South, Level 2 | @OneRSAC
#RSAC
1
1
113
Mar 14
Can’t wait! 😍
Mar 14
How do you leak a cloud key without losing your budget? 🔑
Join @shellyraban at Cloud Village inside the Moscone Center to learn the "Hard Way" of running cloud honeypots—from authentic IAM roles to Bedrock & SageMaker forensics.
See you at @OneRSAC! 🛡️ #CloudSecurity #RSAC
48
Shelly Raban retweeted
Our Google Cloud VRP researchers don't miss! 🔥 Check out @terminatorLM's latest Looker research uncovering 9 novel cross-tenant vulns in Looker.
See how it was done: 👇
Mar 10
🫣LeakyLooker: 1 Cross-tenant vulnerability? How about 9? (1/10)🧵
I’m incredibly proud to share LeakyLooker. I discovered 9 novel cross-tenant vulnerabilities in Google Cloud’s Looker Studio that broke fundamental design assumptions.
Here is how I broke tenant isolation: 👇
1
11
89
8,742
19 Mar 2025
#AI is revolutionizing the cloud—but at what cost to security? Our team has been working on the NEW Cloud AI Risk Report that uncovers the top risks security teams should be aware of as AI-driven cloud adoption advances. Get the report here →... ow.ly/mguA1062UkH
1
134
Shelly Raban retweeted
4 Jan 2025
It is with profound sadness that we announce the passing of our Chairman and Chief Executive Officer, Amit Yoran (@ayoran), after a battle with cancer. Today’s press release can be read here. ⬇️ tenable.com/press-releases/t…
25
43
183
55,650
26 Nov 2024
Was such an amazing experience! Super interesting talks, 10/10 setup, and an awesome community🫶
Who watches the Watchmen? Let's steal credentials with Shelly Raban from policy-as-code engines at #WICCON2024.
youtube.com/watch?v=nZX3lpnC…
#CyberSecurity #WomenInTech
3
156
Shelly Raban retweeted
25 Nov 2024
Researchers have uncovered new attack techniques targeting infrastructure-as-code (IaC) & policy-as-code (PaC) tools like HashiCorp's Terraform & Open Policy Agent (OPA), posing a severe risk to cloud platforms.
Learn how this works: thehackernews.com/2024/11/cy…
#cybersecurity
1
23
61
10,602
25 Nov 2024
Thanks for featuring my DSLs attack techniques research!
Read all about it in our blog-
tenable.com/blog/the-dark-si…
24 Nov 2024
📖 CloudSecList Issue 265 just got released, w/ content from @iann0036 @trailofbits @PushSecurity @tenablesecurity @tracebit_com @SentinelOne and more!
cloudseclist.com/issues/issu…
1
2
5
912
1 Nov 2024
Had so much fun! Thanks to everyone who survived to hear my talk this late in the afternoon 😂
Last speaker for today. @shellyraban: Who watches the Watchmen? Let's steal credentials from policy-as-code engines at #WICCON2024. #CyberSecurity #WomenInTech
1
15
551
29 Oct 2024
Enjoying the beautiful Haarlem while I put the final touches on my WICCON talk! See you there! 😊☕️
🎃✨ Witchy Alert! ✨🎃
WICCON 2024 is close to being SOLD OUT! 🕸️ If you don't have a ticket yet, you’ll need to cast a speed spell—spaces are vanishing faster than a full moon on Halloween night! 🌕🧙♀️
🔮 Get your tickets before it’s too late! 🔮 wiccon.nl/tickets-2024
11
423
19 Sep 2024
Wow, what a crazy few days.
I just got home from @fwdcloudsec EU and wanted to share how amazing this journey was. 1/5
2
1
27
1,011
29 Sep 2024
My fwd:cloudsec talk’s recording is now available on YouTube!
youtube.com/watch?v=1kk7STIs…
3
378
Shelly Raban retweeted
26 Sep 2024
The recordings for fwd:cloudsec Europe talks are now on YouTube! youtube.com/playlist?list=PL…
25
47
6,651
25 Sep 2024
Next month I’ll be speaking at #WICCON2024, a cybersecurity conference that puts women’s technical achievements in the spotlight. @wicca_NL has an awesome mission that is personally close to my heart.
1
6
11
676
25 Sep 2024
Super excited for all the great talks on the lineup!
If you're there - come say hi! :)
79
Shelly Raban retweeted
19 Sep 2024
🥷Meet CloudImposer, a remote code execution vulnerability I discovered in the GCP Composer service and revealed at BlackHat US (1/11)🧵
2
5
23
1,421