Andrew Case · Jun 15, 2022 · 7:48 PM UTC

Andrew Case

228 Photos and videos

Load newest

Hal Pomeranz retweeted

Andrew Case @attrc

15 Jun 2022

Our latest blog post covers how our services team detected and then investigated a 0day vulnerability being exploited in Sophos firewalls #DFIR #infosec

tlansec @tlansec

15 Jun 2022

✅ Exploitation of 0⃣ day at the time? ✅ Web🐚s involved? ✅ DNS MiTM? 👨‍🏭 It can only mean one thing. Volexity blog: volexity.com/blog/2022/06/15… #threatintel #cve20221040 #apt

Katie🌻Moussouris (she/her) · Jun 15, 2022 · 11:52 AM UTC

Hal Pomeranz retweeted

Katie🌻Moussouris (she/her) @k8em0

15 Jun 2022

Looking back is just nostalgia without learning & growing from the past. I’m planning to cover the lessons of the past & introduce evolutionary revelations for the future of bug bounties, labor rights, & the world we want to build. I hope to see you there. blackhat.com/us-22/briefings…

Hal Pomeranz · Jun 15, 2022 · 12:29 AM UTC

Hal Pomeranz @hal_pomeranz

15 Jun 2022

Replying to @mikecherry

Agreed

Hal Pomeranz · Jun 14, 2022 · 11:55 PM UTC

Hal Pomeranz @hal_pomeranz

14 Jun 2022

$60K bug bounty and thank you Tzah for not selling this on the black market where you likely could have made much more.

Tzah Pahima @TzahPahima

14 Jun 2022

I was able to access thousands of companies’ passwords on #Azure and run code on their VMs. This includes access to Microsoft’s own credentials… 💣 Here’s HOW I did it. This is the story of #SynLapse. (1/11)

Hal Pomeranz · Jun 14, 2022 · 2:50 PM UTC

Hal Pomeranz @hal_pomeranz

14 Jun 2022

Replying to @fwiles

I was getting my Solaris admin certs almost 30 years ago. Sigh.

Monica Byrne · Jun 13, 2022 · 1:49 PM UTC

Hal Pomeranz retweeted

Monica Byrne @monicabyrne13

13 Jun 2022

What I had to say about AI in 2018, and pretty much what I say today.

128

5,991

614

23,128

Hal Pomeranz · Jun 14, 2022 · 12:54 PM UTC

Hal Pomeranz @hal_pomeranz

14 Jun 2022

Replying to @falconsview

Oldest— competitive gymnastics, later diving Middle—drum line, marching band, jazz band I feel you, brother

Christophe Veltsos · Jun 14, 2022 · 12:35 PM UTC

Hal Pomeranz retweeted

Christophe Veltsos @DrInfoSec

14 Jun 2022

New Syslogk Linux Rootkit Lets Attackers Remotely Command It Using "Magic Packets" thehackernews.com/2022/06/ne… [sneaky]

New Syslogk Linux Rootkit Lets Attackers Remotely Command It Using "Magic Packets"

A new covert Linux kernel rootkit called Syslogk has been discovered in the wild that allows hackers to remotely control malware using magic packets.

thehackernews.com

Virus Bulletin · Jun 14, 2022 · 10:13 AM UTC

Hal Pomeranz retweeted

Virus Bulletin @virusbtn

14 Jun 2022

Researchers on Palo Alto's Unit 42 team analyse PingPull, a remote access trojan used by the GALLIUM APT group (also known as Softcell). PingPull has the capability to leverage three protocols (ICMP, HTTP(S) and raw TCP) for command and control. unit42.paloaltonetworks.com/…

780th Military Intelligence Brigade (Cyber) · Jun 14, 2022 · 10:38 AM UTC

Hal Pomeranz retweeted

780th Military Intelligence Brigade (Cyber) @780thC

14 Jun 2022

In this blog, Microsoft provides details about the BlackCat ransomware, also known as ALPHV, techniques and capabilities. They also take a deep dive into two incidents they’ve observed where BlackCat was deployed | microsoft.com/security/blog/… @MsftSecIntel

Hal Pomeranz · Jun 14, 2022 · 1:49 AM UTC

Hal Pomeranz @hal_pomeranz

14 Jun 2022

Replying to @elpie

Marmite expires?! Geez I thought that stuff would outlast the planet.

Jack Turban MD · Jun 14, 2022 · 12:14 AM UTC

Hal Pomeranz retweeted

Jack Turban MD @jack_turban

14 Jun 2022

You deserve to live your authentic gender expression, and it’s profoundly wrong of people to take that from you.

179

ⲕⲁⲣⲟⲗ · Jun 12, 2022 · 6:59 AM UTC

Hal Pomeranz retweeted

ⲕⲁⲣⲟⲗ @copticml

12 Jun 2022

Let’s internalize this for a second.

1,004

67,940

1,208

345,191

Hal Pomeranz · Jun 13, 2022 · 12:09 AM UTC

Hal Pomeranz @hal_pomeranz

13 Jun 2022

Replying to @webjedi

“The rose goes in the front, big guy.”

Hal Pomeranz · Jun 12, 2022 · 9:35 PM UTC

Hal Pomeranz @hal_pomeranz

12 Jun 2022

Replying to @k8em0

Your mother's contributions will continue to create new lives long after her passing, and that means she will never truly be gone. And she will always live on in the hearts of you and your family. May her memory be a blessing.

Hal Pomeranz · Jun 12, 2022 · 9:30 PM UTC

Hal Pomeranz @hal_pomeranz

12 Jun 2022

If we ever get solid "right to repair" laws in this country, make sure they also include the "right to refill" to stop the greedy bloodsuckers like @HP and @Keurig

Hal Pomeranz · Jun 12, 2022 · 6:31 PM UTC

Hal Pomeranz @hal_pomeranz

12 Jun 2022

Replying to @agtmadcat

Don’t make that dirty! :-D

Hal Pomeranz · Jun 12, 2022 · 4:54 PM UTC

Hal Pomeranz @hal_pomeranz

12 Jun 2022

I would gladly eat your brisket

Jake Williams · Jun 12, 2022 · 2:23 AM UTC

Hal Pomeranz retweeted

Jake Williams @MalwareJake

12 Jun 2022

Louder for the people in the back! Very few things survive full forensic analysis, but that's not the goal. Even if your "one cool trick" does, entire (useful) attack chains do not. The goal is (and always has been) bypassing real time alerting. Anything else is gravy.

Tim McGuffin @NotMedic

11 Jun 2022

Replying to @NotMedic

Note that we’re not fully trying to bypass forensic data, but just alerts that get sent to a SOC analyst for triage.

Xyla Foxlin⚡ · Jun 12, 2022 · 12:54 AM UTC

Hal Pomeranz retweeted

Xyla Foxlin⚡ @XylaFoxlin

12 Jun 2022

Some asshat from NASA called me Joe’s “PR girl” at the rocket launch today, and I’ve spent the day trying to talk myself down from quitting rocketry forever. I’m 25, I’ve been dealing with this shit for over a decade in STEM, and it STILL gets to me sometimes. A thread 👇

270

628

107

5,015