Founder/CTO @AttackIQ, Advisory Board member for the CyberTECH, lead of OWASP SD and CFP head for AppSec California. Formerly @Websense, @IOActive and @eEye
🎉 We are proud to present the first-ever HiddenLayer AI Threat Landscape Report! Get your copy TODAY to see our survey insights, risks related to the use of #AI & security recommendations for the next 12 months.
Learn more 👉 https://t.co/spNxlGNDio
In our latest publication, @enwckns & Kasimir Schulz show how an attacker could send malicious pull requests to any repository on Hugging Face by hijacking the Safetensors conversion bot — with a single malicious model, the conversion service can be compromised.
Register Now!
I’ll be attending our final stop on the AttackIQ Academy Roadshow in Houston, TX! For those of you in the Houston infosec/cybersecurity scene, this is a fantastic opportunity for in-person, and hands-on cybersecurity training https://t.co/etXIQfdegb
- Keep questioning yourself, and expert opinion;
- Keep questioning your ideas and product;
- (Sometimes) Ignore public opinion if you find a feature delightful.
[from Dysons, Invention: A Life]
@JoseBarajasSec@StephanChenette You can use Jupyter for analysis, but also to tell a story. For example, hiding the techniques to show where attacks could be caught or might be missed.
Security papers/conferences are tough to keep up with.
ThinkstScapes helps you with this by distilling and discussing talks that caught our eye for the quarter.
Grab a copy, free at https://t.co/mHDdO2WFzR (with no sign-up, and no paywall).
https://t.co/OYywQaUddx
We are proud to announce our $44 million Series C funding round led by @atlanticbridgev, bringing our total funding to $79 million. Check out the full press release to learn more about our incredible new investors and why they are supporting our mission: https://t.co/GpJCgHbxxi
The debates around working from home from employers is fairly odd. You want to recruit and retain productive and happy teammates. The responsibility is on the employer to provide that environment. Employees should have choices of in person, remote, or hybrid whenever possible.
We're now just one week away from November's ATT&CKcon Power Hour session on Nov 12th! This month, check out 🔥 talks from @hackerxbella, @amrandazz, @nitya__garg, @jamieantisocial, Matt Snyder, and Mike Hartley. Register and check out the lineup at https://t.co/CP0vFHRkQr.
Congrats to @mitrecorp InfoSec on their release of Shield (https://t.co/2gkdD3bwBr)! Shield is a knowledge base of active defense and adversary engagement options structured similarly to ATT&CK and linked to ATT&CK techniques. We look forward to seeing how it evolves and grows!
Kudos to NSA and FBI for sharing this highly detailed and actionable advisory that includes detection techniques, mitigations, and attribution. https://t.co/BGrXwJuqMj
@adamjodonnell Homemade apple sauce, which can be used as a condiment for pork chops, pancakes, and a bunch of other things. Also, slow roast apple slices to make apple chips.
Very interesting presentation and topic (2017) "The difference between a platform and an aggregator" by Stratechery‘s Ben Thompson https://t.co/YhmZhCi6Nf
Tomorrow at 1pm ET, @_whatshisface is going to be speaking on "Bringing Intelligence into Cyber Deception with MITRE ATT&CK" as part of the FIRST CTI Webinar Series! If you're a FIRST member or were registered for the FIRST CTI 2020 conference sign up at https://t.co/zM2btpQRBg.