Olivia
Online
WasTech
@WasTechtalk
CISSP | CISM | Cybersecurity Strategist
OSINT • Threat Intel • Occasional Geopolitics
Break down cyberwar + real-world threats
Joined January 2023
1K Following
366 Followers
4.7K Posts
Pinned Tweet
I built a free, interactive Cloud Security Posture Scorecard and I want you to use it.
One of the most common gaps I see isn't a lack of tools.Teams don't always know what to check, where to check it, or why it matters.
So I built something to fix that.
It's nothing crazy . its straightforward consisting of specific controls I have seen most people have issues with. That are also really important and a good foundation for a secure cloud environment.
The Cloud Security Posture Scorecard is a free, interactive self-assessment tool that walks you through 36 security controls across 6 domains Identity & Access, Network Security, Data Protection, Compute, Logging & Monitoring, and Governance.
What makes it different:
✅ Works for Azure, AWS, and GCP select your provider and get platform-specific verification steps for every single control
✅ No fluff every control tells you exactly where to go in your console to verify it
✅ Weighted scoring not all controls are equal. MFA and SIEM are weighted higher than tagging standards. The score reflects real risk
✅ No account needed, no data collected open it, assess your environment, close it
Whether you're a cloud engineer doing a quick gut check, a security practitioner preparing for an audit, or a manager trying to understand your team's posture this tool was built for you.
Try it here
https://t.co/uHqhNWJdNj
Coming in the next release:
PDF Report Export: generate a full assessment report you can hand to your CISO or auditor
Evidence Collection : document what you found for each control, creating an audit-ready paper trail behind every pass/fail
More features in the pipeline.
I hope this could be something helpful for you.
Drop your feedback in the comments what would make this more useful for your team?
#CloudSecurity #CyberSecurity #Azure #AWS #GCP #Security #CSPM #BlueTeam #Amazon #google #Microsoft #cybersecurity #cloud #posture
@BAGF_E @danorlovsky7 He means regularly has a lead. He obviously doesn't mean that the browns never held a lead
The Dangers of Easily Phishable Multifactor Authentication (MFA)
• While multifactor authentication (MFA) is crucial for protecting valuable information, the majority of MFA solutions used today are easily compromised, offering little more protection than passwords.
• Many MFA methods are vulnerable to phishing attacks, where users are tricked into visiting malicious websites that capture their credentials and MFA codes through man-in-the-middle proxy services.
• Attacks can also involve social engineering tactics, such as tricking users into approving unauthorized login requests via push notifications or convincing them to download malware that steals MFA codes.
• Despite the effort and expense involved in implementing MFA, its effectiveness is significantly diminished if the solution itself is easily phishable.
• Hackers are rapidly adapting to the widespread use of MFA, with automated programs and bots now routinely bypassing these security measures.
• The U.S. government, through NIST guidelines and presidential executive orders, has advised against using easily phishable MFA methods like SMS-based, voice call-based, one-time codes, and push notifications since 2017.
• It is imperative for individuals and organizations to prioritize and demand phishing-resistant MFA solutions, educate users on the risks, and pressure vendors to improve their security offerings.
https://t.co/OKOhQA4dqR
@Syria_Strategy انا لله وانا اليه راجعون الله يرحمهم جميعا
Active Exploitation Alert: Palo Alto GlobalProtect VPN Authentication Bypass (CVE-2026-0257)
Attackers are actively exploiting a vulnerability in Palo Alto GlobalProtect VPN that allows unauthorized access to corporate networks by bypassing authentication.
Originally rated Medium, the flaw was upgraded to High Severity after real-world exploitation was confirmed. Attackers can forge authentication override cookies when the same certificate is used for both HTTPS services and authentication overrides. Successful exploitation can allow unauthorized VPN access, potentially giving threat actors a foothold inside enterprise environments. Exploitation activity has been observed since May 17, 2026. CISA has ordered federal agencies to mitigate the vulnerability by June 1, 2026.
Recommended Actions:
Apply the latest PAN-OS security updates immediately.
Disable the authentication override feature if not required.
Use a dedicated certificate for authentication override instead of reusing the VPN HTTPS certificate.
Review VPN logs for suspicious authentication activity and unexpected remote access sessions.
This is another reminder that convenience features like authentication overrides can become high-impact attack paths when certificate management and segmentation controls are overlooked.
#CyberSecurity #PaloAlto #GlobalProtect #CVE20260257 #ThreatIntel #InfoSec #BlueTeam #NetworkSecurity #CyberDefense
@TheNBACentel Refs: You got a friend in me
Japan is quietly building what could become the future of air travel. 🇯🇵✈️
JAXA just completed a Mach 5 hypersonic engine test fast enough to theoretically fly from Tokyo to New York in under 2 hours.
That’s nearly 3x faster than the planned speed of Boom’s “new Concorde.”
If this becomes commercially viable, it won’t just change travel… it could completely reshape business, military logistics, and global economics.
The next major technological race may not be AI. It may be speed.
https://t.co/I7Qwj2JK2O
@ESPNCleveland " yah they dominated us as far as 4-0"
They dominated you in basically everything . They beat you by double digits every game.
@Player__1776 @BekLoverNYC @MarioNawfal There are many westerners living in Qatar. UAE , Jordan Turkiye and Saudi Arabia and this doesnt happen to them.
@Syria_Strategy Just need to find a remote job and make the move.
@tarunvats33 What about Zfold 7
@jacobinfante24 Tune in on Netflix. Lol
@SyEmbWashington When will the embassy open in the USA ?
@Levant_24_ Will the embassy in the US open?
@DavidS_Liberdad @Syria_Strategy Most people will still use cash in Syria. This just makes it a lot easier for those who visit and who have money in external banks. They had cards before 2011 and most people didn't use them.
Who said they will be using credit cards or taking loans. This is geared toward people who visit or have external banks so that they can use their card. Syria has had the ability to take payments before 2011. Just because you allowed card payments doesn't mean you will be in debt now. They aren't taking a loan.
@Jhhzpw8 @doomernat22 They went in debt cause they took loans not because they allowed cards to be used.
@Hero_OfThe_Day If he isn't flopping he is pushing off defenders.
@BrickCenter_ If he isn't flopping he is pushing off defenders
Last Seen Users on Sotwe
morlerial
PORNO PAYLAŞIM
Seen from Brazil
ديوث العائلة🥺
Seen from Netherlands
Shop with mae 🛍️ +1 (646) 603-9923
Seen from United States
കുണ്ടിപ്രിയൻ
Seen from Singapore
Sali4545manisa
Seen from Turkey
2026 Türk İfşa
Seen from Turkey
Badbop
Seen from Germany
Portal Margot Robbie |Fan Site|
Seen from United States
Бақжан Сағындықов
Seen from Australia
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers
✨
⭐
💫