Olivia
Online
Anthony Randazzo
@amrandazz
Detection engineering @datadoghq. Interested in ☁️ threats. Prev @expelsecurity and @mandiant intel. LEGO enthusiast. Never finding good bourbon. Opinions mine.
St Louis, MO
Joined May 2016
394 Following
1.3K Followers
563 Posts
Pinned Tweet
We were trying to conceptualize the "current state" of cloud [native] threat detection and this is what we sorta came up with. Sharing it more broadly in case others find it useful in organizing your cloud detection & response approach 🔎
![amrandazz's tweet photo. We were trying to conceptualize the "current state" of cloud [native] threat detection and this is what we sorta came up with. Sharing it more broadly in case others find it useful in organizing your cloud detection & response approach 🔎 https://t.co/KDzz0JY2BC](https://pbs.twimg.com/media/FRNQs-lWYAMlMa6.jpg)
We've shared our analysis of the axios supply-chain compromise with full detail on the initial package to the second stage on each platform's RAT capability. This was clearly intended to compromise the developer environment. More amazing work by the team.
https://t.co/R8c2MgDnUW
This is how it’s supposed to work. This is how everyone levels up while protecting more people/orgs in parallel. More vendors should seek to mimic this type of collaboration.
We’re all on the same team…unless you only look at Security as a business, but that’s another tweet :)
@oinstakeu You know he will for 30 seconds
Who to follow
Jon Hencinski 
@jhencinski
Head of SecOps @ProphetSec
Steve YARA Synapse Miller
@stvemillertime
AI threat intelligence @google
writing & sharing on adversary tradecraft, malware, threat detection, AI-nexus intel and all things #yara
Roberto Rodriguez 🇵🇪
@Cyb3rWard0g
AI Security Researcher @nvidia | Prev: @Microsoft @awscloud | Founder of the @OTR_Community
Our Q1 Threat Roundup is out! Nice work by the team as always!
https://t.co/j7ezuotXb6
Great writeup on a couple new persistence mechanisms the team saw recently ultimately resulting in SES abuse for phishing.
https://t.co/CqrbBvyRUi
Another amazing aggregation of annual cloud security statistics from the team here at @datadoghq
https://t.co/VXvIYlMyDU
Great post by @JulieASparks and team on the recent happenings with Snowflake
https://t.co/da2oi88Ozf
Today is an interesting day! I read a report about a threat actor, and for once I'm impressed! This is the first I can remember in which a TA has displayed NEW tradecraft, before researchers have shared it widely. Let's review in this 🧵
https://t.co/CA4TwJam7g
And if you find this interesting, we're hiring in the US but especially in EMEA!
https://t.co/NW7K9FAWxP
Our amazing team found some interesting new ☁️ threat actor techniques. Give it a read!
https://t.co/zBCof9PBpH
@daycyberwox As someone who grew up around breeding horses and stabling them, pick horses only if you like to hemorrhage money. Owning a boat might be the only more expensive hobby.
Exploiting Windows pods in kubernetes? ✅ More awesome work from the team here at @datadoghq
https://t.co/6unur8uhvr
Great write up by the team on some of the hunting pivots we're doing to find evil in AWS!
We've released a new post detailing a threat hunting methodology in AWS CloudTrail, as well as some findings about real attacker activity we've seen in the wild - including the most common enumeration calls
https://t.co/Ua4VdjQrgh
AWS CloudTrail Lake SQL queries included!
Datadog's security team has just released KubeHound, an open-source attack mapping tool for Kubernetes clusters
https://t.co/1NaHHIfznN
https://t.co/rwWQFHY4kT
Comes with 25 attack types, each one comes with step by step instructions of how to exploit it
Come join my team - you'll get to work with the cool kids @techyteachme @amrandazz, several others & yours truly :)
If you're interested in researching threats, hunting, detection engineering, cloud security and helping build our Cloud SIEM product then this role might be for you.
Happy to answer any questions.
SN: The role is for EMEA folks (see listed locations in req below)
👉🏽https://t.co/GCNbOEk17q
Want to simulate cloud ransomware in your AWS account?
Stratus Red Team now supports 3 attack techniques to emulate S3 ransomware!
• S3 Ransomware through individual file deletion
• S3 Ransomware through batch file deletion
• S3 Ransomware through client-side encryption
🧵
Very cool e2e threat emulation that the team built to test relevant #atomicredteam cloud workload techniques with a hook into Datadog platform
https://t.co/BFy7dXiwWD
@cyberfooty Hi! We actually just filled one of these roles in US but we may have more next year!
For my cloudsec folks in EU TZ, we’ve got some new reqs to continue building great security detections in our security platform! Preference for Paris, Lisbon, Madrid, and Tel Aviv office locales but can always make an exception for exceptional talent.
https://t.co/huIGkBcWjG
Awesome PM role responsible for all things cloud threats on our Cloud Security Management platform!
https://t.co/qL6FDbhg62
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers