Olivia
Online
Security Joes
@SecurityJoes
AI-Powered MDR & Incident Response ☂️
Israel
Joined August 2020
133 Following
2.6K Followers
651 Posts
While Supply Chain hits hard, Incident Response teams should strive for developing tools to assist dev teams to harden their endpoints.
#Vaultify is one of them. Visit our new website, download the tool and clean your machine from secrets sprawl and NHI threats. ITS OPEN-SOURCE
Today we launched another version of #Vaultify to keep helping devs secure their endpoints
A website is now live with more information -
https://t.co/GE3yGaM4Nt
Anti-Supply-Chain-Attacks ���
Bitlocker ransomware attacks might just went out of business...
I just reverse engineered the YellowKey BitLocker bypass
Microsoft shipped code that checks for a flag called "FailRelock" in every Windows 11 recovery image. When it's set to 1, after recovery unlocks your BitLocker drive, it never relocks it. All you need is a USB stick.
This code only exists in the recovery environment. Not in normal Windows. They left an entire debug testing framework in production.
Releasing Vaultify, an open-source tool that hunts secrets in your machine and lets you vault all in one click.
https://t.co/Veu1QeKK57
- Local only
- Includes BYOAI to assist in quick remediation & FP detection
- Vaults secrets using 1Pass CLI or other vaults
The domino effect that turned defensive infrastructure into part of the blast radius:
Our latest research, by Diogo Machado, shows how the DigiCert incident cascaded into Microsoft Defender behavior and exposed the fragility of modern trust chains.
https://t.co/tPB69cwkrm
Who to follow
Chetan Nayak (Brute Ratel C4 Author) 
@NinjaParanoid
Dark Vortex Founder/Brute Ratel Author
Anurag
@Malwarehunterr
Threat hunting | Malware Analysis | These views are my own and not my employers. https://t.co/cERmryTU76
Uriel Kosayev
@UrielKosayev
Author of MAoS - Malware Analysis on Steroids & Antivirus Bypass Techniques | Cybersecurity Researcher | Keynote Speaker | Co-Founder @TrainSec Academy
JOES in Cancun, Mexico 🌴🇲🇽🏖️
What an amazing adventure!
AI observability is now critical as OpenClaw’s adaptability accelerates.
Researchers are actively exploring this shift and strengthening defenses around OpenClaw.
We’re releasing new detection capabilities for the EDR/XDR tools we use daily
https://t.co/h9wIKswONa
🚨 New Blogpost is Out!!
Over 50 GitHub accounts, and several LinkedIn accounts as well, were involved in a massive Lazarus fake hiring attack, dubbed as "LazarOps" by the security joes incident response team.
Read the full blog at - https://t.co/FODjNuPnix
Our first LATAM regional meetup took place in São Paulo, Brazil! 🇧🇷
Threat Researchers from across the region came together to connect and have fun.
Check out the Dinner in the Sky video!
Obrigado, Brasil! Estamos só começando. 🇧🇷🔥
🎙️ Following our live podcast launch…
🚀 CloudCastle is now officially live on GitHub!
🙏 To everyone who joined us live — thank you!
💙 Let us know how you’re using CloudCastle.
#CloudCastle #SecurityJoes #AWSIR #ThreatHunting #OpenSource #CybersecurityTools
🚨 We’re going live in 1 hour! (18:00 IL)
We’re launching CloudCastle, live on air, and talking about how it was built,
Why it matters, and how you can start building your own tools too.
🎙️ Save your spot now — last chance to register:
https://t.co/AJcyAQv44y
🚨 New blog from Security Joes!
Weaponizing Windows Drivers: A Hacker’s Guide for Beginners
Explore how attackers exploit vulnerable drivers (BYOVD) & how defenders can stay ahead.
📖 Read now - https://t.co/fXOk07XDTL
Podcast Behind The Scenes - Take 2🎬😂
Join us, July 15 2025 at 18 PM Israel Time.
(Not July 16!!)
Register here: https://t.co/zr85NDjxRX
#שער_ריק #its_the_15 #AI #security_joes #incident_response
🚨 Crowdstrike-Deploy v1.3 is here!
Our team continues to give back to the DFIR community with tools that solve real problems.💪
🛠️ Deploy Fast, Defend Faster.
Check it out on Security Joes GitHub: https://t.co/TJUyoT24tW
https://t.co/RqVj9RQ2t7
A recently patched sandbox escape in Google Chrome (CVE-2025-2783, CVSS 8.3) was exploited in-the-wild by a threat actor tracked as TaxOff, leading to the deployment of a custom multithreaded backdoor named Trinper.
👉 For help, visit https://t.co/aq8HgdA8Xh
Veeam has just released a critical patch addressing a remote code execution (RCE) flaw in its Backup & Replication software. Tracked as CVE-2025-23121, this vulnerability carries a CVSS score of 9.9, underscoring its severity.
Need help? https://t.co/aq8HgdA8Xh
🚨 XSS Attack Hits CoinMarketCap – Exposes SDLC Security Gaps 🔐
June 20, 2025: CoinMarketCap was targeted by a front-end XSS attack via a compromised homepage image executed a malicious remote API call. The result? A fake wallet pop-up prompting users to "verify" their wallets.
Two newly disclosed vulnerabilities could let attackers escalate privileges to root on default installations of major Linux distributions — including Ubuntu, Fedora, Debian, and openSUSE.
🛡️ Let’s talk https://t.co/BLjQF3JlQW
#Linux #CyberSecurity #LPE #Vulnerability #PatchNow
🧠 Technical Details
Google’s Threat Intelligence Group has identified a cyberattack campaign, UNC6040, targeting companies in Europe and the Americas. Attackers are deceiving employees into installing a modified version of Salesforce’s Data Loader.
👉 https://t.co/aq8HgdA8Xh
🧬 Catena Loader - Memory-Only Malware Campaign
Attack Flow:
Fake VPN/browser installers with signed decoys
Shellcode in .ini files → reflective DLL injection
Memory-only payloads + delayed persistence
👉 https://t.co/BLjQF3JlQW
#ThreatHunting #Malware #CyberSecurity #DFIR
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers