Sean Mason @SeanAMason
I lead Cyber Defense for @United. Angel Investor. Philanthropist. World Traveler. Founder of IR business for @Cisco. Former @GE CIRT Leader. seanmason.com Florida Joined December 2010-
Tweets8K
-
Followers2K
-
Following71
-
Likes1K
@anton_chuvakin @bettersafetynet It's not even that... Cyber is a community working together for the common good. I'll point to the ISACs which exist for a reason, to share ideas and information, to include amongst competitors. Ignoring and/or not asking what others are doing is foolish.
Yes, it is the "if you're going to be at RSA..." time of year again! If you're going to be at RSA, I'd love to see you at my talk: "How I Screwed Up #ThreatHunting a Decade Ago, and How We're Fixing it Now with #PEAK" buff.ly/3TMOngF
@Garin_Pace Interesting comments... any more insight into which insurers are buying/forming IR teams?
@pchobbit @anton_chuvakin As long as the IC is only performing urgent work, they make sense (as the author states). And let's not forget about non-traditional incidents, like critical vulnerabilities that are reported to you. And in down time, ICs should focus on continual improvement, TTXs, Comms, etc...
Hospital #ransomware have a huge impact on patient mortality, it turns out. WHO KNEW?? 42-67 deaths in just patients covered by Medicare in the US, not those covered by other insurance or those in other parts of the world. Cybersecurity is healthcare. buff.ly/3RgZAoO
No, we aren’t turning the internet off @google. We experiment continuously to raise the cost of attacks for bad guys and are running a short test on a small # of very specific machines; testers have full internet access on other devices, and can also opt out of the test!
Sources: Google is internally piloting an opt-in program where some employees will be restricted to internet-free PCs to reduce the risk of cyberattacks (@jenn_elias / CNBC) cnbc.com/2023/07/18/goo… techmeme.com/230718/p38#a23…
This is one of the reasons why I struggle when it comes to trusting Microsoft. They created a target rich environment that helped incubate the cybersecurity problem, sat by and did next to nothing while it's been rampant, and now are profiting from it.
@Volexity @Microsoft365 @Microsoft @CISAgov Spoiler: the first recommendation is "Enable Purview Audit (Premium) logging. This logging requires licensing at the G5/E5 level." That is a tough pill to swallow for most organizations due to the cost. IMHO, this log data should be available at all M365 license levels. 6/7
Talos IR has repeatedly observed adversaries abusing VCAs in different ways during incident response engagements. These accounts are frequently leveraged for initial access and then used to move laterally through the organization’s network, especially when the victim hasn’t deployed multi-factor authentication (MFA). Since VCAs are usually given elevated permissions, theft of these credentials will often result in widespread damage to victim assets and could even be used to move along the initial victim’s supply chain. blog.talosintelligence.com/vendor-contrac…
North Korean hackers have stolen more than $3 billion in crypto over the last 5 years, and their heists are now funding fully half of its ballistic missile program, alarming U.S. officials. Here's how they did it. w/ @bobmcmillan wsj.com/articles/how-n…
YES!!! This is awesome!
As someone who has extensive experience with airplane puns, SHIPS AHOY. Welcome @united to the @Wrexham_AFC team as front of shirt sponsor.
Some really great insights: The airlines’ cyber chief believes storytelling, facilitation, and a marketing mindset are vital for moving IT and cybersecurity up the organizational value chain to the benefit of the business overall. cio.com/article/480461
@anton_chuvakin Well said. I'd state that even the basic hygiene needs to be threat informed these days. Nobody has enough resources to do everything and your threats should prioritize what you go after.
@colinbraun @CrowdStrike @GeorgeKurtz You guys were an absolute pleasure to watch race. Can’t wait for the next event!
@security_craig Sadly a lot of developers don't use their own product and/or features.
@lillysharples If anyone wants to work on software at United Airlines, send me a DM. We have front end, mobile and Full stack dev roles as well as cloud ops jobs open. Come where you can have an impact and help 500K people a day get to the events in their lives that matter most! #beingunited
Ransomware actors aren't necessarily going after the big pay day anymore- most ransoms are running ~$200k. What this article is missing, is once inside and prior to deploying ransomware, actors are using BEC techniques to ensure they take home some money darkreading.com/attacks-breach…
It's almost as if storing all your secrets in one place and entrusting that knowledge to a company that prioritizes revenue first and foremost is a bad thing...
Norton LifeLock warned thousands of customers that intruders may have accessed their stored passwords. tcrn.ch/3w3Kuse
Great meeting with @mubix & our Red Team earlier. We hit our highest payout month ever in December for our Vulnerability Disclosure Program! Thank you to all of our researchers out there. If you want to get involved, check out our program on @Bugcrowd - bugcrowd.com/united-vdp
Great talk on ASO and CD/CR that's worth a watch if you're in the Defense/SecOps/IR space. youtu.be/62dNxb5bals?t=…
SOC modernization 101: Watch our in-depth discussion on Autonomic Security Operations (ASO) and Continuous Detection, Continuous Response (CD/CR) at Mandiant mWISE. @Anton_Chuvakin #ASO #CDCR #SOC #CISO youtube.com/watch?v=62dNxb…
Some level of paranoia is healthy in the security space, but jumping to conclusions isn't. I'd recommend every team have a set of security checks they perform every time there is some level of IT disruption- knowing full well that 99.9% of the time it's not a security issue.
The President has been briefed by the Secretary of Transportation this morning on the FAA system outage. There is no evidence of a cyberattack at this point, but the President directed DOT to conduct a full investigation into the causes. The FAA will provide regular updates.
Florian Roth ⚡️ @cyb3rops
221K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
Paul Melson @pmelson
14K Followers 1K Following Author/Operator of @ScumBots. Blue Team by day, Blue Team by night. Opinions, typos, and bad grammar do not represent my employer. He/Him
SwiftOnSecurity @SwiftOnSecurity
410K Followers 9K Following computer security person. former helpdesk.
Jack Crook @jackcr
8K Followers 301 Following Principal Incident Responder for GE-CIRT and finder of bad guys - Former US Army Infantryman. Desert Storm and Somalia Veteran. #ThreatHunting #DFIR
David J. Bianco @DavidJBianco
12K Followers 826 Following Threat Hunting, CTI, incident detection & response. SANS instructor. Special interest in helping newbies get started. He/Him. https://t.co/XcrBqQLUrP
PC @pchobbit
1K Followers 2K Following Talos Incident Response global leader by day - former CISO, Risk Management, etc. Gamer, RPG. travel enthusiast by night -The views expressed are my own
Dr. Anton Chuvakin @anton_chuvakin
42K Followers 9K Following Information security - #SIEM, #DFIR, #EDR formerly at Gartner! Now @GoogleCloud Office of the #CISO; host of @CloudSecPodcast https://t.co/VpKtfz8nXG
Brad Garnett @brgarnett
1K Followers 379 Following Founder & Principal | Commercial Pilot | Flight Instructor | Former @TalosSecurity #DFIR biz leader | @TEDx Speaker --Opinions expressed here are mine alone.
Chad Tilbury @chadtilbury
22K Followers 599 Following Digital forensics and incident response. Ex-AFOSI, Mandiant, and CrowdStrike. SANS Institute Fellow and co-author of #FOR500 and #FOR508 courses.
David Maynor @Dave_Maynor
14K Followers 6K Following No tree, it is said, can grow to heaven, unless it’s roots reach down to hell. Offensive Security, AI LLM Ops, hardware hacking
Nicole Beckwith @NicoleBeckwith
42K Followers 7K Following Sr. Director, Security Engineering and Operations @cribl_io
BanG @HachBox
4 Followers 66 Following Here for the #CyberSecurity knowledge, staying for Valorant news and roster stuff. but hey LFT 🫡 message [email protected]
Joe W @JoeWanzala
384 Followers 5K Following
SUSAN DELA ROSE 🌹�... @rosa_susan15764
368 Followers 4K Following movie, Actress, Director, Business entrepreneur,
Vinnie ₿itcoins⚡ @vinnie_bitcoins
5K Followers 4K Following Senior Engineer/Recruiter | Interested in investing, tech, gaming, faith, and freedom 🇺🇸 $BTC $MSTR
timlake @timlake252160
1 Followers 2K Following
Naretar @Naretar03658
41 Followers 3K Following
IT CPE Academy @itcpecredit
270 Followers 3K Following Self-Study CPE Programs to help professionals acquire the skills, knowledge and certificates in IT and cybersecurity
Matthew Spector @InfoSPECtre
162 Followers 1K Following Spring comes and the grass grows all by itself
nanjin002 @nanjin00272827
12 Followers 4K Following
crawler_cookie_0 @crawler_cookie0
21 Followers 4K Following
Sophie McDonald @sophiemac27
404 Followers 6K Following Proud Mom/ CFP #Trump2024 #MAGA I Love American 🇺🇲 Real estate management and loan services
annumeena @annumeena19
75 Followers 8K Following
ThatCyberGuy5 @ThatCyberGuy5
255 Followers 583 Following Leader in #ThreatHunt / #ThreatIntel / #DFIR & professional bad guy hunter. He/Him.
Trendsetter_ @Trendsette10154
8 Followers 532 Following Everyone's the moon. There's always a dark side that's never seen.
Aref @ArefBlog
4 Followers 114 Following sysadmin trying to remember useful stuff I forget | https://t.co/6hvjmZJy0y
Ryan Johndrow @rjohndrow
6 Followers 28 Following
Guy Gandelman @0xgCMyGa1ID3v7O
1 Followers 198 Following
Bilal Ahmed @bilalahmedoffi6
3 Followers 97 Following
Clare Dussman @clarebridget
358 Followers 1K Following "My world's on fire, how bout yours? That's the way I like it, so I never get bored." All* New Cyber Director, Nerd, Foodie, Podcast Addict, Cambridge MBA
Russell Nomer @russellnomer
996 Followers 7K Following Cybersecurity Expert | Music Creator | Trump 2028 Blog: https://t.co/yXowgmOZOZ Merch: – https://t.co/20Yl38Fge6
Catherine @saliza_80
28 Followers 231 Following I am a lady with passion and curiosity. I love challenges and learning and am always seeking to surpass myself and grow.
6WIND Software @6WINDsoftware
2K Followers 5K Following We deliver virtualized, cloudified, distributed, high-performance and secure networking software solutions to support new applications such as #5G, IoT, SD-WAN.
Katie Davis @jordancru637
371 Followers 3K Following Memories are the way of the weak. Look ahead and you will win. I am a business woman who likes to follow world news. I have a big focus on business, war and fin
Colin Braun @colinbraun
16K Followers 182 Following 🇺🇸 Racing Driver — #60 MSR Acura HRC GTP 🏆 4× Daytona | 3× Sebring | Spa 24H | Le Mans 🏁 26 IMSA Wins • 3× IMSA Champion 💙 Dad | 👊 Husband
Kimberly chase @chaseri52587951
41 Followers 1K Following My only backup page ,the wound is the place where the light enters you.😍😘🤣🤣🤣
Jake Hall @realjakehall2
0 Followers 108 Following
vx-underground @vxunderground
439K Followers 359 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Chris Sanders 🔎 �... @chrissanders88
35K Followers 487 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Jack Crook @jackcr
8K Followers 301 Following Principal Incident Responder for GE-CIRT and finder of bad guys - Former US Army Infantryman. Desert Storm and Somalia Veteran. #ThreatHunting #DFIR
David J. Bianco @DavidJBianco
12K Followers 826 Following Threat Hunting, CTI, incident detection & response. SANS instructor. Special interest in helping newbies get started. He/Him. https://t.co/XcrBqQLUrP
PC @pchobbit
1K Followers 2K Following Talos Incident Response global leader by day - former CISO, Risk Management, etc. Gamer, RPG. travel enthusiast by night -The views expressed are my own
Dr. Anton Chuvakin @anton_chuvakin
42K Followers 9K Following Information security - #SIEM, #DFIR, #EDR formerly at Gartner! Now @GoogleCloud Office of the #CISO; host of @CloudSecPodcast https://t.co/VpKtfz8nXG
Brad Garnett @brgarnett
1K Followers 379 Following Founder & Principal | Commercial Pilot | Flight Instructor | Former @TalosSecurity #DFIR biz leader | @TEDx Speaker --Opinions expressed here are mine alone.
Dmitri Alperovitch @DAlperovitch
203K Followers 2K Following Geopolitics/NatSec, Russia, China, Cyber. Chairman @SilveradoPolicy; Author WorldOnTheBrink; Host @GeopolDecanted; Founder @alperovitch; Co-Founder @CrowdStrike
United Airlines @united
1.2M Followers 36K Following You’ve landed at the ✨official account✨ for United Airlines, where everyone is the main character on our flights. DM directly for assistance.
Colin Braun @colinbraun
16K Followers 182 Following 🇺🇸 Racing Driver — #60 MSR Acura HRC GTP 🏆 4× Daytona | 3× Sebring | Spa 24H | Le Mans 🏁 26 IMSA Wins • 3× IMSA Champion 💙 Dad | 👊 Husband
Aviation ISAC @AviationISAC
1K Followers 68 Following We help create a safe, secure, efficient, and resilient global air transportation system to reduce aviation's financial and operational risk.
RH-ISAC @RH_ISAC
2K Followers 1K Following As a member of the National Council of ISACs, the RH-ISAC is the information sharing and analysis center for these important sectors – retail and hospitality.
Tim Nguyen @methodtim
3K Followers 821 Following Security Engineering - @AnthropicAI Opinions mostly stolen from people smarter than me. #BlackLivesMatter
Grant Milstead @grantmillie
596 Followers 605 Following Living at the crossroads of business and technology, VP Digital Technology @United My views are my own.
ARCHIVED: Jen Easterl... @CISAJen
61K Followers 48 Following Archived: Director, CISA—America’s Cyber Defense Agency. Combat Veteran. Proud Mom. Rubik’s Cuber. Aspiring Electric 🎸. ❤️/RT ≠ endorsement
Becky Selzer @BeckySecurity
1K Followers 1K Following Senior Principal Architect @United Digital Technology Platform Architecture and Engineering - ✈️ - Volunteer at @AdlerPlanet - @BlueTeamCon board. She/her.
𝕯𝖒𝖎𝖙𝖗�... @ddd1ms
13K Followers 1K Following
[email protected]... @killchain__
2K Followers 213 Following I'm an analyst. I co-authored the paper that introduced the kill chain to information security. Just my personal views here.
David Maria @__dmaria
85 Followers 194 Following Security Engineer • DFIR • 2nd rate stuff breaker • @HackUCF • My opinions are my own
Linda Jojo @ljojo
3K Followers 440 Following Retired Chief Customer Officer @United Airlines Comments are mine - Account not monitored. Tweet @united for support
Jeff Pollard @jeff_pollard2
2K Followers 440 Following VP & Principal Analyst @Forrester covering #infosec, #cybersecurity, #privacy. Primary focus areas CISO Leadership & Security Services.
Brett Marwood Ellis @Brett_M_Ellis
183 Followers 367 Following Talos Incident Response Senior Consultant. GCFA, GCIA. Into rock climbing, camping, hiking, photography, and hanging out with my golden retriever.
Paul Lee @paulleeio
37 Followers 202 Following Former Marine. Cyber Security Professional. All tweets and opinions are my own. They are also probably dumb
Kevin @KevinHeckart
42 Followers 179 Following
Robin @RobinBrocks
101 Followers 248 Following #DFIR Senior with a few grey hairs left. Living and loving in 🇩🇪. My tweets belong to me!
The Letterkenny Oracl... @EnglishLFC
913 Followers 96 Following Listen to Beers with Talos. I am the Oracle. https://t.co/qxgQgzgKD5 - Podcast: https://t.co/Cs9Q9rWc9I
Garin Pace @Garin_Pace
360 Followers 851 Following I like figuring out how things work. I work in the infosec & privacy (cyber) insurance space as an underwriter. Views are my own and not my employer’s.
Daniel Woods @IelTop
796 Followers 790 Following I research the economics of cybersecurity & privacy Cyber risk science at @SolveCyberRisk @EdinburghUni My own thoughts
Renee Dudley @Renee_Dudley
3K Followers 3K Following Reporter @ProPublica. Co-author of "The Ransomware Hunting Team" (published 2022 by @fsgbooks)
Joe @ImmortanJo3
1K Followers 992 Following Dungeons & Dragons. Shiny & Chrome. Banjo's. I sometimes talk about cyber security. My opinions are my own, and not MEDIOCRE. #WarEagle #fella #NAFO
Christina Richmond @Xtina_Richmond
576 Followers 534 Following Unavoidably curious about security services and technology!
Omar Ωr Santos @santosomar
18K Followers 2K Following Cybersecurity, AI security research, bug hunting, IR, threat intel, @redteamvillage_ lead. @Cisco PSIRT. Prior @USMC. Author of over 25 books.
Charles Iszard @IszardC
71 Followers 78 Following DFIR VP at Aon / Stroz Friedberg | Former Consultant at Cisco Talos & SecureWorks | Fabricator of stuff | Views are my own
James Mobley @JamesTMobley
216 Followers 123 Following Technology executive @Cisco. Entrepreneur. Innovation. Product management. Security. Economic empowerment. Football. Theater. Tweets are my own.
TK Keanini @tkeanini
1K Followers 898 Following VP and CTO for Cisco Secure. other roles include: Musician, Video Game Sound Designer, Internet Routing Engineer, Coder, Father, and all around geek.
Josh DeButts @JoshDeButts
161 Followers 460 Following Husband, Son, Father, Bassist, Golfer...Analyst Relations at Palo Alto Networks. Tweets are mine.
Steve Martino @SJ_Martino
211 Followers 17 Following Leads Cisco’s Information Security (InfoSec) organization to innovate and adopt the most effective security technologies and policies,
Jeff Reed @jeffreed415
5K Followers 2K Following VP Product Cloud Security @GoogleCloud. Basketball fan, geek & backpacking dad. Tweets my own, which explains why there aren't more of them...
Ashley Arbuckle @AArbuckle11
238 Followers 80 Following SVP Customer Success @ Trellix. Previously Cisco Systems, PwC & PepsiCo. Advisor & mentor to #CyberSecurity startups. Dad & husband. My views.
Bryan Palma @BryanJPalma
8K Followers 136 Following Technology. Diversity. Running. Basketball. Backpacking. Reinvention.
Matt Watchinski @kmx2600
1K Followers 349 Following Talos. My tweets reflect my opinions, not my employers
Sergio Caltagirone - ... @cnoanalysis
16K Followers 1K Following President @AcademyThreat & Tech Director @GblEmancipation; Fmr @Dragosinc, @Microsoft & @NSAGov He/Him NOW AT https://t.co/ZWCsxBUFeG
Rob Fuller @mubix
78K Followers 25K Following Dad / Husband / Marine / Student / Teacher / @Hak5 / @NoVAHackers / @SiliconHBO / @NationalCCDC / @MARFORCYBER Auxiliary
Mari Degrazia @maridegrazia
8K Followers 149 Following Digital Forensics and Incident Response Professional, SANS Instructor, Maker and VR Gamer
Mandiant (part of Goo... @Mandiant
129K Followers 4K Following We’re determined to make organizations secure against cyber threats and confident in their readiness.
nerdiosity @nerdiosity
2K Followers 716 Following Cyber Rocket Surgeon. My bowtie is my super power. Alter Ego of PowerShelly. ~167 LEGO bricks tall Mastodon: @[email protected] BlueSky: @nerdiosity
Craig @security_craig
8K Followers 1K Following Head of Threat Intelligence Engineering @ Amazon | Former Director Talos | Distinguished Speaker Hall of Fame | Reformed Podcaster | Bug Hunter | My Opinions
Joel Esler @JoelEsler
6K Followers 630 Following PM - Tenable | xThreatSTOP | xCisco Talos | xPodcaster - SANS Podcast + Beers with Talos | Success comes in many forms.
Jared Greenhill @jared703
1K Followers 419 FollowingTrends for United States
You might like
