Search
1000 results for “shortridge”
-
@shortridge 's talk at #enigma2023 is ridiculously good.
Very glad that @leak is live posting about it! https://hachyderm.io/@leak/109758085369245666
-
@shortridge 's talk at #enigma2023 is ridiculously good.
Very glad that @leak is live posting about it! https://hachyderm.io/@leak/109758085369245666
-
@shortridge 's talk at #enigma2023 is ridiculously good.
Very glad that @leak is live posting about it! https://hachyderm.io/@leak/109758085369245666
-
@shortridge 's talk at #enigma2023 is ridiculously good.
Very glad that @leak is live posting about it! https://hachyderm.io/@leak/109758085369245666
-
@shortridge 's talk at #enigma2023 is ridiculously good.
Very glad that @leak is live posting about it! https://hachyderm.io/@leak/109758085369245666
-
(part 3/3)
🪶 Kelly Shortridge - Birds of a Feather: Adapting to the Unknown: Resilience Engineering in a Time of Chaos
For more details, see our article on CyberCanon RSAC sessions/signings: https://www.linkedin.com/pulse/cybercanon-2026-rsa-activities-cybersecurity-canon-xj7se/
-
I am a big fan of @shortridge 's Security Chaos Engineering and posted this not-really-a-review, explaining why:
-
I am a big fan of @shortridge 's Security Chaos Engineering and posted this not-really-a-review, explaining why:
-
I am a big fan of @shortridge 's Security Chaos Engineering and posted this not-really-a-review, explaining why:
-
I am a big fan of @shortridge 's Security Chaos Engineering and posted this not-really-a-review, explaining why:
-
I am a big fan of @shortridge 's Security Chaos Engineering and posted this not-really-a-review, explaining why:
-
Want to watch a video that makes lessons from Kelly Shortridge and Aaron Rinehart's "Security Chaos Engineering" book sink in? This video by Kyle Hill on the Three Mile Island disaster is it. Learn what a "Normal Accident" is. Bonus: it's an entertaining video about a misunderstood nuclear disaster. https://youtu.be/cL9PsCLJpAA?si=zHf6FE_DUoPbatjS
@shortridge #ChaosEngineering #SecurityChaosEngineering #InfoSec
-
Want to watch a video that makes lessons from Kelly Shortridge and Aaron Rinehart's "Security Chaos Engineering" book sink in? This video by Kyle Hill on the Three Mile Island disaster is it. Learn what a "Normal Accident" is. Bonus: it's an entertaining video about a misunderstood nuclear disaster. https://youtu.be/cL9PsCLJpAA?si=zHf6FE_DUoPbatjS
@shortridge #ChaosEngineering #SecurityChaosEngineering #InfoSec
-
Want to watch a video that makes lessons from Kelly Shortridge and Aaron Rinehart's "Security Chaos Engineering" book sink in? This video by Kyle Hill on the Three Mile Island disaster is it. Learn what a "Normal Accident" is. Bonus: it's an entertaining video about a misunderstood nuclear disaster. https://youtu.be/cL9PsCLJpAA?si=zHf6FE_DUoPbatjS
@shortridge #ChaosEngineering #SecurityChaosEngineering #InfoSec
-
Want to watch a video that makes lessons from Kelly Shortridge and Aaron Rinehart's "Security Chaos Engineering" book sink in? This video by Kyle Hill on the Three Mile Island disaster is it. Learn what a "Normal Accident" is. Bonus: it's an entertaining video about a misunderstood nuclear disaster. https://youtu.be/cL9PsCLJpAA?si=zHf6FE_DUoPbatjS
@shortridge #ChaosEngineering #SecurityChaosEngineering #InfoSec
-
Want to watch a video that makes lessons from Kelly Shortridge and Aaron Rinehart's "Security Chaos Engineering" book sink in? This video by Kyle Hill on the Three Mile Island disaster is it. Learn what a "Normal Accident" is. Bonus: it's an entertaining video about a misunderstood nuclear disaster. https://youtu.be/cL9PsCLJpAA?si=zHf6FE_DUoPbatjS
@shortridge #ChaosEngineering #SecurityChaosEngineering #InfoSec
-
Characterizing Climatic Socio‐Environmental Tipping Points in Coastal Communities: A Conceptual Framework for Research and Practice - Shortridge - 2024 - #EarthsFuture
https://agupubs.onlinelibrary.wiley.com/doi/full/10.1029/2023EF004123
-
Exploiting the *privileges* from a privileged build pipelines to run an attacker's code is a notable extension to this fantastic article by @shortridge at https://kellyshortridge.com/blog/posts/attackers-have-better-things-to-do-than-corrupt-your-builds/
The build system exploits that have been on my mind:
Build pipelines are often designed to operate with high privileges — and to use the new build's pipeline instructions for performing the build!As Kelly said, the attacker can get far more out of exploiting the ability to push their own code to run in the target environment — but the build system itself supplies the factor that elevates the severity and elevates the privileges by allowing the new build to define a series of actions that only the privileged build system can perform.
Build systems are great ways to make OTHER attacks more impactful or to evade detection. The main vulnerability is the ability for an attacker to run code — but the build system is a route along the way to augment that with privesc, confused deputy, evil maid, etc.
I'm wary of orgs that accept "well, of course if attacker gets X then they can deploy code" or "we allow users to run code by design" without taking care of basic controls to limit the blast radius of "working as designed; won't fix". I find it helpful to share some examples clarifying the impact and what they can do to provide guardrails for build systems.
-
Finishing off #enigma2023 with "The Very Hungry Defender: Metamorphosing Security Decision-Making by Incorporating Opportunity Cost" from Kelly Shortridge, Fastly, Inc.
-
Finishing off #enigma2023 with "The Very Hungry Defender: Metamorphosing Security Decision-Making by Incorporating Opportunity Cost" from Kelly Shortridge, Fastly, Inc.
-
Finishing off #enigma2023 with "The Very Hungry Defender: Metamorphosing Security Decision-Making by Incorporating Opportunity Cost" from Kelly Shortridge, Fastly, Inc.
-
Finishing off #enigma2023 with "The Very Hungry Defender: Metamorphosing Security Decision-Making by Incorporating Opportunity Cost" from Kelly Shortridge, Fastly, Inc.
-
Finishing off #enigma2023 with "The Very Hungry Defender: Metamorphosing Security Decision-Making by Incorporating Opportunity Cost" from Kelly Shortridge, Fastly, Inc.
-
The 2026 Hall of Fame Winners are sitting pretty at the #RSAC bookstore...
🐻 𝙁𝙖𝙣𝙘𝙮 𝘽𝙚𝙖𝙧 𝙂𝙤𝙚𝙨 𝙋𝙝𝙞𝙨𝙝𝙞𝙣𝙜 by Scott J. Shapiro
😵💫 𝙎𝙚𝙘𝙪𝙧𝙞𝙩𝙮 𝘾𝙝𝙖𝙤𝙨 𝙀𝙣𝙜𝙞𝙣𝙚𝙚𝙧𝙞𝙣𝙜 by Kelly Shortridge with Aaron Rinehart
🥇 𝘾𝙮𝙗𝙚𝙧𝙨𝙚𝙘𝙪𝙧𝙞𝙩𝙮 𝙁𝙞𝙧𝙨𝙩 𝙋𝙧𝙞𝙣𝙘𝙞𝙥𝙡𝙚𝙨 by Rick HowardIn case you missed our announcement last week, see our 2026 Hall of Fame Press Release: https://cybercanon.org/press-release-cybercanon-announces-2026-hall-of-fame-book-winners/
-
If you're using #Mangane on #Pleroma or #Akkoma this may apply to you.
RE: https://hachyderm.io/@shortridge/115664561783943907 -
If you're using #Mangane on #Pleroma or #Akkoma this may apply to you.
RE: https://hachyderm.io/@shortridge/115664561783943907 -
If you're using #Mangane on #Pleroma or #Akkoma this may apply to you.
RE: https://hachyderm.io/@shortridge/115664561783943907 -
If you're using #Mangane on #Pleroma or #Akkoma this may apply to you.
RE: https://hachyderm.io/@shortridge/115664561783943907 -
If you're using #Mangane on #Pleroma or #Akkoma this may apply to you.
RE: https://hachyderm.io/@shortridge/115664561783943907 -
CW: Source: Reddit. Long list of repugnican child abusers;
Republican anti-abortion activist Howard Scott Heldreth is a convicted child rapist in Florida.
Republican County Commissioner David Swartz pleaded guilty to molesting two girls under the age of 11 and was sentenced to 8 years in prison.
Republican judge Mark Pazuhanich pleaded no contest to fondling a 10-year old girl and was sentenced to 10 years probation.
Republican anti-abortion activist Nicholas Morency pleaded guilty to possessing child pornography on his computer and offering a bounty to anybody who murders an abortion doctor.
Republican legislator Edison Misla Aldarondo was sentenced to 10 years in prison for raping his daughter between the ages of 9 and 17.
Republican Mayor Philip Giordano is serving a 37-year sentence in federal prison for sexually abusing 8- and 10-year old girls.
Republican campaign consultant Tom Shortridge was sentenced to three years probation for taking nude photographs of a 15-year old girl.
Republican racist pedophile and United States Senator Strom Thurmond had sex with a 15-year old black girl which produced a child.
Republican pastor Mike Hintz, whom George W. Bush commended during the 2004 presidential campaign, surrendered to police after admitting to a sexual affair with a female juvenile.
Republican legislator Peter Dibble pleaded no contest to having an inappropriate relationship with a 13-year-old girl.
Republican Congressman Donald “Buz” Lukens was found guilty of having sex with a female minor and sentenced to one month in jail.
Republican fundraiser Richard A. Delgaudio was found guilty of child porn charges and paying two teenage girls to pose for sexual photos.
Republican activist Mark A. Grethen convicted on six counts of sex crimes involving children.
Republican activist Randal David Ankeney pleaded guilty to attempted sexual assault on a child.
Republican Congressman Dan Crane had sex with a female minor working as a congressional page.
Republican activist and Christian Coalition leader Beverly Russell admitted to an incestuous relationship with his step daughter.
Republican congressman and anti-gay activist Robert Bauman was charged with having sex with a 16-year-old boy he picked up at a gay bar.
Republican Committee Chairman Jeffrey Patti was arrested for distributing a video clip of a 5-year-old girl being raped.
Republican activist Marty Glickman (a.k.a. “Republican Marty”), was taken into custody by Florida police on four counts of unlawful sexual activity with an underage girl and one count of delivering the drug LSD.
Republican legislative aide Howard L. Brooks was charged with molesting a 12-year old boy and possession of child pornography.
Republican Senate candidate John Hathaway was accused of having sex with his 12-year old baby sitter and withdrew his candidacy after the allegations were reported in the media.
Republican preacher Stephen White, who demanded a return to traditional values, was sentenced to jail after offering $20 to a 14-year-old boy for permission to perform oral sex on him.
Republican talk show host Jon Matthews pleaded guilty to exposing his genitals to an 11 year old girl.
Republican anti-gay activist Earl “Butch” Kimmerling was sentenced to 40 years in prison for molesting an 8-year old girl after he attempted to stop a gay couple from adopting her.
Republican Party leader Paul Ingram pleaded guilty to six counts of raping his daughters and served 14 years in federal prison.
Republican election board official Kevin Coan was sentenced to two years probation for soliciting sex over the internet from a 14-year old girl.
Republican politician Andrew Buhr was charged with two counts of first degree sodomy with a 13-year old boy.
Republican politician Keith Westmoreland was arrested on seven felony counts of lewd and lascivious exhibition to girls under the age of 16 (i.e. exposing himself to children).
Republican anti-abortion activist John Allen Burt was charged with sexual misconduct involving a 15-year old girl.
Republican County Councilman Keola Childs pleaded guilty to molesting a male child.
Republican activist John Butler was charged with criminal sexual assault on a teenage girl.
Republican candidate Richard Gardner admitted to molesting his two daughters.
Republican Councilman and former Marine Jack W. Gardner was convicted of molesting a 13-year old girl.
Republican County Commissioner Merrill Robert Barter pleaded guilty to unlawful sexual contact and assault on a teenage boy.
Republican City Councilman Fred C. Smeltzer, Jr. pleaded no contest to raping a 15 year-old girl and served 6-months in prison.
Republican activist Parker J. Bena pleaded guilty to possession of child pornography on his home computer and was sentenced to 30 months in federal prison and fined $18,000.
Republican parole board officer and former Colorado state representative, Larry Jack Schwarz, was fired after child pornography was found in his possession.
Republican strategist and Citadel Military College graduate Robin Vanderwall was convicted in Virginia on five counts of soliciting sex from boys and girls over the internet.
Republican city councilman Mark Harris, who is described as a “good military man” and “church goer,” was convicted of repeatedly having sex with an 11-year-old girl and sentenced to 12 years in prison.
Republican businessman Jon Grunseth withdrew his candidacy for Minnesota governor after allegations surfaced that he went swimming in the nude with four underage girls, including his daughter.
Republican director of the “Young Republican Federation” Nicholas Elizondo molested his 6-year old daughter and was sentenced to six years in prison.
Republican benefactor of conservative Christian groups, Richard A. Dasen Sr., was charged with rape for allegedly paying a 15-year old girl for sex. Dasen, 62, who is married with grown children and several grandchildren, has allegedly told police that over the past decade he paid more than $1 million to have sex with a large number of young women.
Dennis Hastert served as Republican Speaker of the House (so, 3rd in line for the Presidency) for all 8 years of W. Bush’s two terms. He also sexually molested at least 5 boys when he was a HS wrestling coach, all of them underage with the youngest victim being 14. The victims only finally saw justice when Hastert was caught by the FBI trying to falsify payments for hush money.
Donald Trump walked into Miss Teen USA change rooms with girls as young as 14 changing. 26 women have spoken publicly about Trump’s pattern of sexual assault. In 2023, he was found legally liable for the rape of E. Jean Carroll by unanimous jury.
Anton “Tony” Lazzaro, a former Republican donor and political strategist from Minnesota, was convicted in March 2023 on federal charges of sex trafficking minors. He was found guilty of conspiring to recruit and pay teenage girls, aged 15 and 16, for sex between May and December 2020. In August 2023, Lazzaro was sentenced to 21 years in prison for these offenses.Prior to his arrest, Lazzaro was a prominent figure in Minnesota Republican circles, donating over $270,000 to various Republican campaigns and political committees. His indictment led to significant turmoil within the Minnesota Republican Party, culminating in the resignation of then-party chair Jennifer