#firstcon25 — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #firstcon25, aggregated by home.social.
-
👀 ICYMI: FIRST Q3 2025 Highlights
The past few months have been incredibly productive for the FIRST community!
✅ #FIRSTCON25 Copenhagen Success - Over 40 TLP-CLEAR presentations now available on YouTube
✅ New FIRST CORE Initiative - Expanding our Community and Capacity Building Program globally
✅ Completed Season 1 of "Improving Security Across Nations with FIRST," featuring spotlight segments with global representation, designed to showcase member expertise and impact
✅ Digital Sovereignty Insights - Exploring community-driven approaches to tech independence
✅ SIG Innovations - Launched weekly malware analysis challenges for community education and welcomed the new Detection Engineering & Threat Hunting SIG
✅ Global Training Expansion - Continued capacity building in underserved regions
📖 Read our complete Q3 newsletter for more updates, details on upcoming events, and how you can get involved: https://go.first.org/SffSq
#CyberDefense #CyberSecurity
#InfoSec #IncidentResponse -
#FIRSTCON25 TLP:CLEAR sessions are now available for viewing. Shameless plug for my New ASNs talk included. Full play list: https://www.youtube.com/playlist?list=PLBAUUhONOrO81e07ErZclykFgacbncbSZ
-
Effective cybersecurity capacity building in action: FIRST’s partnership with PaCSON showcases collaborative incident response development!
#FIRSTCON25 brought together Pacific region CSIRTs from Kiribati, Palau, Tonga, New Zealand, Vanuatu, and Australia for workshops on digital forensics, AI applications, and incident case studies.
Read more: https://go.first.org/p5yeY
-
Exciting coverage from Kevin Poireault at Infosecurity Magazine on the launch of Draugnet, a new anonymous threat reporting platform that was demonstrated at #FIRSTCON25!
The article highlights how Trey Darley, a Belgian security researcher, and Alexandre Dulaunoy, the head of the Computer Incident Response Center Luxembourg (CIRCL) (both FIRST Members) are democratizing cyber threat intelligence reporting with this innovative MISP-based platform.
Draugnet's mission and capabilities:
🔍 Anonymous threat reporting without account registration or login requirements
📊 Simple machine-readable JSON format for vulnerability reports and threat intelligence
⚡ Designed "for quiet defenders, rotating trust groups, and anyone caught between responsible stewardship and unmanageable risk"
🛡️ Built on the open-source MISPRead more: https://go.first.org/8FA3i
-
💭 As we reflect on the week we've had at #FIRSTCON25; we've love for you to share your favorite moments from this week below 🔗 https://go.first.org/Nz2u9
-
🌍 #FIRSTCON25 is a wrap! What an incredible week in Copenhagen, Denmark with 1,000+ cybersecurity professionals from 100+ countries. The record-breaking attendance demonstrates the critical importance of international partnership in addressing today's complex threat landscape.
Highlights from our 37th Annual Conference:
🚀 Launched FIRST CORE initiative with Fortinet
🤝 Announced Canada-UK Common Good Cyber Fund
🎉 Welcomed Olivier Caleff as new FIRST Chair and Graciela Martinez Giordano to the Board of Directors
🏆 Inducted Rich Pethia into our Incident Response Hall of Fame📺 Stay tuned - TLP:CLEAR talks will be available on the FIRST YouTube channel later this summer!
Read more: https://go.first.org/2ZcSY
-
Que 🎶Closing Time🎶 and catch our Friday keynote and closing remarks today to wrap up #FIRSTCON25 🔗 https://go.first.org/Nz2u9 #weresadtoo #closingremarks #keynote
-
If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 https://go.first.org/Nz2u9
-
If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 https://go.first.org/Nz2u9
-
If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 https://go.first.org/Nz2u9
-
If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 https://go.first.org/Nz2u9
-
If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 https://go.first.org/Nz2u9
-
Final Tips and takeaways:
You always have a choice
Less is more
Build in a non-work schedule
… -
Leaders and Organisations need to play their part. Understand the load, focus teams, provide support.
The onus to reduce burnout is more on leaders than individuals. Executives must be on the hook to foster an environment that minimzes burnout.
-
Build Resilience: Widen your capacity for stress by bringing in controlled stressors
Build smaller plans/action packs for achieving a goal
Look at long-term problems
If all else fails, leave
-
Burnout is NOT a badge of honour
-
Physical symptoms of burnout:
-
Emotional symptoms of burnout:
-
Next up today… Burnout: Detect, Investigate, Respond, Recover, Prevention — Désirée Sacher, Carson Zimmerman
-
⚡ Are you ready for another round of #LightningTalks?! ⚡ Get ready and get excited for this afternoon at #FIRSTCON25 🔗https://go.first.org/LV4lq
-
A Story about Fighting Disinformation or How We Helped the Russian Trolls — Krassimir Tzvetanov
Official blog: THE FORCES (4S): Strategy, Security, and Social Systems Initiative
https://forces.systems/io/tutorials/influenceops101/index.html -
We are especially interested in our SIG’s this week at #FIRSTCON25 😉 Stay informed by attending the SIG Updates today at 10:20! 🔗https://go.first.org/LV4lq
-
Bring your dancing shoes this evening folks! 💃🕺 Can't wait to see you tonight at 19:00 for the conference social for #FIRSTCON25 🎤#letsdance🔗https://go.first.org/LV4lq
-
The Finish language may have been an additional disadvantage for attackers in the past, this was seen for years in low quality SPAM. With improvements in LLMs and automation, the language barrier is lower or no longer an issue here.
Threat landscapes change regularly, so we'll see how LLMs make changes moving forwards.
-
53% of American healthcare organisations pay Ransomware.
No Finish healthcare organisations have paid.
This sends a clear message.
-
Vastaamo incident from 2020 was a blackspot on the Finish healthcare landscape. Due to the data leaks, deaths occurred.
https://en.m.wikipedia.org/wiki/Vastaamo_data_breach
"This hacking incident had a wide impact on healthcare industry's obligations to secure their networks and increase their accountability."
The follow-up to this tragedy forced Ransomware and security of data into the limelight politically and technically.
-
Finland has held regular ICT fairs to provide comprehensive peer-to-peer networking and support since the 1970's. This has built a landscape of frequent communication, even between competing companies.
NCSC-FI promotes scanning and support for healthcare to reduce attack surface. Complexity and legacy systems are not much different to other regions (e.g. USA).
-
Finland specifically (2022-2024) saw 74 reported cases.
Despite Finish healthcare being 9% of GDP, they only equate to 3% of Ransomware cases in that period.
Attacks have been limited to admin and appointment systems, and had low/no impact on patients or their data.
-
Who's your lunch buddy for the day? 🥙🍴 Make sure to connect with your old and new pals at #FIRSTCON25 #inspiringconnections #incidentresponse #secconf 🔗https://go.first.org/LV4lq
-
Who's your lunch buddy for the day? 🥙🍴 Make sure to connect with your old and new pals at #FIRSTCON25 #inspiringconnections #incidentresponse #secconf 🔗https://go.first.org/LV4lq
-
Who's your lunch buddy for the day? 🥙🍴 Make sure to connect with your old and new pals at #FIRSTCON25 #inspiringconnections #incidentresponse #secconf 🔗https://go.first.org/LV4lq
-
Who's your lunch buddy for the day? 🥙🍴 Make sure to connect with your old and new pals at #FIRSTCON25 #inspiringconnections #incidentresponse #secconf 🔗https://go.first.org/LV4lq
-
Who's your lunch buddy for the day? 🥙🍴 Make sure to connect with your old and new pals at #FIRSTCON25 #inspiringconnections #incidentresponse #secconf 🔗https://go.first.org/LV4lq
-
Ransomware attacks are mainly financially motivated. Rational targeting is towards larger targets with the lowest effort. Cybercrime gangs work internationally, so country boundaries don't prevent this.
Ransomware incidents are talked about publicly more than other types of cybercrime, making the incidents comparable.
5-8% of Ransomware attacks are healthcare sector. 67% of healthcare organisations fell victim to Ransomware (this number seems skewed and should be taking with a pinch of salt).
-
Despite Ransomware being such a Global phenomenon, Finland has seen a low level of reports of compromise.
- Mainly public healthcare
- Small economy
- Specialist support from NCSC-FI
- Small country, low hierarchy
- No healthcare company in FI has paid Ransomware -
Why is Finnish Healthcare Doing So Well Against Ransomware?
Perttu Halonen (National Cyber Security Centre Finland, FI)
-
Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).
-
Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).
-
Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).
-
Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).
-
Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).
-
We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 https://go.first.org/LV4lq
-
We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 https://go.first.org/LV4lq
-
We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 https://go.first.org/LV4lq
-
We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 https://go.first.org/LV4lq
-
We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 https://go.first.org/LV4lq
-
The FIRST AGM is today, are you ready to take notes? 📝 #FIRSTCON25 #annualgeneralmeeting 🔗https://go.first.org/LV4lq
-
The FIRST AGM is today, are you ready to take notes? 📝 #FIRSTCON25 #annualgeneralmeeting 🔗https://go.first.org/LV4lq
-
The FIRST AGM is today, are you ready to take notes? 📝 #FIRSTCON25 #annualgeneralmeeting 🔗https://go.first.org/LV4lq
-
The FIRST AGM is today, are you ready to take notes? 📝 #FIRSTCON25 #annualgeneralmeeting 🔗https://go.first.org/LV4lq