home.social

#firstcon25 — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #firstcon25, aggregated by home.social.

  1. 👀 ICYMI: FIRST Q3 2025 Highlights

    The past few months have been incredibly productive for the FIRST community!

    #FIRSTCON25 Copenhagen Success - Over 40 TLP-CLEAR presentations now available on YouTube

    ✅ New FIRST CORE Initiative - Expanding our Community and Capacity Building Program globally

    ✅ Completed Season 1 of "Improving Security Across Nations with FIRST," featuring spotlight segments with global representation, designed to showcase member expertise and impact

    ✅ Digital Sovereignty Insights - Exploring community-driven approaches to tech independence

    ✅ SIG Innovations - Launched weekly malware analysis challenges for community education and welcomed the new Detection Engineering & Threat Hunting SIG

    ✅ Global Training Expansion - Continued capacity building in underserved regions

    📖 Read our complete Q3 newsletter for more updates, details on upcoming events, and how you can get involved: go.first.org/SffSq

    #CyberDefense #CyberSecurity
    #InfoSec #IncidentResponse

  2. #FIRSTCON25 TLP:CLEAR sessions are now available for viewing. Shameless plug for my New ASNs talk included. Full play list: youtube.com/playlist?list=PLBA

  3. Effective cybersecurity capacity building in action: FIRST’s partnership with PaCSON showcases collaborative incident response development!

    #FIRSTCON25 brought together Pacific region CSIRTs from Kiribati, Palau, Tonga, New Zealand, Vanuatu, and Australia for workshops on digital forensics, AI applications, and incident case studies.

    Read more: go.first.org/p5yeY

    #CyberDefense #cybersecurity
    #IncidentResponse #infosec

  4. Exciting coverage from Kevin Poireault at Infosecurity Magazine on the launch of Draugnet, a new anonymous threat reporting platform that was demonstrated at #FIRSTCON25!

    The article highlights how Trey Darley, a Belgian security researcher, and Alexandre Dulaunoy, the head of the Computer Incident Response Center Luxembourg (CIRCL) (both FIRST Members) are democratizing cyber threat intelligence reporting with this innovative MISP-based platform.

    Draugnet's mission and capabilities:

    🔍 Anonymous threat reporting without account registration or login requirements
    📊 Simple machine-readable JSON format for vulnerability reports and threat intelligence
    ⚡ Designed "for quiet defenders, rotating trust groups, and anyone caught between responsible stewardship and unmanageable risk"
    🛡️ Built on the open-source MISP

    Read more: go.first.org/8FA3i

    #cybersecurity #infosec #VulnerabilityManagement

  5. 💭 As we reflect on the week we've had at #FIRSTCON25; we've love for you to share your favorite moments from this week below 🔗 go.first.org/Nz2u9

  6. 🌍 #FIRSTCON25 is a wrap! What an incredible week in Copenhagen, Denmark with 1,000+ cybersecurity professionals from 100+ countries. The record-breaking attendance demonstrates the critical importance of international partnership in addressing today's complex threat landscape.

    Highlights from our 37th Annual Conference:

    🚀 Launched FIRST CORE initiative with Fortinet
    🤝 Announced Canada-UK Common Good Cyber Fund
    🎉 Welcomed Olivier Caleff as new FIRST Chair and Graciela Martinez Giordano to the Board of Directors
    🏆 Inducted Rich Pethia into our Incident Response Hall of Fame

    📺 Stay tuned - TLP:CLEAR talks will be available on the FIRST YouTube channel later this summer!

    Read more: go.first.org/2ZcSY

    #cybersecurity #CyberDefense
    #infosec #security

  7. If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 go.first.org/Nz2u9

  8. If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 go.first.org/Nz2u9

  9. If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 go.first.org/Nz2u9

  10. If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 go.first.org/Nz2u9

  11. If you weren't able to connect with those you wanted to during lunch, make sure to find them at the networking break this afternoon at 15:45! 🤝 #FIRSTCON25 #secconf🔗 go.first.org/Nz2u9

  12. Final Tips and takeaways:

    You always have a choice
    Less is more
    Build in a non-work schedule

    #FIRSTCON25

  13. Leaders and Organisations need to play their part. Understand the load, focus teams, provide support.

    The onus to reduce burnout is more on leaders than individuals. Executives must be on the hook to foster an environment that minimzes burnout.

    #FIRSTCON25

  14. Build Resilience: Widen your capacity for stress by bringing in controlled stressors

    Build smaller plans/action packs for achieving a goal

    Look at long-term problems

    If all else fails, leave

    #FIRSTCON25

  15. Next up today… Burnout: Detect, Investigate, Respond, Recover, Prevention — Désirée Sacher, Carson Zimmerman

    #FIRSTCON25

  16. ⚡ Are you ready for another round of #LightningTalks?! ⚡ Get ready and get excited for this afternoon at #FIRSTCON25 🔗go.first.org/LV4lq

  17. A Story about Fighting Disinformation or How We Helped the Russian Trolls — Krassimir Tzvetanov

    #FIRSTCON25

    Official blog: THE FORCES (4S): Strategy, Security, and Social Systems Initiative
    forces.systems/io/tutorials/in

  18. We are especially interested in our SIG’s this week at #FIRSTCON25 😉 Stay informed by attending the SIG Updates today at 10:20! 🔗go.first.org/LV4lq

  19. Bring your dancing shoes this evening folks! 💃🕺 Can't wait to see you tonight at 19:00 for the conference social for #FIRSTCON25 🎤#letsdance🔗go.first.org/LV4lq

  20. The Finish language may have been an additional disadvantage for attackers in the past, this was seen for years in low quality SPAM. With improvements in LLMs and automation, the language barrier is lower or no longer an issue here.

    Threat landscapes change regularly, so we'll see how LLMs make changes moving forwards.

    #FIRSTCON25

  21. 53% of American healthcare organisations pay Ransomware.

    No Finish healthcare organisations have paid.

    This sends a clear message.

    #FIRSTCON25

  22. Vastaamo incident from 2020 was a blackspot on the Finish healthcare landscape. Due to the data leaks, deaths occurred.

    en.m.wikipedia.org/wiki/Vastaa

    "This hacking incident had a wide impact on healthcare industry's obligations to secure their networks and increase their accountability."

    The follow-up to this tragedy forced Ransomware and security of data into the limelight politically and technically.

    #FIRSTCON25

  23. Finland has held regular ICT fairs to provide comprehensive peer-to-peer networking and support since the 1970's. This has built a landscape of frequent communication, even between competing companies.

    NCSC-FI promotes scanning and support for healthcare to reduce attack surface. Complexity and legacy systems are not much different to other regions (e.g. USA).

    #FIRSTCON25

  24. Finland specifically (2022-2024) saw 74 reported cases.

    Despite Finish healthcare being 9% of GDP, they only equate to 3% of Ransomware cases in that period.

    Attacks have been limited to admin and appointment systems, and had low/no impact on patients or their data.

    #FIRSTCON25

  25. Ransomware attacks are mainly financially motivated. Rational targeting is towards larger targets with the lowest effort. Cybercrime gangs work internationally, so country boundaries don't prevent this.

    Ransomware incidents are talked about publicly more than other types of cybercrime, making the incidents comparable.

    5-8% of Ransomware attacks are healthcare sector. 67% of healthcare organisations fell victim to Ransomware (this number seems skewed and should be taking with a pinch of salt).

    #FIRSTCON25

  26. Despite Ransomware being such a Global phenomenon, Finland has seen a low level of reports of compromise.

    - Mainly public healthcare
    - Small economy
    - Specialist support from NCSC-FI
    - Small country, low hierarchy
    - No healthcare company in FI has paid Ransomware

    #FIRSTCON25

  27. Why is Finnish Healthcare Doing So Well Against Ransomware?

    Perttu Halonen (National Cyber Security Centre Finland, FI)

    #FIRSTCON25

  28. Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).

    #FIRSTCON25 #MuonFP

  29. Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).

    #FIRSTCON25 #MuonFP

  30. Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).

    #FIRSTCON25 #MuonFP

  31. Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).

    #FIRSTCON25 #MuonFP

  32. Fingerprints that don't include any options — e.g. 65535 : : : or 1024 : : : — are large-scale scanning tools as they don't send options in order to speed up scans and they don't expect a full connection to form (therefore don't need to form the packet fully).

    #FIRSTCON25 #MuonFP

  33. We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 go.first.org/LV4lq

  34. We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 go.first.org/LV4lq

  35. We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 go.first.org/LV4lq

  36. We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 go.first.org/LV4lq

  37. We hope to see you at the Keynote Address this morning 👀🤓 #FIRSTCON25 #secconf🔗 go.first.org/LV4lq