#securityops — Public Fediverse posts

Your SOC is drowning in alerts. Your team is 15 people. They're spread across six continents and responding from satellites.

They aren't failing because they stopped using LLMs for threat modeling.

Energy-Based Models responds as energy landscapes—not the next text string. Governed by TAME principles: Tested, Auditable, Measurable, Explainable. Court-admissible evidence in 47 seconds.

Watch it live: https://securesql.info/2026/05/01/infosecblueprints/

#SecurityOps #IncidentResponse #CyberSecurityAI #SentinelMesh

Formation Hackfest 2026: Formation Cloud Pragmatique & Security Ops

C'est un bootcamp opérationnel où chaque minute compte.
Vous ne repartez pas avec des concepts abstraits — mais avec une infrastructure qui tourne, une sécurité qui protège, et la capacité d'intervenir comme une SWAT team sur n'importe quel incident Azure.

https://hackfest.ca/formations/?utm_source=mastodon&utm_medium=socmed&utm_campaign=formations_cloudOps_avril2026&utm_id=formations_cloudOps_avril2026

#Cybersecurity #infosec #Cloud #SecurityOps #hacking

Detection gaps aren’t about visibility. They’re about judgment.
"Machines also cannot infer intentionality."
If attackers operate within normal behavior, most detections won’t trigger.

https://www.technadu.com/when-detection-fails-quietly-what-are-teams-really-chasing/627185/

#Cybersecurity #ThreatDetection #SOC #Infosec #SecurityOps

Detection gaps aren’t about visibility. They’re about judgment.
"Machines also cannot infer intentionality."
If attackers operate within normal behavior, most detections won’t trigger.

https://www.technadu.com/when-detection-fails-quietly-what-are-teams-really-chasing/627185/

#Cybersecurity #ThreatDetection #SOC #Infosec #SecurityOps

Detection gaps aren’t about visibility. They’re about judgment.
"Machines also cannot infer intentionality."
If attackers operate within normal behavior, most detections won’t trigger.

https://www.technadu.com/when-detection-fails-quietly-what-are-teams-really-chasing/627185/

#Cybersecurity #ThreatDetection #SOC #Infosec #SecurityOps

Detection gaps aren’t about visibility. They’re about judgment.
"Machines also cannot infer intentionality."
If attackers operate within normal behavior, most detections won’t trigger.

https://www.technadu.com/when-detection-fails-quietly-what-are-teams-really-chasing/627185/

#Cybersecurity #ThreatDetection #SOC #Infosec #SecurityOps

AI agents are executing actions - not just responding.
“The real exposure is at the agent layer.”
• Prompt injection = social engineering for AI
• Zero-click attacks can trigger system actions
• No visibility into downstream execution

Full interview:
https://www.technadu.com/ai-observability-what-defenders-need-when-systems-execute-what-they-read-and-act-without-input/626769/

#AISecurity #CyberSecurity #LLM #SecurityOps

One system says 10:02.
Another says 9:58.
The firewall says 10:05.

Welcome to incident response if your clocks aren’t synchronized.

New article: The Silent Risk of Inconsistent Time Synchronization

https://jimguckin.com/2026/03/04/the-silent-risk-of-inconsistent-time-synchronization/

#CyberSecurity #IncidentResponse #InfoSec #SecurityOps

Security is now part of MSP brand promise. Swipe for the practical shift and how to align services to it.

#ManagedSecurity #MSP #CyberTrends #SecurityOps

Dutch police arrested a suspect linked to JokerOTP - a bot engineered to automate OTP harvesting and bypass SMS-based 2FA protections.

Technique observed:
• Automated voice phishing (vishing)
• Fear-based social engineering
• Real-time OTP interception
• Credential resale & fraud enablement

The case reinforces a persistent issue: OTP over SMS remains highly vulnerable to social engineering workflows.

Security professionals - is it time to deprecate SMS-based MFA entirely?

Engage in the discussion below.
Follow @technadu for actionable threat intelligence.

#InfoSec #MFA #TwoFactorAuthentication #Vishing #CyberCrime #ThreatIntelligence #Fraud #IdentityTheft #CyberDefense #BlueTeam #SecurityOps

Dutch police arrested a suspect linked to JokerOTP - a bot engineered to automate OTP harvesting and bypass SMS-based 2FA protections.

Technique observed:
• Automated voice phishing (vishing)
• Fear-based social engineering
• Real-time OTP interception
• Credential resale & fraud enablement

The case reinforces a persistent issue: OTP over SMS remains highly vulnerable to social engineering workflows.

Security professionals - is it time to deprecate SMS-based MFA entirely?

Engage in the discussion below.
Follow @technadu for actionable threat intelligence.

#InfoSec #MFA #TwoFactorAuthentication #Vishing #CyberCrime #ThreatIntelligence #Fraud #IdentityTheft #CyberDefense #BlueTeam #SecurityOps

Dutch police arrested a suspect linked to JokerOTP - a bot engineered to automate OTP harvesting and bypass SMS-based 2FA protections.

Technique observed:
• Automated voice phishing (vishing)
• Fear-based social engineering
• Real-time OTP interception
• Credential resale & fraud enablement

The case reinforces a persistent issue: OTP over SMS remains highly vulnerable to social engineering workflows.

Security professionals - is it time to deprecate SMS-based MFA entirely?

Engage in the discussion below.
Follow @technadu for actionable threat intelligence.

#InfoSec #MFA #TwoFactorAuthentication #Vishing #CyberCrime #ThreatIntelligence #Fraud #IdentityTheft #CyberDefense #BlueTeam #SecurityOps

Dutch police arrested a suspect linked to JokerOTP - a bot engineered to automate OTP harvesting and bypass SMS-based 2FA protections.

Technique observed:
• Automated voice phishing (vishing)
• Fear-based social engineering
• Real-time OTP interception
• Credential resale & fraud enablement

The case reinforces a persistent issue: OTP over SMS remains highly vulnerable to social engineering workflows.

Security professionals - is it time to deprecate SMS-based MFA entirely?

Engage in the discussion below.
Follow @technadu for actionable threat intelligence.

#InfoSec #MFA #TwoFactorAuthentication #Vishing #CyberCrime #ThreatIntelligence #Fraud #IdentityTheft #CyberDefense #BlueTeam #SecurityOps

A breach is not only a security issue. It is an operations issue. #IBM puts the average at $4.4M. The practical lesson for 2026 is to automate the basics: identity hygiene, alert triage, and response runbooks so teams contain faster and spend less.

#Cybersecurity #SecurityOps #Automation #RiskManagement #MSP

🚨 NEW BLOG POST 🚨

"The Breaking Point: Why Cybersecurity and SOC Professionals Are Burning Out—And What Actually Works"

Nearly half of cybersecurity professionals experience moderate to severe burnout. 65% of SOC analysts have seriously considered leaving. But here's the thing: it's not a resilience problem. It's a design problem.

I've written a comprehensive breakdown of:

✓ Why the 10,000+ daily alerts trap is unsustainable
✓ How 24/7 shifts destroy sleep and performance
✓ Why compensation alone won't fix retention
✓ Practical solutions: fatigue management, alert rationalization, career paths, and organizational culture

This isn't about yoga classes and "self-care." It's about fixing the structural issues that burn through talent faster than the industry can train replacements.

Read the full post with research-backed strategies for both individuals and organizational leaders:

https://www.kylereddoch.me/blog/the-breaking-point-why-cybersecurity-and-soc-professionals-are-burning-out-and-what-actually-works/

#Cybersecurity #SOC #Burnout #MentalHealth #InfoSec #SecurityOps #CareerDevelopment #Workforce

👾 Digital Threats Don’t Knock — They Breach.
Most companies patch holes.
Hacktivate Labs builds digital shields before the attack even happens.

🧠 Your firewall isn’t your defense.
Your people are. Train them like operators — not employees.

The next workforce won’t just use AI…
They’ll secure it, fortify it, and harden every endpoint in the network.

⚠️ If your team isn’t security-trained —
your infrastructure is already exposed.

This is your warning shot.
Welcome to the era of cyber intelligence.

#HacktivateLabs #SecurityOps #NetworkSecurity #AIIntegrity #CyberWorkforce #KillTheBreach

👾 Digital Threats Don’t Knock — They Breach.
Most companies patch holes.
Hacktivate Labs builds digital shields before the attack even happens.

🧠 Your firewall isn’t your defense.
Your people are. Train them like operators — not employees.

The next workforce won’t just use AI…
They’ll secure it, fortify it, and harden every endpoint in the network.

⚠️ If your team isn’t security-trained —
your infrastructure is already exposed.

This is your warning shot.
Welcome to the era of cyber intelligence.

#HacktivateLabs #SecurityOps #NetworkSecurity #AIIntegrity #CyberWorkforce #KillTheBreach

👾 Digital Threats Don’t Knock — They Breach.
Most companies patch holes.
Hacktivate Labs builds digital shields before the attack even happens.

🧠 Your firewall isn’t your defense.
Your people are. Train them like operators — not employees.

The next workforce won’t just use AI…
They’ll secure it, fortify it, and harden every endpoint in the network.

⚠️ If your team isn’t security-trained —
your infrastructure is already exposed.

This is your warning shot.
Welcome to the era of cyber intelligence.

#HacktivateLabs #SecurityOps #NetworkSecurity #AIIntegrity #CyberWorkforce #KillTheBreach

👾 Digital Threats Don’t Knock — They Breach.
Most companies patch holes.
Hacktivate Labs builds digital shields before the attack even happens.

🧠 Your firewall isn’t your defense.
Your people are. Train them like operators — not employees.

The next workforce won’t just use AI…
They’ll secure it, fortify it, and harden every endpoint in the network.

⚠️ If your team isn’t security-trained —
your infrastructure is already exposed.

This is your warning shot.
Welcome to the era of cyber intelligence.

#HacktivateLabs #SecurityOps #NetworkSecurity #AIIntegrity #CyberWorkforce #KillTheBreach

ClickFix operators are now using fake full-screen “Windows Update” pages to push victims into running malicious commands. Combined with steganographic loaders and in-memory execution, these campaigns continue to evolve.

What detection or user-training approach do you think works best today?

Source: https://www.helpnetsecurity.com/2025/11/25/fake-windows-update-screen-clickfix/

Follow @technadu for ongoing threat-intel breakdowns and practical defense insights.

#Infosec #ThreatIntel #ClickFix #EDR #CyberHygiene #MalwareTrends #SecurityOps #WindowsSecurity #InfoStealer

ClickFix operators are now using fake full-screen “Windows Update” pages to push victims into running malicious commands. Combined with steganographic loaders and in-memory execution, these campaigns continue to evolve.

What detection or user-training approach do you think works best today?

Source: https://www.helpnetsecurity.com/2025/11/25/fake-windows-update-screen-clickfix/

Follow @technadu for ongoing threat-intel breakdowns and practical defense insights.

#Infosec #ThreatIntel #ClickFix #EDR #CyberHygiene #MalwareTrends #SecurityOps #WindowsSecurity #InfoStealer

ClickFix operators are now using fake full-screen “Windows Update” pages to push victims into running malicious commands. Combined with steganographic loaders and in-memory execution, these campaigns continue to evolve.

What detection or user-training approach do you think works best today?

Source: https://www.helpnetsecurity.com/2025/11/25/fake-windows-update-screen-clickfix/

Follow @technadu for ongoing threat-intel breakdowns and practical defense insights.

#Infosec #ThreatIntel #ClickFix #EDR #CyberHygiene #MalwareTrends #SecurityOps #WindowsSecurity #InfoStealer

DOJ announces new actions targeting illicit DPRK-linked schemes, including identity fraud enabling remote IT work at 136+ U.S. companies and APT38 crypto heists exceeding $15M.

Key elements:
• Multiple guilty pleas (U.S. & international)
• Unauthorized remote access + identity misuse
• Cryptocurrency laundering + ongoing seizure efforts
• DOJ, FBI & NSD coordination under DPRK RevGen initiative
Thoughts on improving remote-work identity vetting?
👍 Follow for more verified, unbiased cyber reporting.

#infosec #APT38 #Cybercrime #ThreatIntel #DOJ #NorthKorea #SecurityOps #CyberPolicy #DigitalForensics

DOJ announces new actions targeting illicit DPRK-linked schemes, including identity fraud enabling remote IT work at 136+ U.S. companies and APT38 crypto heists exceeding $15M.

Key elements:
• Multiple guilty pleas (U.S. & international)
• Unauthorized remote access + identity misuse
• Cryptocurrency laundering + ongoing seizure efforts
• DOJ, FBI & NSD coordination under DPRK RevGen initiative
Thoughts on improving remote-work identity vetting?
👍 Follow for more verified, unbiased cyber reporting.

#infosec #APT38 #Cybercrime #ThreatIntel #DOJ #NorthKorea #SecurityOps #CyberPolicy #DigitalForensics

DOJ announces new actions targeting illicit DPRK-linked schemes, including identity fraud enabling remote IT work at 136+ U.S. companies and APT38 crypto heists exceeding $15M.

Key elements:
• Multiple guilty pleas (U.S. & international)
• Unauthorized remote access + identity misuse
• Cryptocurrency laundering + ongoing seizure efforts
• DOJ, FBI & NSD coordination under DPRK RevGen initiative
Thoughts on improving remote-work identity vetting?
👍 Follow for more verified, unbiased cyber reporting.

#infosec #APT38 #Cybercrime #ThreatIntel #DOJ #NorthKorea #SecurityOps #CyberPolicy #DigitalForensics

AI is becoming central to security operations. Let's talk about why. 👇

AI-assisted workflows are on the rise. ⬆️ And, when an algorithm highlights a critical #security event, analysts need to understand why that happened. Without true visibility, this #AI assistance risks creating new blind spots and hiding important context, rather than leading to a solution. 😓

To make sense of the constant overflow of alerts, you need AI capabilities that are built into workflows that you already use, like:
☑️ Behavioral detection
☑️ Risk-based prioritization
☑️ Investigation summaries
☑️ Smarter dashboards and search

Learn how you can leverage these important AI capabilities and stay in control while using tools that accelerate detection, streamline investigations, and strengthen your reporting: https://graylog.org/post/how-graylog-uses-explainable-ai-to-help-security-teams/ #cybersecurity #securityops #security #securityanalyst

AI is becoming central to security operations. Let's talk about why. 👇

AI-assisted workflows are on the rise. ⬆️ And, when an algorithm highlights a critical #security event, analysts need to understand why that happened. Without true visibility, this #AI assistance risks creating new blind spots and hiding important context, rather than leading to a solution. 😓

To make sense of the constant overflow of alerts, you need AI capabilities that are built into workflows that you already use, like:
☑️ Behavioral detection
☑️ Risk-based prioritization
☑️ Investigation summaries
☑️ Smarter dashboards and search

Learn how you can leverage these important AI capabilities and stay in control while using tools that accelerate detection, streamline investigations, and strengthen your reporting: https://graylog.org/post/how-graylog-uses-explainable-ai-to-help-security-teams/ #cybersecurity #securityops #security #securityanalyst

AI is becoming central to security operations. Let's talk about why. 👇

AI-assisted workflows are on the rise. ⬆️ And, when an algorithm highlights a critical #security event, analysts need to understand why that happened. Without true visibility, this #AI assistance risks creating new blind spots and hiding important context, rather than leading to a solution. 😓

To make sense of the constant overflow of alerts, you need AI capabilities that are built into workflows that you already use, like:
☑️ Behavioral detection
☑️ Risk-based prioritization
☑️ Investigation summaries
☑️ Smarter dashboards and search

Learn how you can leverage these important AI capabilities and stay in control while using tools that accelerate detection, streamline investigations, and strengthen your reporting: https://graylog.org/post/how-graylog-uses-explainable-ai-to-help-security-teams/ #cybersecurity #securityops #security #securityanalyst

AI is becoming central to security operations. Let's talk about why. 👇

AI-assisted workflows are on the rise. ⬆️ And, when an algorithm highlights a critical #security event, analysts need to understand why that happened. Without true visibility, this #AI assistance risks creating new blind spots and hiding important context, rather than leading to a solution. 😓

To make sense of the constant overflow of alerts, you need AI capabilities that are built into workflows that you already use, like:
☑️ Behavioral detection
☑️ Risk-based prioritization
☑️ Investigation summaries
☑️ Smarter dashboards and search

Learn how you can leverage these important AI capabilities and stay in control while using tools that accelerate detection, streamline investigations, and strengthen your reporting: https://graylog.org/post/how-graylog-uses-explainable-ai-to-help-security-teams/ #cybersecurity #securityops #security #securityanalyst

AI is becoming central to security operations. Let's talk about why. 👇

AI-assisted workflows are on the rise. ⬆️ And, when an algorithm highlights a critical #security event, analysts need to understand why that happened. Without true visibility, this #AI assistance risks creating new blind spots and hiding important context, rather than leading to a solution. 😓

To make sense of the constant overflow of alerts, you need AI capabilities that are built into workflows that you already use, like:
☑️ Behavioral detection
☑️ Risk-based prioritization
☑️ Investigation summaries
☑️ Smarter dashboards and search

Learn how you can leverage these important AI capabilities and stay in control while using tools that accelerate detection, streamline investigations, and strengthen your reporting: https://graylog.org/post/how-graylog-uses-explainable-ai-to-help-security-teams/ #cybersecurity #securityops #security #securityanalyst

Where are the #CheckPoint #Firewall administrators in the #fediverse? 🔎

Let's connect for discussing various topics. 💬

I'm also active in the #CheckMates community: https://community.checkpoint.com/

#QuantumFirewall #QuantumManagement #SmartConsole #SecurityOps #CyberSecurity #InfoSec #NetworkSecurity

Where are the #CheckPoint #Firewall administrators in the #fediverse? 🔎

Let's connect for discussing various topics. 💬

I'm also active in the #CheckMates community: https://community.checkpoint.com/

#QuantumFirewall #QuantumManagement #SmartConsole #SecurityOps #CyberSecurity #InfoSec #NetworkSecurity

Where are the #CheckPoint #Firewall administrators in the #fediverse? 🔎

Let's connect for discussing various topics. 💬

I'm also active in the #CheckMates community: https://community.checkpoint.com/

#QuantumFirewall #QuantumManagement #SmartConsole #SecurityOps #CyberSecurity #InfoSec #NetworkSecurity

Where are the #CheckPoint #Firewall administrators in the #fediverse? 🔎

Let's connect for discussing various topics. 💬

I'm also active in the #CheckMates community: https://community.checkpoint.com/

#QuantumFirewall #QuantumManagement #SmartConsole #SecurityOps #CyberSecurity #InfoSec #NetworkSecurity

Hot off the #CheckMates Press! Quantum Management Spotlight – Discover 3 Features You Should Start Using Today!

Get ready to boost your SecOps with tools designed to save time, reduce risk, and make your life easier. Here’s what’s covered:

1. Network Feed
2. Dynamic Log Distribution
3. SmartWorkflow

Read the full post on CheckMates: https://community.checkpoint.com/t5/Management/This-Month-s-Spotlight-3-Features-You-Should-Start-Using-Today/td-p/252359

#CheckPoint #QuantumManagement #SmartConsole #CheckMates #SecurityOps #CyberSecurity #NetworkSecurity

Hot off the #CheckMates Press! Quantum Management Spotlight – Discover 3 Features You Should Start Using Today!

Get ready to boost your SecOps with tools designed to save time, reduce risk, and make your life easier. Here’s what’s covered:

1. Network Feed
2. Dynamic Log Distribution
3. SmartWorkflow

Read the full post on CheckMates: https://community.checkpoint.com/t5/Management/This-Month-s-Spotlight-3-Features-You-Should-Start-Using-Today/td-p/252359

#CheckPoint #QuantumManagement #SmartConsole #CheckMates #SecurityOps #CyberSecurity #NetworkSecurity

Hot off the #CheckMates Press! Quantum Management Spotlight – Discover 3 Features You Should Start Using Today!

Get ready to boost your SecOps with tools designed to save time, reduce risk, and make your life easier. Here’s what’s covered:

1. Network Feed
2. Dynamic Log Distribution
3. SmartWorkflow

Read the full post on CheckMates: https://community.checkpoint.com/t5/Management/This-Month-s-Spotlight-3-Features-You-Should-Start-Using-Today/td-p/252359

#CheckPoint #QuantumManagement #SmartConsole #CheckMates #SecurityOps #CyberSecurity #NetworkSecurity

Hot off the #CheckMates Press! Quantum Management Spotlight – Discover 3 Features You Should Start Using Today!

Get ready to boost your SecOps with tools designed to save time, reduce risk, and make your life easier. Here’s what’s covered:

1. Network Feed
2. Dynamic Log Distribution
3. SmartWorkflow

Read the full post on CheckMates: https://community.checkpoint.com/t5/Management/This-Month-s-Spotlight-3-Features-You-Should-Start-Using-Today/td-p/252359

#CheckPoint #QuantumManagement #SmartConsole #CheckMates #SecurityOps #CyberSecurity #NetworkSecurity

A comprehensive look at EDR systems' inner workings and the real-world tactics employed to circumvent them. Essential information for professionals involved in security operations and threat analysis.

Grounded in tested techniques—not speculation—and focused on practical tradecraft.

https://nostarch.com/evading-edr

#EndpointSecurity #EDRArchitecture #SecurityOps

Drowning in CISA advisories? Tines has a free workflow automating monitoring, enrichment (CrowdStrike), & ticketing (ServiceNow) via Slack approvals. Cut manual tasks by 60% & keep analysts focused.
#SecurityOps #Automation #InfoSec

⚡️ Turkish-trained Gorgor Commando forces in Somalia carry out planned operations in Mudug region, targeting Al-Shabaab bases. The militants fled as troops conducted a cleanup operation, with ongoing pursuit of fleeing militants. The mission aims to eliminate Al-Shabaab presence in Galmudug. #SecurityOps #Counterterrorism https://www.riskmap.com/incidents/1937676/articles/195645551/?utm_source=dlvr.it&utm_medium=mastodon

⚡️ Troops of Nigerian Army arrest 10 suspects involved in kidnapping and cultism during operations in Edo and Bayelsa. Raid on a cultists' camp in Ogbia LGA, Bayelsa leads to the arrest of 8 members, recovery of weapons & drugs. In Edo, troops rescue a kidnap victim, arrest 2 suspects with firearms and fetish items. Suspects undergoing interrogation, victim reunited with family. #SecurityOps #AntiKidnapping #Cultism https://www.riskmap.com/incidents/1935932/articles/195400969/?utm_source=dlvr.it&utm_medium=mastodon