Andy Micone
147 posts
Andy Micone
@AndyMicone
Andy Micone (CISSP, MBA) is a CyberSecurity veteran and rancher. Managing Partner of Omnigenous. Member of the Association of Professional Futurists.
Ontario, OR Beigetreten Ağustos 2012
1.2K Folgt1.8K Follower
We wanna be perfectly clear and it's a rant:
This industry does NOT exist without the engineers, the devops, the threat hunters, the reverse engineers, the data scientists.
It also stems from the adversaries we all quietly study, copy, and adapt from.
Every detection, every playbook, every "innovation" comes from the people doing the real work.
Not your sales decks.
Not your rebrands.
Not from recycled made up top in class bs awards.
Not your pay-to-win astral chart from a man who even said his own magic quadrant was misused and predatory.
This industry built a market on top of our labor and called it leadership.
But leadership has no clue wtf to do other than sell out to the venture capitols and investors.
Ship fast culture is killing our ability to provide safety to the people.
And those mammals we protect are exhausted, exposed, and still being sold theater instead of protection.
We all should demand better.
Because this isnt a game.
Real people are on the other side of these failures and they deserve better.
🖤💙💜🤍💚🩷
Huntress@HuntressLabs
We're seeing a shift at #RSAC, and it's one the community needs to push harder. People are tired of the gimmicks and sales pitches. It's time to demand that vendors bring real tradecraft, technical insights, and actual researchers to the floor.
English
@IceSolst Very bound on how motivated your management is, because those kinds of changes normally take an average of 2 years of planning and approvals, given the rate of governmental inertia.
English
How feasible is it to replace CSPM vendors (Prisma, Wiz) with a couple in-house engineers and the clouds provider’s native tooling?
Their pricing is verging towards extortion
English
@IceSolst It's doable. We did at CMS after one of their still-expensive but less well-known competitors ceased operations. The more we dug in, the more we realized none of it was magic; much of it was reskinning of tools available from the provider. Cost reduction was 10x.
English
The 49 MB web page, hostile UX architectures, and the insanity of modern news sites thatshubham.com/blog/news-audit
English
Amen...it's a little easier on us gentleman ranchers, but farming takes patience and it ain't easy. The government, by enabling regulatory capture by oligopolies, arguably makes life worse for us by closing off markets.
Sawyer@SawyerWhisler
The farmers who are still standing after the last five years didn't survive because of government programs. They survived because they cut costs, diversified income, and made decisions that didn't depend on a check from Washington. Self-reliance isn't a political statement. It's a survival strategy.
English
@McFranchisee My consistent 10K+ points in the McD's app would attest to that.
English
Loyalty helps out 100%, the only data I have is my own. It is a lower average check but made up with frequency.
Restaurant Takeover Guy@SameStoreGuy
Does anyone have any good data on whether restaurant rewards actually drive higher sales? I know most restaurants claim visits are higher with rewards members, but I question whether that is correlation or causation. @jonathanmaze or @McFranchisee ?
English
What's crazy is that white-box reverse engineering is an established, legal strategy from the mainframe era that most people have forgotten about; you could just as easily do it with AI, and nobody has funded it (yet).
Todd Saunders@toddsaunders
We all knew this was coming… but today I heard about it actually happening. A seed stage company backed by a well known VC openly admitted (in a board deck) that their strategy is to get access to a large incumbent’s software from a customer, clone the entire thing using Claude Code, and offer it at 90% less. Not “build something better.” Just copy it and offer it for less. The VC endorsed this as the GTM strategy. And even wrote back in writing that it was a good idea. Using a customer’s licensed access to reverse engineer a product and clone it is ethically bankrupt. I don’t know how else to put it. It likely violates terms of service. It may violate trade secret law as well (but I’m certainly not a lawyer). And a reputable VC putting this in writing in a board deck is genuinely insane. But it’s going to happen anyway. Everywhere… all the time. I don’t know where this ends, but we all knew this was coming and now it’s here.
English
@McFranchisee Oh yeah, that was an old pre-Internet rumor that they were made from junk fruit with plastic stems. None of that was true, of course. Back when comedians used to quip, "How can you trust a fruit that's neon colored?"
English
@AndyMicone Aversion to cherries, had never heard the second until now
English
1️⃣ No onion and no pickle are probably the two most common “grill orders.”
I bet no onion edges out no pickle, but both are very common.
2️⃣ Fun fact: In 2010, McDonald’s upgraded their shakes: clear cups, whipped cream, and a cherry. About seven years later, they removed the cherries because 50% of customers ordered “no cherry,” and countless others forgot to specify.
I remember making shakes and handing them over, only for customers to refuse them because of the cherry.
I never understood the strong aversion to a cherry. You don’t have to eat it, but people reacted like it was a hair in their food. RIP McCherry but onions & pickles are here to stay🍒
Matty@MatfromBham
@McFranchisee What is Mcdonald's single most common sandwich edit? I first thought no tomato, but then realized most sandwiches don't have them. No onions, right ?
English
@RyanMcbeth I gotta wonder if they haven't figured out yet that the little siren is 2026 for "this is BS, ignore."
English
This is a fake video from a rage-bait engagement channel.
Navy Food Exposed: Is the Viral Clip REAL?
youtube.com/shorts/4buW7sX…
YouTube
HustleBitch@HustleBitch_
🚨 U.S. NAVY SAILOR FILMS WHAT THEY’RE BEING FED ON A WARSHIP DURING THIS WAR — PEOPLE ARE SHOCKED A sailor aboard a U.S. Navy warship filmed the food line during deployment. The camera slides past the trays revealing: • breaded patties piled in a metal pan • thick brown gravy poured over everything • oily greens • picked-over mixed vegetables • a tray of rice nearly scraped empty • a few scattered potatoes left at the bottom Some say this is exactly what military chow has always looked like. Others say if sailors are deployed and fighting a war, their meals should look a lot better than this. If billions are spent on the military every year… why does the food look like this?
English
"Just one question" is 2026 for "I have no idea why I'm contacting you, can you help me figure it out? I need money."
English
I'm thrilled to announce LinkedIn is down. Finally, some peace from people who "just have one question" for me.
INFOSEC F0X 🔥@infosec_fox
LinkedIn appears to be down. Thousands of professionals are currently unable to tell everyone else they are “thrilled to announce.”
English
If you know anyone working at AWS and have heard about the janky homebrew tools that configure almost 80% of the world of e-commerce, you would be very scared of vibe-coded infrastructure. I think I'm going to start telling clients to put it as a risk factor in their 10K's.
English
Andy Micone retweetet
Amazon is holding a mandatory meeting about AI breaking its systems. The official framing is "part of normal business." The briefing note describes a trend of incidents with "high blast radius" caused by "Gen-AI assisted changes" for which "best practices and safeguards are not yet fully established." Translation to human language: we gave AI to engineers and things keep breaking?
The response for now? Junior and mid-level engineers can no longer push AI-assisted code without a senior signing off. AWS spent 13 hours recovering after its own AI coding tool, asked to make some changes, decided instead to delete and recreate the environment (the software equivalent of fixing a leaky tap by knocking down the wall). Amazon called that an "extremely limited event" (the affected tool served customers in mainland China).
English
Here was the original blueprint for the CyberSecurity Moonshot to “Make the Internet safe and secure for the functioning of Government and critical services for the American people by 2028.” Oh, well. cisa.gov/sites/default/…
English
Pig crates are pretty cruel, but they are a side effect of ranching at industrial scale. In the meantime, you can buy free-range bacon from a friendly local rancher and meet the pigs if you like. You can even camp next to them at my ranch (we suggest upwind).
Lewis Bollard@Lewis_Bollard
Hidden on page 744 of the farm bill the House Agriculture Committee passed Thursday is a provision that would condemn millions of pigs to a lifetime in gestation crates. Rebranded the 'Save Our Bacon Act,' it's a pork-industry play to wipe out every state law banning the sale of pork from crated pigs — laws the conservative Supreme Court upheld in 2023. Over 85% of Democrats and Republicans oppose these crates. Voters have backed ballot measures to ban them in state after state. The pork industry knows it can't win a straight vote on this. So it's burying the provision in an 800-page bill and hoping no one notices. Contact your senators and representative today and tell them: oppose the farm bill unless the Save Our Bacon Act is stripped out. You can reach them at senate.gov and house.gov — it takes two minutes and it matters.
English
Here's a good summary of the National CyberSecurity Strategy from @ericgeller, but honestly, I think his article has more discussion than the actual strategy cybersecuritydive.com/news/white-hou…
English
The National CyberSecurity Strategy has been "big on pillars, short on action" since Rumsfeld was Secretary of Defense in 2006. We're pretty far from the old talk of "National CyberSecurity policy needs a moonshot project."
English
Not a whole lot new, and considerably less, in the President's National Cybersecurity Strategy vs. previous administrations
English