Lucian Constantin

Bug hunters and pentesters are already using LLMs to find new vulnerabilities and write exploits faster. It's fair to assume threat actors are doing the same, potentially leading to an increase in the number of zero-days orgs will have to deal with. csoonline.com/article/363226…

@briankrebs Not 100% sure it's what you're looking for but Shadowserver Foundation maybe also Team Cymru?

The main thing that comes to mind is something like abuse.ch

Hey Twitter! Can anyone recommend a service that tracks the dwell times of various threats (phishing, malware, botnet, etc)? E.g., this bad thing (has) lived at this IP/domain for N # of days? Many places track the emergence of threats, but not how long they live after that. Thx!

@SecEvangelism @alma_tweets @IHGCorporate @IHGhotels @IHGService Their slogan is also "True Hospitality for Good". One would think helping people running from war and welcoming them is the perfect opportunity to live up to that slogan.

@alma_tweets @IHGCorporate @IHGhotels @IHGService They tweet it but don't live it so to speak.

Booked a room with @IHGCorporate @IHGhotels @IHGService hotel in Bratislava pre-paid with my points. The hotel tried to deny our Nigerian evacuated students from Sumy #Ukraine a room based on the color of their skin. I'm beyond angry right now. Please RT so IHG responds

@KimZetter Happy to help with any other info on the situation here if needed or anything else. It does indeed feel like ages since we talked/saw each other. Hopefully, I'll be able to travel to US this summer.

@lconstantin Thanks for your comments, Lucian, and for clarifying a few things. Also, it's really good to hear from you after what feels like ages now.

Talked to a friend in Romania about conditions there right now. He says that while US downplays Putin's nuclear threat, fear of nuclear fallout is strong in Romania. The gov "is initiating reviews of the atomic bunkers, bomb shelters...There was a rush panic to buy iodine pills"

@KimZetter I live around 160km away from Siret border with Ukraine. I have heard of people who withdrew their savings and left the country, or stores that were emptied of food supplies in smaller cities, but overall I'd say people are going about their normal life.

@KimZetter What is true is that the government is working on a new law for situations of crisis such as war. A draft that leaked says that all men 18-63 could be drafted in case of general mobilization is declared. That draft is not final and various changes have been made to it.

@jleyden But the default text in the reference field is "Sent from Revolut" so I assume it gets sent. I can do a test if needed.

@jleyden I've been using Revolut for years, but mostly for the card payments rather than bank transfers. Experience has been good for what I use it for. I do see transfers have a "reference" field that allows some amount of text. Not sure if this is local reference or gets sent.

Looking for an alternative to Wise for making bank transfers between UK and EU (Spain) banks. Considering TransferMate and Revolut. Any recommendations? #fintech

@malwrhunterteam only started today for me, but if I refresh the page (in web based version) it temporarily fixes it, but then it happens again later

Thank everyone for the replies, so it is clearly not something unique for this account nor for the location. Strange then that there is no official explanation... 🤔

In the past days, first rarely, now very commonly getting this error message in place of the replies when clicking on tweets. Anyone experiencing the same?

@coveware Hello. Can you DM me with an email address where I can reach out about a ransomware story I'm working on? Thanks.

Mitigating insider threats is not easy, but the hijacking of Twitter verified accounts should motive other companies and organizations to be better prepared; with input from @RachelTobac and @HackingDave csoonline.com/article/356750…

@hacks4pancakes @wboscoho @thegrugq @TrialByTruth Hi Lesley. Would you be willing to have a chat for a story that tackles this angle of managing privileged access as something to learn from this incident? Our audience are enterprise security teams/professionals. Please DM. Thanks!

@wboscoho @thegrugq @TrialByTruth Manage privilege better and that becomes less of an issue...

I really hope it was bought and paid for access, because then infosec sales people will have to explain how their ${whatever} solution stops determined insiders from bypassing controls.

@VessOnSecurity I'll raise you this: romaniajournal.ro/society-people…

Today in stupid: A Bulgarian international transport driver came from Italy, suspected of being infected. He had been put under mandatory quarantine. Instead, he got on a truck and crossed the border to Romania. They are still looking for him.

Any cities or companies who are affected by #PwndLocker please contact me either here or via fw@emsisoft.com. If you know someone working on a #PwndLocker incident, please let them know how to contact me.

@runasand @nytimes Wow. This decision is wrong in so many ways. Not only are you an amazing security researcher and top infosec professional, but you chose to use your skills to help journalists 👏 Big loss for NYT, but I hope you'll land in a position where you impact and help even more people.

Today the @nytimes chose to eliminate my role, stating that there is no need for a dedicated focus on newsroom and journalistic security. I strongly believe in what I do (and what we did), and to say I’m disappointed would be an understatement. (1/3)

@axi0mX Hey. Would would be open to a technical interview about the impact of checkm8 for a story? Please DM me. Thanks.