Jake Williams

101.8K posts

Jake Williams

@MalwareJake

Odenton, MD Katılım Eylül 2009

1.8K Takip Edilen149.3K Takipçiler

Sabitlenmiş Tweet

Jake Williams@MalwareJake·26 Şub

Let's not mince words: * If you don't support trans people, you're a bad human * If you have to add caveats to your support (e.g. "as long as my kids don't see"), you're one of the worst kinds of human * Trans deserve your *unconditional* support for their humanity

English

313

302

1.8K

Jake Williams retweetledi

Mick Douglas 🇺🇦🌻@bettersafetynet·3d

Hey infosec folks, if you don't mind... can you give this a read? I still have mad respect for @shenetworks I still have mad respect for @BHinfoSecurity Two things can both be true. I'd like to share some info about my departure from BHIS 🧵

strandjs - [email protected]@strandjs

There has been a lot of talk about BHIS and our maternity and employment policies. Please check out the following site for more details. blackhillsinfosec.com/bhis-employmen… Thanks!

English

39.7K

Jake Williams retweetledi

Snakesan@Snakesan·2d

Yea, I'm less willing to assume someone was trying to hurt anyone, more the ball was dropped somewhere and legal needed a cop out. People were likely harmed due to bureaucratic nonsense and unfulfilled paperwork adjustments. Not a good look for anyone, worthy of a reputational hit when it happens. Which is why testimony like this is needed. Getting folks to stop assuming bad intentions, like myself, is going to require this kind of input.

English

3.6K

Jake Williams@MalwareJake·3d

I've seen some of the things behind the scenes that John and BHIS have done for employees over the years. FAR above and beyond most firms even multiple times their size. I know several employees John bent over backwards to accommodate who would have been released anywhere else.

strandjs - [email protected]@strandjs

There has been a lot of talk about BHIS and our maternity and employment policies. Please check out the following site for more details. blackhillsinfosec.com/bhis-employmen… Thanks!

English

17.1K

Jake Williams@MalwareJake·2 May

I laughed so hard at this that I snorted more than once. youtube.com/watch?v=WAUnmQ…

YouTube

English

Jake Williams@MalwareJake·2 May

Malicious compliance.

Derek Devicemanager@IT_unhinged

A marketing director discovered that P1 Critical tickets have a 15-minute response SLA. He started logging all his routine tickets as P1. Yesterday he submitted a P1 because his wireless keyboard needed new batteries. According to our enterprise SLA, P1 incidents require an immediate, continuous all-hands bridge call until resolution. He submitted the ticket at 11 PM. I initiated the emergency bridge. Our automated system dialed his cell phone, his desk phone, and his emergency contact. It woke up his wife. He joined the call in a panic, asking what was on fire. I told him we were assembled to resolve his critical keyboard outage. I asked him to describe the battery compartment. He hung up. Our SLA policy states that if the user disconnects from a P1 bridge, we must call them back immediately. I called him back. He asked me to downgrade the ticket. I told him P1s can only be downgraded after a post-incident root cause analysis. He buys his own batteries now.

Français

17.6K

Jake Williams@MalwareJake·2 May

Georgia: where they know how to spell Walmart, but not Saturday...

English

2.9K

Jake Williams@MalwareJake·30 Nis

@CapitalOne called to "verify my information" and then got belligerent when I wouldn't. I asked for a publicly verifiable phone number I could call, instead they gave me an 800 number not on any Capital One website. But somehow *this* is on Capital One's website. Please make it make sense...

English

8.1K

Jake Williams retweetledi

HunterStrategy 🇺🇦@HunterStrategy·28 Nis

Tired of phishing? Not getting results with brute force? Just exploit a mid-tier app role, add a federated domain, forge a SAML token, and you're a Global Admin. This is the Entra ID attack path that should be keeping security teams up at night. Full breakdown on the Hunter Strategy blog: f.mtr.cool/glrzdfiqdb #EntraID #IdentitySecurity #CyberSecurity #InfoSec

GIF

English

1.6K

Jake Williams@MalwareJake·24 Nis

@rnelson0 @c7five @SANSInstitute Amen.

English

Rob Nelson@rnelson0·24 Nis

@c7five @MalwareJake @SANSInstitute They chose to go after this … but it would still be a better choice to close up shop than become part of the oppressors.

English

Jake Williams@MalwareJake·23 Nis

Sad to see an org I was so involved with for so many years taking nearly $500k in blood money from ICE. Seriously disappointed with @SANSInstitute today. I get that the economy is bad and sales are hurting. But taking money from ICE is *a choice*. sam.gov/workspace/cont…

English

321

35.2K

Jake Williams@MalwareJake·23 Nis

@c7five @SANSInstitute There's a world of difference between "picking a fight" by refusing registration from ICE and pursuing the award of a sole source contract.

English

2.6K

Nick Percoco@c7five·23 Nis

@MalwareJake @SANSInstitute I’d imagine that a very good portion of their annual revenue comes from training and certification of DHS (and other US Gov agencies) employees. The choice was probably to stay in business rather than pick a fight with the US Gov over politics.

English

3.7K

Jake Williams@MalwareJake·16 Nis

Yay cloud...

vx-underground@vxunderground

Another zero day exploit released by some nerd (can't remember name right now) because they're annoyed with Microsoft. It's been confirmed by other nerds. It is yet another legit zero day. Whew. github.com/Nightmare-Ecli…

English

5.1K

Jake Williams@MalwareJake·14 Nis

Tomorrow morning I'm keynoting the Southeast Cybersecurity Summit. Can't wait to see you there! I'll also be talking on a panel about AI in security later in the day. I'll be around most of the day. Track me down - I'd love to talk! secybersecurity.com

English

2.9K

Jake Williams@MalwareJake·14 Nis

Most clients struggling with AI governance are struggling because they haven't fully defined their enterprise data governance requirements. You can't code "people will use their judgment" into coherent AI governance, as much as you might want to.

English

2.9K

Jake Williams@MalwareJake·9 Nis

When life hands you lemons, squeeze lemon juice in the eyes of your enemies.

English

3.5K

Jake Williams@MalwareJake·9 Nis

On point.

Scott Hughes@shughes_UA

@MalwareJake

English

3.4K

Jake Williams@MalwareJake·9 Nis

It floors me when people are like "we need to implement meaningful governance of all AI platforms in use by the organization without creating any friction to the business or adding headcount." Um... What precisely are you expecting here? Please explain what you envision a solution looking like.

English

Jake Williams@MalwareJake·8 Nis

I feel like this meme needs to be updated for "US military victories in the Middle East."

English

2.1K

Jake Williams retweetledi

MikeTalonNYC@MikeTalonNYC·7 Nis

WTF? Just... WTF?

Jake Williams@MalwareJake

You can hate Iranian leaders for their (many) heinous acts of terror. You can believe Iran cannot be allowed to build a nuclear weapon. You can be mad about the price of oil due to the Strait of Hormuz. None of that excuses threatening to wipe out a whole civilization.

English

2.6K

Jake Williams@MalwareJake·7 Nis

English

4.7K

Keşfet

@shenetworks @BHinfoSecurity @CapitalOne @rnelson0 @c7five @SANSInstitute @elonmusk @BarackObama