Mark Manning

3.3K posts

Mark Manning banner
Mark Manning

Mark Manning

@antitree

Process isolationist, k8s hacker, ᴎo-prem pusher, syscall denier, guarder of chains 🔸Chainguard - Product Security 🔸Rochester 2600 🔸Former: Snowflake, NCC

Rochester,NY Katılım Mayıs 2008
1.6K Takip Edilen3.2K Takipçiler
Mark Manning retweetledi
Matt Fuller
Matt Fuller@matthewdfuller·
What is going on @AquaSecTeam ? Can we get some kind of communication about this?
Feross@feross

🚨 Breaking: Trivy GitHub Actions supply chain attack – 75 out of 76 version tags compromised. If your CI/CD pipelines reference “aquasecurity/trivy-action” by version tag, you’re likely running malware right now. At Socket, we identified that an attacker force-pushed nearly every version tag in the official aquasecurity/trivy-action repository. That’s @​0.0.1 all the way through @​0.34.2. Over 10,000 GitHub workflow files reference this action. The malicious payload runs silently before the legitimate Trivy scan, so nothing looks broken. Meanwhile it’s: - Dumping runner process memory to extract secrets - Harvesting SSH keys - Exfiltrating AWS, GCP, and Azure credentials - Stealing Kubernetes service account tokens The only unaffected tag right now appears to be @​0.35.0. Socket independently detected this at 19:15 UTC and generated 182 threat feed entries tied to this campaign – all correctly classified as Backdoor, Infostealer, or Reconnaissance malware. This is the second Trivy compromise this month. Earlier in March, attackers injected code into the Aqua Trivy VS Code extension on OpenVSX to abuse local AI coding agents. The compromised tags are still active. Pin to @​0.35.0 or use a SHA reference until this is fully remediated. Full write-up: socket.dev/blog/trivy-und…

English
1
1
19
4K
Mark Manning
Mark Manning@antitree·
@IceSolst 💯 Think this applies to anything that is an asset inventory tool.
English
0
0
1
158
solst/ICE of Astarte
solst/ICE of Astarte@IceSolst·
How feasible is it to replace CSPM vendors (Prisma, Wiz) with a couple in-house engineers and the clouds provider’s native tooling? Their pricing is verging towards extortion
English
38
5
115
14.2K
Mark Manning retweetledi
Rohyt Belani
Rohyt Belani@rohytbelani·
When something is too good to be true, it probably is!
Exec Sum@exec_sum

BREAKING: YC-backed compliance startup Delve, started by two Forbes 30u30 alumni, has been accused of faking compliance for hundreds of companies A new investigation claims: • Audit conclusions written BEFORE evidence • 493/494 reports nearly identical (with the same errors) • “US auditors” are allegedly just Indian shell firms • Fake SOC2, ISO, HIPAA, GDPR reports at scale Forbes 30u30 never misses

English
1
1
1
264
Mark Manning retweetledi
adam_cyber
adam_cyber@Adam_Cyber·
I’m excited to announce the inaugural CrowdStrike Day Zero 2026 Threat Research Summit, an invite-only event for researchers, defenders, and cost-imposing warriors on the front lines of cyber conflict. Day Zero will showcase cutting-edge technical work, advanced research into adversaries and technology, and foster the kind of discussion that challenges assumptions and sharpens ideas. CrowdStrike researchers are already submitting their ideas. The Call for Papers (CFP) is open, and these sessions will be closed-door, with strict information-sharing protocols in place. Evening kickoff: Aug 30th | Day Zero 2026 Summit: Aug 31st *Ahead of Fal.Con Vegas | 📍Mandalay Bay, Las Vegas Register for updates and submit your paper. crowdstrike.com/en-us/events/d…
adam_cyber tweet media
English
0
8
27
2.4K
Matt Metzger
Matt Metzger@AlmostWhiteHat·
@ngrokHQ Hear me out. I know Dev Domains are generated randomly per account and cannot be changed. It sounds generous when the UI says "This dev domain is yours forever" and I don't want to sound ungrateful.... but can I maybe have something other than genitally-unboiled-felicia?
Matt Metzger tweet media
English
2
0
3
22
Mark Manning retweetledi
Trail of Bits
Trail of Bits@trailofbits·
Over 700,000 repos ship crypto libraries that default to a static IV, creating widespread key reuse. We also released mquire, a Linux memory forensics tool, and added 12 new open-source Claude Code skills for security engineering. March Tribune: mailchi.mp/trailofbits/ma…
English
7
11
81
9.9K
Mark Manning
Mark Manning@antitree·
Trying to get to my first @nysecsec meeting. What do I need to know?
English
1
0
0
164
Mark Manning
Mark Manning@antitree·
My most useful agent is the one I call "internet troll". It's assuming the role of a ruthless troll making personal attacks at a project or idea including technical problems. I can fix bugs, I can't fix permanent orange site comments.
English
0
0
0
104
Mark Manning retweetledi
elvis
elvis@omarsar0·
15K stars already!? Great idea. CLIs work amazingly well with coding agents. Worth playing around with. Do run a lot of tests if you are planning to use this to build tools.
elvis tweet media
English
24
35
278
40.9K
Mark Manning retweetledi
Kevin Roose
Kevin Roose@kevinroose·
We made a blind taste test to see whether NYT readers prefer human writing or AI writing. 86,000 people have taken it so far, and the results are fascinating. Overall, 54% of quiz-takers prefer AI. A real moment! nytimes.com/interactive/20…
English
436
427
3.1K
3.5M
Mark Manning retweetledi
Clint Gibler
Clint Gibler@clintgibler·
🧑🏻‍💻 Unprompted Talk Summaries, 🤖 AI Bot Hacking GitHub Actions, 🛠️ AI Skills & Semgrep Rules tldrsec.com/p/tldr-sec-318
English
2
1
2
556
Mark Manning
Mark Manning@antitree·
@IceSolst Agreed. On dark days I'll extend this to all of infosec is theatre now. Bring back the days CSOs were scared for their life that they didn't do real mitigations. Today CSOs are canned because they didn't unlock enough revenue via compliance 😞
English
0
0
1
75
solst/ICE of Astarte
solst/ICE of Astarte@IceSolst·
SOC2 is a massive waste of time. Theater, a self-assessment of your own policies. If you hand me a SOC2 report, it means nothing to me. So companies get around by sending you their own 200-line questionnaire… making it an even bigger waste of time. Kill all auditing.
English
65
18
331
18.7K
Mark Manning retweetledi
Dave Kennedy
Dave Kennedy@HackingDave·
Will miss you my friend. Such an amazing and brilliant mind. Meeting him first in the 2000s - Nickerson introduced me to him in Europe. They say never meet your heroes - I disagree. He was more than I could have ever expected when I first met him. The most genuine and nicest person I've met in this industry. We developed a friendship and talked frequently. Will miss you dude. Brilliant mind and a great human being that helped forge what we call cybersecurity today. <3
Daniel Cuthbert@dcuthbert

Everyone today is a hacker in a sense but there are very few OG hackers on which shoulders we stand Oh dude, Felix “FX” Lindner you were so much a hackers hacker and you will be missed RIP my friend and thank you

English
5
9
92
8.5K
Mark Manning retweetledi
Rochester 2600
Rochester 2600@roc2600·
Come 1 come null to another installment of Rochester 2600. If you're not there we'll find you and it'll be weird! We have a talk this month: Sandboxes, Seccomp and Syscalls: Chasing isolation in Kubernetes. rochester2600.com/meetings/2026-…
English
0
1
2
130

Keşfet

@AquaSecTeam @IceSolst @BSidesSF @AlmostWhiteHat @ngrokHQ @nysecsec @Jet_Balsa @moltbook