Kevin Holvoet

We found that Wi-Fi client isolation can often be bypassed. This allows an attacker who can connect to a network, either as a malicious insider or by connecting to a co-located open network, to attack others. NDSS'26 paper: ndss-symposium.org/wp-content/upl… GitHub: github.com/vanhoefm/airsn…

@craiu Merry Christmas my friend 🎄🎁

Merry Christmas everyone! 🎄

New Blog Post: YAMAGoya: A Real-time Client Monitoring Tool Using Sigma and YARA Rules blogs.jpcert.or.jp/en/2025/11/YAM…

It will be awesome. If you don't know what @MISPProject is yet or you want to see how you can give more context to events, join this session 😉. For anyone in Riyadh, I'll be there from 11 to 16 October. So if you want to meet up, ping me.

🌍 Join the final nights of Cyber Safari 2025 — in Riyadh or online. 📅 13 Oct | From Intel to Action with MISP & AI | @digihash 📅 20 Oct | Modern Search Techniques | @markjx01 👉 Secure your spot: sans.org/u/1CVb #SANSCommunityNight #Riyadh

‼️🚨 Red Hat breached: Crimson Collective stole 28k private repositories, including credentials, CI/CD secrets, pipeline configs, VPN profiles, and infrastructure blueprints. Our analysis of obtained data: 👇

@IntCyberDigest threadreaderapp.com unroll

🚨 Big News! Version 1.2 of the CTI-CMM framework is here! 🚨 We’re proud to officially debut this release at the FIRST CTI Conference during the talk: 🎤 "Immaturity Can Be Fun: Just Not in a CTI Program" 🎤 by @gertjanbruggink What’s new in v. 1.2? ✨ A brand-new CTI-specific metrics section 📚 An expansive intel data source library 🛠️ An updated CTI program assessment tool You can download v. 1.2's PDF at cti-cmm.org and a standalone spreadsheet of the metrics and the CTI program assessment tool on our Github page: github.com/cti-cmm This update wouldn't have been possible without the incredible team of volunteers who poured their time and expertise into making it happen. A huge thank you as well to @Intel471Inc for their invaluable behind-the-scenes support and to our advisors and the wider community—your feedback and insight continues to push the CTI-CMM forward. 🙌 Let’s keep raising the bar for Cyber Threat Intelligence. #CTICMM #CTI #ThreatIntel #FIRSTCTI2025 #CyberSecurity #Intel471 #CommunityDriven #BetterTogether

After two years, the @CCBbelgium is thrilled to invite you to the highly anticipated return of the Quarterly Cyber Threat Report (QCTR) event on Friday 25 April 2025, from 14h00 to 16h00 (CET/UTC+2). Cyber threats never rest—and neither do we. Join us events.zoom.us/ev/Ao8U9Mou_HX…

👀 Probably nothing

Our next @CCBbelgium #CyberTips session on Ransomware will start in 30 minutes. Be there or be square! Register here: events.zoom.us/ev/ApjvQQMXt17…

securenews.ru/gosduma-rf-pre… The Russian State Duma is discussing tougher legislation to combat cybercrime. Proposed measures include increasing prison sentences for hacking, data theft, and attacks on critical infrastructure to between five and fifteen years, depending on the severity of the offense. Penalties for large-scale cyber fraud would also become harsher, carrying sentences of up to twelve years. In addition, the proposals call for the confiscation of all assets obtained illegally, including cryptocurrency, and grant banks the right to freeze suspected illicit funds. Convicted hackers would be prohibited from working in IT, finance, and government roles for up to ten years following their release. Plans also include bolstering international collaboration to extradite offenders who have fled abroad, as well as the possibility of holding public trials for cybercriminals. All of these initiatives remain under discussion.

If you took a year off #cybersecurity this is a great overview of the biggest or coolest stories of 2024. Kudos to @craiu, @juanandres_gs, and @ryanaraine on the Three Buddy Problem podcast. It's great to hear your raw opinions on different topics every week. Keep going in 2025💯

The full problem is upon YouTube @craiu @juanandres_gs youtu.be/QLzeP-OtThA?si…

Today, we'd like to introduce a new monthly spotlight initiative where we highlight one member of the #CTICMM team, provide a brief snapshot of who they are, what their role is on CTI-CMM, and showcase some of their contributions to the #CTI community writ large. We’re thrilled to feature Colin Connor today, one of the CTI-CMM project's founding members and overall project leads. Colin currently leads the CTI Services team at @IBM where he works with clients to build, assess, enhance, and integrate the #cyberthreatintelligence function into their organizations. Colin previously served as the director of Cyber Intelligence and Forensics at @ATT, where he built the CTI program from scratch and provided enablement training on its role to over 2,000 employees. Colin started his career as a network architect for next generation weather satellites. Colin hails from #Colorado where he and his wife enjoy going to concerts, rooting the local Colorado sports teams with his kids, and enjoying the Colorado outdoors life via hiking, rafting, and snowboarding. For those of you who didn't catch it, Colin and Mike DeBolt were recently featured on the @sansforensics STAR webinar where they provided an overview of CTI CMM, its origin story, and spoke about some of its design decisions. The archived recording is available here: youtube.com/live/qyKoPPZaN…

The global #operationmagnus took down servers of #RedLine and #META infostealers and disrupted the operations of the criminal groups. Two people were also arrested in #Belgium :). See operation-magnus.com. Cudos to all law enforcement involved including @federalepolitie! 👏💪

Its been about two months since we released the Cyber Threat Intelligence Capability Maturity Model #CTICMM version 1.0 publicly and we'd like to ask you all for feedback on it as we are just starting the planning cycle for updates to incorporate in version 1.1. Particularly, we'd love to hear how you are using the framework, what you've liked about it, and what didn't quite feel right. To facilitate a structured feedback capture, we've created this short survey: docs.google.com/forms/d/e/1FAI… Also, @AugustVansickl2, our Domain lead for the Assets section is actively looking for feedback on some future changes. Help a brother out! x.com/AugustVansickl… Curious to find out more about CTI-CMM? Visit our website at cti-cmm.org #CTI #cybersecurity

@4enzikat0r @CertifyGIAC Great achievement, congratz!

I was just given the best #DFIR news… I passed the #GXFE, was awarded the #GSP as this was the last requirement I needed to meet, and best of all… I’m Analyst #1!!! You have no idea how happy that made me 🥳🥰 Thank you @CertifyGIAC, you absolutely made my year!

A reminder sent to the European Parliament and the European Council: this is what Chat Control and the Going Dark initiative will result in – total surveillance and the end of secure and private communication. You can read the articles at mullvad.net/why-privacy-ma…

#CTICMM #LaborDay #Industry