Brett Winterford

@bad_packets @DefusedCyber

Anyone reusing credentials on their Fortinet device? Asking for a friend on AS17511 (219.75.254[.]166) who keeps failing to get their password right.

We analyzed over 300,000 rows of the January 2026 BreachForums database leak to find their users' anonymizers of choice. Join us in the cantina. 🧵

I recently joined @reckless on @DecoderPod to discuss the “SaaSpocalypse,” the future of software, and why the identity layer for AI agents could become the biggest category in cyber. Really enjoyed this conversation: bit.ly/481Tema

A browser extension promised security. In reality, it was a Trojan horse for your crypto. We tracked the extension, mapped the infrastructure and pulled the plug. Full breakdown of the takedown: bit.ly/40E9i9N

Your star hire might be a DPRK agent. 🇰🇵 @Okta reveals how state actors use stolen LinkedIn IDs, AI-generated faces, and forged git commits to bypass HR. Verify identities before they're on your payroll! #opentowork bit.ly/4quh8go

Google disrupted IPIDEA, a major residential proxy network. Our data confirms a sharp drop in their active IPs following the action. 📉 Protect your Okta org today: block IPIDEA and residential proxies with dynamic network zones bit.ly/3OiZVJz

Still tracking the bad packets, now powered by Okta log data! Top ASNs used in recent signup fraud attacks: • 212238 • 16276 • 44477 • 26548 • 200373 • 137409 • 214483 • 13213 • 397368

Cross App Access (XAA) is now the #MCP authorization extension: ‘Enterprise-Managed Authorization’. Proud @okta played a role in establishing this new protocol to secure AI. bit.ly/3Knjzm8

Troy Iwata got hired for Trump's cabinet, but @jordanklepper wasn't?

We’ve introduced passkeys as a simple and secure option for people to sign in to their myGov account. Your account will be most secure when you create a passkey and turn off your password as a sign in option. To find out more watch this video, or visit: my.gov.au/passkeys

Expect social engineers to exploit the Falcon issue. crowdstrike.com/blog/falcon-se…

@riskybusiness I guess we know who runs Crowdstrike on Windows now

@riskybusiness Facial hair is a common theme

Check out our very own CPO, @clcsampaio, being interviewed on @riskybusiness about Identity and Fine Grained Authorization! 🎧 Listen to the full episode here: bit.ly/4bQezhQ

back in my day we called this spyware

@hargobt What did I miss?

I honestly don’t think we will ever see anything like this in our lifetime #damnlucky #messi

@darrenpauli Unless you’re applying for a rental property. And they want EVERYTHING

You can't tell if security is great or awful at a given org, but you can often control what data you give them. Think if they really need your date of birth. It wouldn't help with Outabox, but many times it does. Let it be your fake alias that's spilled over the net in a breach.

Privacy Awareness Week next week has a bitter irony for consumers: your best efforts mean little when multiple orgs store your private info in systems that lack strict access controls, logging, deletion, and encryption. This failure is widespread. abc.net.au/news/2024-05-0…

Messing with gaming companies is a cyber-stormtrooping worthy event abc.net.au/news/2024-05-0…

Now bringing new, confused audiences to the @riskybusiness podcast!