Toggle navigation
TWunroll
TWunroll
faq
Contact US
Lesley Carhart
hacks4pancakes
I’m kinda tired of all the, “Solarwinds had poor infosec policy and executive buy in” takes. Not because evidence doesn’t show that they absolutely did. Because most product companies that
Read more
Merry Christmas to everyone except GoDaddy infosec leadership specifically.https://twitter.com/lolonghi/status/1341863667290140672 I hope your food turns out awful and your kids hate all their presents. I also hope people remember this when
Read more
Just a reminder that you can’t build a successful threat hunting program to detect the APT indicators everyone is posting unless you actually build the capacity to threat hunt -
Read more
I hate the term "zero trust" for the same reason as I hate the term "security hygiene" - I absolutely 100% agree with the practice, yet think the term is
Read more
Some of the greatest regrets of my youth involve not firmly and directly calling out internet men for wildly inappropriate behavior towards me (gaslighting, stalking harassment) before they went on
Read more
Explanation of whyI am the only one of 7 billion people to not endorse cyber as a warfare domain.https://twitter.com/hacks4pancakes/status/1340676310058844163 For over a decade, I’ve watched people who don’t really understand
Read more
I agree with @evacide “attack v espionage” is a really fruitless hill for us to have to die on, especially because there are so many stupid and inaccurate buzzwords in
Read more
Turns out NotPetya was a really bad omen, and only the beginning after all. I mean, supply chain attacks against operators with big footprints clearly are incredibly effective for resourced
Read more
I don’t know if this will help anyone in their first place, but I was just setting a family member up with Comcast (only choice) - remember that:1) you get
Read more
In my life as a security professional, I have had exactly three IT friends / colleagues come up to me bragging about the secret digital surveillance they constructed to monitor
Read more
If I accomplish one thing in 2020 it will be to convince every infosec traveler without a pet because of travel to get an adorable and cuddly hamster. Welcome to
Read more
A really good interview question to scope out how mature an infosec person’s understanding of corporate security programs is this:“How to you measure the success of a phishing test security
Read more
‹
1
2
3
›
By continuing to use the site, you are consenting to the use of cookies as explained in our
Cookie Policy
to improve your experience.
I agree