Profile avatar
cryptodd.bsky.social
California native, Enterprise Strategy Group analyst, cybersecurity geek, soccer goalkeeping phenom. Crypto = cryptography, Views=mine, Reposts≠endorsement
184 posts 649 followers 1,650 following
Prolific Poster
Conversation Starter
Posts 38 Comments 12

Non-human identity security speaking session done! If you are at Identiverse and want to chat, give me a shout.

submitted 1 day ago • 0 comments

NEW: Two weeks after practically shutting down all its computer systems because of a ransomware attack, Kettering Health has yet to recover. Patients report not being able to call doctos, get new prescriptions and refills, and having their MRIs, cancer followups, and others appointments cancelled.

submitted 2 days ago • 1 comment

A lot of people know about the Germans in the space program, but the more relevant engineer might be Qian Xuesen, the MIT/CalTech aerospace professor who co-founded JPL and was sent to recruit the Germans. We deported him the 1950s. He became the leader of China’s missile program.

submitted 6 days ago • 73 comments

@extremenetworks.bsky.social announces moving its new AI-native platform, Extreme Platform ONE, to limited availability and delivers live demos at #ExtremeConnect2025 today in Paris.

submitted 17 days ago • 0 comments

Riveting Wall Street Journal article on how North Korea uses US-based accomplices who manage laptop farms for its fraudulent remote worker schemes - www.wsj.com/business/nor... #cybersecurity

submitted 8 days ago • 0 comments

I love that @signal.org is using Microsoft's own DRM copyright API to block Windows from its own stupid new "feature" which takes screenshots of, well, everything and saves them. It's like an intellectual property Jedi mind trick.

submitted 15 days ago • 5 comments

Illuminating #cybersecurity insights on Shadow AI security and governance implications from ESG's @gabeknuth.bsky.social!

submitted 9 days ago • 0 comments

Lol, lmao, etc. You know at some point putting things on GitHub has to be considered a liability. invariantlabs.ai/blo...

submitted 10 days ago • 0 comments

Three things made the US a rich and powerful nation: the rule of law, its science & innovation system, and openness to foreign talent. Remarkable how Trump has taken a sledgehammer to all three. No enemy of this country could do more.

submitted 14 days ago • 315 comments

New @Enterprise Strategy Group research "Reinventing Data Loss Prevention: Adapting Data Security to the GenAI Era," is available and it’s essential reading anyone navigating today's evolving data security landscape. This new blog highlights some of the findings - www.techtarget.com/searchsecuri...

submitted 22 days ago • 0 comments

For those with an interest in identity security (AKA identity & access management #IAM), I blogged on noteworthy trends and innovations from #RSAC2025 in San Francisco last week. #agenticAI won the buzzword bingo contest. And thoughts on convergence/platforms. www.techtarget.com/searchsecuri...

submitted 27 days ago • 0 comments

Eye-opening coverage from WaPo about how sensitive citizen data is at risk - DOGE staffers are given over-permissive access to systems and and not logging their actions, which effectively covers up evidence of any actions by turning off audit logging. www.washingtonpost.com/business/202...

submitted 29 days ago • 0 comments

steph officially has a left hammy strain and won't be back this game #dubnation

submitted 30 days ago • 26 comments

@josephcox.bsky.social relating to your TeleMessage coverage ICYMI.

submitted 30 days ago • 0 comments

Despite misleading marketing, Israeli company TeleMessage, used by Trump officials, can access plaintext chat logs. My findings are based on TM SGNL's source code, and they are corroborated by hacked data micahflee.com/despite-misl...

submitted 30 days ago • 23 comments

New: Mike Waltz’s app — TeleMessage — says it’s temporarily suspending all its services following a reported hack. www.reuters.com/world/us/app...

submitted 31 days ago • 0 comments

New from Media: GlobalX, a major airline for Trump's deportations, has been hacked. There's a defacement on the site at the moment. Hacker sent us data they say are passenger lists for flights. We cross-checked with court records/lists of deported people. Matches. www.404media.co/globalx-airl...

submitted 31 days ago • 14 comments

This crisp, impactful reporting from @josephcox.bsky.social at @404media.co . Non-techies can grasp the significance.

submitted 31 days ago • 0 comments

Some great reporting from @404media.co - the clone of Signal (from the company TeleMessage) used by Trump officials, CBP and some financial institutions like Coinbase appears to have been compromised - www.404media.co/the-signal-c...

submitted 31 days ago • 0 comments

#AgenticAI will be a game changer for #cybersecurity! 💥 Read my Enterprise Strategy Group colleague Dave Gruber's post on how it helps #SecOps (and check out his latest research on 🚀 The Future of SecOps in an AI Driven World!) #AI #SecurityOperations www.techtarget.com/searchsecuri...

submitted 41 days ago • 0 comments

What's an enterprise CISO to do in slight of #signalgate? My thoughts are published in @computerweekly.bsky.social . TL;DR it is about security culture more than technical controls (but don't forget those controls ... and their limitations!). www.computerweekly.com/opinion/Sign...

submitted 34 days ago • 1 comment

A California man who used the alias "NullBulge" has pleaded guilty to illegally accessing Disney's internal Slack channels and stealing over 1.1 terabytes of internal company data.

submitted 35 days ago • 0 comments

Reconnecting with friends and luminaries like @fsmontenegro.bsky.social at ##rsac2025!

submitted 39 days ago • 0 comments

Some @davegruber.bsky.social insights into how #AgenticAI will affect security operations. For the Bluesky #cybersecurity types attending #RSAC2025, enjoy the event and the cool spring weather in San Francisco. www.techtarget.com/searchsecuri... #SecOps

submitted 41 days ago • 0 comments

Insights from Jen Easterly (former head of CISA and #cybersecurity luminary) on what what the cybersecurity community is securing. Time to stand up and support (not just nod approvingly) for people like Chris Krebs who are doing the right thing. www.linkedin.com/pulse/what-w...

submitted 41 days ago • 0 comments

New Brian Krebs coverage dives deep into the data compromises at the National Labor Relations Board (NLRB). This follows on the blockbuster NPR coverage - krebsonsecurity.com/2025/04/whis...

submitted 44 days ago • 0 comments

I'm gonna ride with Walt Mossberg. What about you?

submitted 48 days ago • 1 comment

Agentic AI is today's #cybersecurity hot topic. Caleb Sima put together a concise post describing the dynamics with Model Context Protocol (MCP), Google's A2A, some of the enterprise security implications for #agenticAI. www.linkedin.com/pulse/mcp-a2...

submitted 49 days ago • 1 comment

News: @thekrebscycle.bsky.social, a target of Trump's wrath last week, is resigning from SentinelOne to focus fully on fighting back against against the White House's campaign to punish dissent. www.wsj.com/politics/pol...

submitted 50 days ago • 18 comments

Chris Krebs, the former CISA director targeted in a Trump executive order for calling the 2020 election secure, has resigned from security company SentinelOne and lawyered up. He joins Harvard, Maine, and Steve Kerr in standing up to the administration.

submitted 50 days ago • 10 comments

I endorse this message! Mark your #RSAC calendar.

submitted 50 days ago • 0 comments

This is astounding NPR reporting. DOGE appears to be an insider threat, turning off logging and not allowing any privilege access controls to monitor their activities. If it hasn't already happened, sensitive data will probably leak. There should be transparency around this and other episodes.

submitted 51 days ago • 0 comments

the three of us are having a conversation

submitted 55 days ago • 783 comments

ALERT: Big Firm Lawyers, I have a proposition for you. (Please read through, serious proposition). As noted in the previous post, I'm very very interested in getting copies of the "agreements" big firms are making with Trump. (My encrypted channels below.) Or at least what is circulated to ...

submitted 55 days ago • 27 comments

Heading home after a action-packed @cyberark.bsky.social IMPACT 2025. Lots of identity security learnings and exceptional hospitality (the New England Acquarium is amazing, and fun to see the scuba diver advertising).

submitted 55 days ago • 0 comments

Cybersecurity leader CyberArk knows how to put on a show. Evening event at the New England Aquarium included scuba divers and manta rays.

submitted 56 days ago • 0 comments

Jen Easterly (former head of CISA) giving an amazing keynote at @cyberark.bsky.social IMPACT 2025 in Boston. AI is powerful, but can be used for malevolent purposes. With great AI power comes great responsibility.

submitted 56 days ago • 0 comments

Infosec community- stand together or get picked off one by one. Now is not the time for security by obscurity.

submitted 57 days ago • 0 comments