mattjay.com - Profile | ThreadSky | a Reddit-style client for Bluesky

mattjay.com

Friendly neighborhood cybersecurity guy | expect infosec news, appsec, cloud, dfir. | Long Island elder emo in ATX. vulnu.com <- sign up for my weekly cybersecurity newsletter

748 posts 9,624 followers 481 following

Posts 13 Comments 37

Be safe today everybody.

submitted 2 days ago • 1 comment

UNFI (major distributor for Whole Foods + 30k grocery stores) hit with cyber incident. Critical systems offline since June 5. Significant supply chain disruptions ongoing. Heres what we know. 🧵

submitted 3 days ago • 1 comment

Congrats on the time off everybody. Go touch some grass while the Internet reboots.

submitted 4 days ago • 0 comments

Easy security win most startups don't do: A) SSO with mandatory MFA (yubikey preferred) B) Device health check on login. Don't let unpatched OS or browser even login. Do this and you're in the 1%

submitted 5 days ago • 2 comments

Useless security advice you need to stop giving: "Don't click suspicious links!" Links are made to be clicked. Clicking links should be safe. If clicking a link gets your company hacked, it's a security stack issue, not a "train users to not click links" issue.

submitted 6 days ago • 2 comments

U.S. labs keep finding undocumented cellular radios hidden inside some Chinese-made solar inverters & battery packs Those radios give the gear a second, undocumented path to the internet. Global governments are reacting already: 🧵

submitted 7 days ago • 3 comments

You know, I'm starting to think all of you are just haters. What a sweet lil guy checking in on me like this.

submitted 8 days ago • 3 comments

I just had such a bad idea. And then started to have anxiety about all the shit wrong with it. Like chill brain, we didn’t even do it.

submitted 9 days ago • 1 comment

Nothing quite hits like a sad boy who can't sing On repeat lately: open.spotify.com/tra...

submitted 9 days ago • 0 comments

I'm stoked to be at Sleuthcon - all the talks are completely focused on cybercrime. No vulns, exploits, marketing fluff. Just 1 track floor to ceiling with people who spend their days chasing the baddies.

submitted 11 days ago • 1 comment

I'm safe. I only ever run: 'npm totally-not-malware'

submitted 11 days ago • 1 comment

Definitely important for security teams to watch OpenAI feature announcements: "ChatGPT now ingests Google Workspace, Microsoft 365, Dropbox, Box, SharePoint and OneDrive data" www.exponentialview....

submitted 12 days ago • 4 comments

I'm traveling a bunch this month - hit me with your best book or podcast recommendations you've loved recently.

submitted 12 days ago • 6 comments