Jen Miller-Osborn
@jadefh.bsky.social
International Threat Intelligence Leader and Public Speaker currently with Dataminr. Co-founder of Unit 42 - Palo Alto Networks and NCIJTF, co-creator of ATT&CK, and USAF vet. She/Her.
Shields Up: Alleged Microsoft Office Zero Day for Sale
www.dataminr.com/resources/in...
www.dataminr.com/resources/in...
Shields Up: Alleged Microsoft Office Zero Day for Sale - Dataminr
Alleged Microsoft Office zero-day exploit is being advertised for $300,000 on the RAMP forum by "zeroplayer," a seller with a history of legitimate zero-day sales. The unconfirmed exploit reportedly b...
www.dataminr.com
November 21, 2025 at 12:57 AM
Shields Up: Alleged Microsoft Office Zero Day for Sale
www.dataminr.com/resources/in...
www.dataminr.com/resources/in...
Reposted by Jen Miller-Osborn
For no reason at all, re-upping this blog from @danwblack.bsky.social, which shows the high interest that Russian APTs have in getting access to Signal messages.
cloud.google.com/blog/topics/...
cloud.google.com/blog/topics/...
Signals of Trouble: Multiple Russia-Aligned Threat Actors Actively Targeting Signal Messenger | Google Cloud Blog
Russia state-aligned threat actors target Signal Messenger accounts used by individuals of interest to Russia's intelligence services.
cloud.google.com
March 24, 2025 at 5:26 PM
For no reason at all, re-upping this blog from @danwblack.bsky.social, which shows the high interest that Russian APTs have in getting access to Signal messages.
cloud.google.com/blog/topics/...
cloud.google.com/blog/topics/...
Reposted by Jen Miller-Osborn
🔥BREAKING NEWS: Two sources have told me that the Department of Veterans Affairs payroll system (VATAS) has been down since Friday. It is operating in 'Emergency Mode' only and will have to resort to straight time cards to get people their base pay on Friday.
March 24, 2025 at 5:10 PM
🔥BREAKING NEWS: Two sources have told me that the Department of Veterans Affairs payroll system (VATAS) has been down since Friday. It is operating in 'Emergency Mode' only and will have to resort to straight time cards to get people their base pay on Friday.
Reposted by Jen Miller-Osborn
This_Is_Fine.gif
March 11, 2025 at 4:49 PM
This_Is_Fine.gif
Reposted by Jen Miller-Osborn
Critical Warning: 'Cisco has not released software updates to address the vulnerabilities described in this advisory. There are no workarounds that address these vulnerabilities.' 👀 sec.cloudapps.cisco.com/security/cen... #cybersecurity @gate15.bsky.social
Cisco Security Advisory: Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Vulnerabilities
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow a remote attacker to bypass authentication or e...
sec.cloudapps.cisco.com
March 10, 2025 at 12:03 PM
Critical Warning: 'Cisco has not released software updates to address the vulnerabilities described in this advisory. There are no workarounds that address these vulnerabilities.' 👀 sec.cloudapps.cisco.com/security/cen... #cybersecurity @gate15.bsky.social
Reposted by Jen Miller-Osborn
“I want to raise my grave concerns that the aggressive threats to cut U.S. government probationary employees will have a devastating impact on the cybersecurity and our national security.” @rgblights.bsky.social
cyberscoop.com/joyce-china-...
cyberscoop.com/joyce-china-...
Former top NSA cyber official: Probationary firings ‘devastating’ to cyber, national security
Rob Joyce emphasized during a House hearing how important probationary employees are to NSA efforts to counter China and other threats in cyberspace.
cyberscoop.com
March 5, 2025 at 5:30 PM
“I want to raise my grave concerns that the aggressive threats to cut U.S. government probationary employees will have a devastating impact on the cybersecurity and our national security.” @rgblights.bsky.social
cyberscoop.com/joyce-china-...
cyberscoop.com/joyce-china-...
Reposted by Jen Miller-Osborn
Celebrate April 22nd with ATT&CK v17!
The next version of ATT&CK is almost here, with new content related to the ESXi hypervisor, broad improvements to defenses, and updates to techniques, groups, and software across the framework.
The next version of ATT&CK is almost here, with new content related to the ESXi hypervisor, broad improvements to defenses, and updates to techniques, groups, and software across the framework.
March 4, 2025 at 4:37 PM
Celebrate April 22nd with ATT&CK v17!
The next version of ATT&CK is almost here, with new content related to the ESXi hypervisor, broad improvements to defenses, and updates to techniques, groups, and software across the framework.
The next version of ATT&CK is almost here, with new content related to the ESXi hypervisor, broad improvements to defenses, and updates to techniques, groups, and software across the framework.
Reposted by Jen Miller-Osborn
Jesus fucking Christ
I mean this so sincerely
If you participated in erasing Sam Nordquist's fucking identity at the NYT, a TRANS man from Minnesota who was murdered in New York, I think you are fucking scum.
"But I would have gotten fired!"
Get fired then.
Don't be a fucking coward.
I mean this so sincerely
If you participated in erasing Sam Nordquist's fucking identity at the NYT, a TRANS man from Minnesota who was murdered in New York, I think you are fucking scum.
"But I would have gotten fired!"
Get fired then.
Don't be a fucking coward.
Now it just says “person”
February 18, 2025 at 1:01 PM
Jesus fucking Christ
I mean this so sincerely
If you participated in erasing Sam Nordquist's fucking identity at the NYT, a TRANS man from Minnesota who was murdered in New York, I think you are fucking scum.
"But I would have gotten fired!"
Get fired then.
Don't be a fucking coward.
I mean this so sincerely
If you participated in erasing Sam Nordquist's fucking identity at the NYT, a TRANS man from Minnesota who was murdered in New York, I think you are fucking scum.
"But I would have gotten fired!"
Get fired then.
Don't be a fucking coward.
Reposted by Jen Miller-Osborn
DOGE as a National Cyberattack
In the span of just weeks, the US government has experienced what may be the most consequential security breach in its history—not through a sophisticated cyberattack or an act of foreign espionage, but through official orders by a billionaire with a poorly defined…
In the span of just weeks, the US government has experienced what may be the most consequential security breach in its history—not through a sophisticated cyberattack or an act of foreign espionage, but through official orders by a billionaire with a poorly defined…
DOGE as a National Cyberattack
In the span of just weeks, the US government has experienced what may be the most consequential security breach in its history—not through a sophisticated cyberattack or an act of foreign espionage, but through official orders by a billionaire with a poorly defined government role. And the implications for national security are profound. First, it was reported that people associated with the newly created Department of Government Efficiency (DOGE) had…
www.schneier.com
February 13, 2025 at 12:04 PM
DOGE as a National Cyberattack
In the span of just weeks, the US government has experienced what may be the most consequential security breach in its history—not through a sophisticated cyberattack or an act of foreign espionage, but through official orders by a billionaire with a poorly defined…
In the span of just weeks, the US government has experienced what may be the most consequential security breach in its history—not through a sophisticated cyberattack or an act of foreign espionage, but through official orders by a billionaire with a poorly defined…
Reposted by Jen Miller-Osborn
Here's a list of DOGE staff, assembled and annotated by my colleagues at BI. Whatever you do, please don't share it.
www.businessinsider.com/doge-staff-l...
www.businessinsider.com/doge-staff-l...
We got a DOGE staff list. From a McKinsey alum to a former Clarence Thomas clerk, here are the workers powering Elon Musk's cost-cutting squad.
A list of White House DOGE staffers shows about 30 young tech, finance, and legal professionals remaking the federal government.
www.businessinsider.com
February 11, 2025 at 5:43 PM
Here's a list of DOGE staff, assembled and annotated by my colleagues at BI. Whatever you do, please don't share it.
www.businessinsider.com/doge-staff-l...
www.businessinsider.com/doge-staff-l...
Reposted by Jen Miller-Osborn
Reposted by Jen Miller-Osborn
We are in Hell and Hell pushes directly to prod.
"The changes that have been made all seem to relate to creating new paths to block payments and possibly leave less visibility into what has been blocked. I want to emphasize that the described changes are not being tested in a dev environment...but have already been pushed into production."
February 4, 2025 at 7:15 PM
We are in Hell and Hell pushes directly to prod.
Reposted by Jen Miller-Osborn
And it begins.
FBI class action lawsuit against the retaliatory purge.
First Amendment
Violation of Due Process
Rights to Privacy
www.justsecurity.org/wp-content/u...
FBI class action lawsuit against the retaliatory purge.
First Amendment
Violation of Due Process
Rights to Privacy
www.justsecurity.org/wp-content/u...
February 4, 2025 at 6:04 PM
And it begins.
FBI class action lawsuit against the retaliatory purge.
First Amendment
Violation of Due Process
Rights to Privacy
www.justsecurity.org/wp-content/u...
FBI class action lawsuit against the retaliatory purge.
First Amendment
Violation of Due Process
Rights to Privacy
www.justsecurity.org/wp-content/u...
Reposted by Jen Miller-Osborn
Every vet this morning, thinking about all those years of information awareness training and threats of UCMJ for using flash drives
a close up of a man 's face with a drum in the background
ALT: a close up of a man 's face with a drum in the background
media.tenor.com
February 2, 2025 at 6:50 PM
Every vet this morning, thinking about all those years of information awareness training and threats of UCMJ for using flash drives
Reposted by Jen Miller-Osborn
From a journalist friend: Just spreading the word. The CDC is purging data, so people should archive their favorite CDC datasets today, namely ones around race/ethnic diversity, LGBTQ, and reproductive health. Also health data involving climate. The youth risk behavior survey has already gone down.
January 31, 2025 at 3:43 PM
From a journalist friend: Just spreading the word. The CDC is purging data, so people should archive their favorite CDC datasets today, namely ones around race/ethnic diversity, LGBTQ, and reproductive health. Also health data involving climate. The youth risk behavior survey has already gone down.
Reposted by Jen Miller-Osborn
The Recorded Future annual report is out!
TL;DR - 2024 was bad and 2025 will likely be worse.
TL;DR - 2024 was bad and 2025 will likely be worse.
www.recordedfuture.com
January 29, 2025 at 12:34 PM
The Recorded Future annual report is out!
TL;DR - 2024 was bad and 2025 will likely be worse.
TL;DR - 2024 was bad and 2025 will likely be worse.
Reposted by Jen Miller-Osborn
Intelligence officials are starting to leak to me now too. Here’s a memo Defense Intelligence Agency personnel received instructing them to suspend observances including:
- Holocaust Remembrance Day
- MLK Day
- Juneteenth
- Holocaust Remembrance Day
- MLK Day
- Juneteenth
January 29, 2025 at 3:24 PM
Intelligence officials are starting to leak to me now too. Here’s a memo Defense Intelligence Agency personnel received instructing them to suspend observances including:
- Holocaust Remembrance Day
- MLK Day
- Juneteenth
- Holocaust Remembrance Day
- MLK Day
- Juneteenth
Reposted by Jen Miller-Osborn
"In the past year, Dozens of hacking groups turned to Google’s Gemini chatbot to assist with malicious code writing, hunts for publicly known cyber vulnerabilities and research into organizations to target for attack, Google’s cyber-threat experts said."
www.msn.com/en-us/money/...
www.msn.com/en-us/money/...
MSN
www.msn.com
January 29, 2025 at 4:10 PM
"In the past year, Dozens of hacking groups turned to Google’s Gemini chatbot to assist with malicious code writing, hunts for publicly known cyber vulnerabilities and research into organizations to target for attack, Google’s cyber-threat experts said."
www.msn.com/en-us/money/...
www.msn.com/en-us/money/...
Reposted by Jen Miller-Osborn
I have a feeling someone may need this today.
This is a time that will try all our souls. We must let our friends & family know we see them, we value them & we will stand up to protect everyone’s right to be themselves.
This is a time that will try all our souls. We must let our friends & family know we see them, we value them & we will stand up to protect everyone’s right to be themselves.
January 21, 2025 at 1:52 PM
I have a feeling someone may need this today.
This is a time that will try all our souls. We must let our friends & family know we see them, we value them & we will stand up to protect everyone’s right to be themselves.
This is a time that will try all our souls. We must let our friends & family know we see them, we value them & we will stand up to protect everyone’s right to be themselves.
Reposted by Jen Miller-Osborn
A ton of folks are still using the old server and are going to be sad December 18th when it's shut down for good and their apps/scrips break.
Moving to TAXII 2.1/STIX 2.1 is more than just a URL change, so the time to get started is yesterday. Please help us spread the word that the end is nigh.
Moving to TAXII 2.1/STIX 2.1 is more than just a URL change, so the time to get started is yesterday. Please help us spread the word that the end is nigh.
We’re excited to introduce our new TAXII server and the latest addition to the ATT&CK Workbench software suite: the MITRE ATT&CK Workbench TAXII 2.1 Server:
medium.com/mitre-attack...
medium.com/mitre-attack...
Introducing TAXII 2.1 and a fond farewell to the TAXII 2.0 Server
We’re excited to introduce our new TAXII 2.1 server and the latest addition to the ATT&CK Workbench Software Suite
medium.com
November 20, 2024 at 2:47 PM
A ton of folks are still using the old server and are going to be sad December 18th when it's shut down for good and their apps/scrips break.
Moving to TAXII 2.1/STIX 2.1 is more than just a URL change, so the time to get started is yesterday. Please help us spread the word that the end is nigh.
Moving to TAXII 2.1/STIX 2.1 is more than just a URL change, so the time to get started is yesterday. Please help us spread the word that the end is nigh.
Reposted by Jen Miller-Osborn
The Community Driven CTI Library
ORKL provides easy access and (re-)search capabilities to a large number of publicised cyber threat intelligence (CTI) reports.
orkl.eu
ORKL provides easy access and (re-)search capabilities to a large number of publicised cyber threat intelligence (CTI) reports.
orkl.eu
ORKL
ORKL Threat Intelligence Library
orkl.eu
November 13, 2024 at 3:45 PM
The Community Driven CTI Library
ORKL provides easy access and (re-)search capabilities to a large number of publicised cyber threat intelligence (CTI) reports.
orkl.eu
ORKL provides easy access and (re-)search capabilities to a large number of publicised cyber threat intelligence (CTI) reports.
orkl.eu
TY, this looks handy!
November 13, 2024 at 3:57 PM
TY, this looks handy!