Jennifer Wood
@notnextjen.bsky.social
Space geek, roaming gnome, security comms. Ex-USG: OMB, NASA, EPA, U.S. Senate. Formerly Luta Security, Kaspersky, Avast, BlackBerry, Microsoft/WE Comms.
https://www.linkedin.com/in/jenniferjwood/
https://www.linkedin.com/in/jenniferjwood/
Reposted by Jennifer Wood
ShinyHunters has claimed responsibility for an Okta voice-phishing campaign during which the extortionist crew allegedly gained access to Crunchbase and Betterment.
ShinyHunters claims Okta customer breaches, leaks data
: 'A lot more' victims to come, we're told
www.theregister.com
January 23, 2026 at 7:19 PM
ShinyHunters has claimed responsibility for an Okta voice-phishing campaign during which the extortionist crew allegedly gained access to Crunchbase and Betterment.
Reposted by Jennifer Wood
NEW: Microsoft handed the FBI the recovery keys to decrypt the hard drives of three laptops encrypted with BitLocker.
BitLocker is enabled by default in modern Windows laptops, but Microsoft also prompts users to upload the recovery keys to the company's cloud, which opens up this possibility.
BitLocker is enabled by default in modern Windows laptops, but Microsoft also prompts users to upload the recovery keys to the company's cloud, which opens up this possibility.
Microsoft gave FBI a set of BitLocker encryption keys to unlock suspects' laptops: reports | TechCrunch
The FBI served Microsoft a warrant requesting encryption recovery keys to decrypt the hard drives of people involved in an alleged fraud case in Guam.
techcrunch.com
January 23, 2026 at 3:56 PM
NEW: Microsoft handed the FBI the recovery keys to decrypt the hard drives of three laptops encrypted with BitLocker.
BitLocker is enabled by default in modern Windows laptops, but Microsoft also prompts users to upload the recovery keys to the company's cloud, which opens up this possibility.
BitLocker is enabled by default in modern Windows laptops, but Microsoft also prompts users to upload the recovery keys to the company's cloud, which opens up this possibility.
Reposted by Jennifer Wood
New, by me: Under Armour says it’s aware of data breach claims after 72M customer records were posted online.
A spox. told me a "small percentage" of customers had sensitive information compromised but wouldn't say what it considers "sensitive," nor provide an accurate figure of affected customers.
A spox. told me a "small percentage" of customers had sensitive information compromised but wouldn't say what it considers "sensitive," nor provide an accurate figure of affected customers.
Under Armour says it's 'aware' of data breach claims after 72M customer records were posted online | TechCrunch
TechCrunch obtained a sample of the stolen data, which contained names, email addresses, dates of birth, and the user's approximate geographic location. Under Armour confirmed some sensitive informati...
techcrunch.com
January 22, 2026 at 3:36 PM
New, by me: Under Armour says it’s aware of data breach claims after 72M customer records were posted online.
A spox. told me a "small percentage" of customers had sensitive information compromised but wouldn't say what it considers "sensitive," nor provide an accurate figure of affected customers.
A spox. told me a "small percentage" of customers had sensitive information compromised but wouldn't say what it considers "sensitive," nor provide an accurate figure of affected customers.
GPS attacks are increasing, relatively cheap to implement, spreading geographically, and present a significant threat to people's safety and the economy. If your org uses GPS data, it's time to update your threat models. Learn more: shostack.org/26-01
Threat Advisory: GPS Attacks [SA-26-01]
The dramatic increase in credible reports of GPS attacks, combined with geographic spread and the decreasing cost of hardware for the attack, indicate a change in the threat landscape. If your company...
shostack.org
January 22, 2026 at 2:48 PM
GPS attacks are increasing, relatively cheap to implement, spreading geographically, and present a significant threat to people's safety and the economy. If your org uses GPS data, it's time to update your threat models. Learn more: shostack.org/26-01
Today is the day…#LABScon2025 is live from Phoenix, AZ. Get ready for two days of unique research and excellent speakers.
September 18, 2025 at 5:03 PM
Today is the day…#LABScon2025 is live from Phoenix, AZ. Get ready for two days of unique research and excellent speakers.
Reposted by Jennifer Wood
New: French phone giant Bouygues confirmed a data breach affects the personal information of 6.4 million customers.
Bouygues disclosed the breach on a dedicated web page; however, the page is currently deliberately excluded from search engines using "noindex" code, making it more difficult to find.
Bouygues disclosed the breach on a dedicated web page; however, the page is currently deliberately excluded from search engines using "noindex" code, making it more difficult to find.
Data breach at French telecom giant Bouygues affects millions of customers | TechCrunch
This is the latest cyberattack to hit a French cellular carrier in recent weeks, following an attack on Orange Telecom in July.
techcrunch.com
August 7, 2025 at 1:46 PM
New: French phone giant Bouygues confirmed a data breach affects the personal information of 6.4 million customers.
Bouygues disclosed the breach on a dedicated web page; however, the page is currently deliberately excluded from search engines using "noindex" code, making it more difficult to find.
Bouygues disclosed the breach on a dedicated web page; however, the page is currently deliberately excluded from search engines using "noindex" code, making it more difficult to find.
Enjoying the #threebuddyproblem podcast live from BH /Vegas!
August 7, 2025 at 12:05 AM
Enjoying the #threebuddyproblem podcast live from BH /Vegas!
Reposted by Jennifer Wood
Update: Microsoft has released security updates that fully protect customers using all supported versions of SharePoint affected by CVE-2025-53770 and CVE-2025-53771. Customers should apply these updates immediately.
Full guidance and detection details: msft.it/6010sDzSE.
Full guidance and detection details: msft.it/6010sDzSE.
July 21, 2025 at 11:03 PM
Update: Microsoft has released security updates that fully protect customers using all supported versions of SharePoint affected by CVE-2025-53770 and CVE-2025-53771. Customers should apply these updates immediately.
Full guidance and detection details: msft.it/6010sDzSE.
Full guidance and detection details: msft.it/6010sDzSE.
Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers - www.securityweek.com/microsoft-pa...
Microsoft Patches 'ToolShell' Zero-Days Exploited to Hack SharePoint Servers
Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771.
www.securityweek.com
July 21, 2025 at 6:30 PM
Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers - www.securityweek.com/microsoft-pa...
Reposted by Jennifer Wood
New from 404 Media: a startup is selling data hacked from peoples' computers to debt collectors, divorce lawyers, more. People already hacked, now being re-vicitmized by startup. I used the tool, found peoples' personal addresses.
“This is so gross and predatory.”
www.404media.co/a-startup-is...
“This is so gross and predatory.”
www.404media.co/a-startup-is...
A Startup is Selling Data Hacked from Peoples’ Computers to Debt Collectors
Infostealer data can include passwords, email and billing addresses, and the embarrassing websites you use. Farnsworth Intelligence is selling to to divorce lawyers and other industries.
www.404media.co
July 21, 2025 at 1:07 PM
New from 404 Media: a startup is selling data hacked from peoples' computers to debt collectors, divorce lawyers, more. People already hacked, now being re-vicitmized by startup. I used the tool, found peoples' personal addresses.
“This is so gross and predatory.”
www.404media.co/a-startup-is...
“This is so gross and predatory.”
www.404media.co/a-startup-is...
No patch but here’s the suggested mitigations from MSFT:
Configure Antimalware Scan Interface integration in SharePoint and deploy Defender AV on all SharePoint servers, and/or consider disconnecting your server from the internet until a security update is available.
www.forbes.com/sites/daveyw...
Configure Antimalware Scan Interface integration in SharePoint and deploy Defender AV on all SharePoint servers, and/or consider disconnecting your server from the internet until a security update is available.
www.forbes.com/sites/daveyw...
Microsoft Confirms Ongoing Mass SharePoint Attack — No Patch Available
Microsoft has confirmed that SharePoint Server is under mass attack and no patch is yet available — here’s what you need to know and how to mitigate the threat.
www.forbes.com
July 20, 2025 at 11:30 PM
No patch but here’s the suggested mitigations from MSFT:
Configure Antimalware Scan Interface integration in SharePoint and deploy Defender AV on all SharePoint servers, and/or consider disconnecting your server from the internet until a security update is available.
www.forbes.com/sites/daveyw...
Configure Antimalware Scan Interface integration in SharePoint and deploy Defender AV on all SharePoint servers, and/or consider disconnecting your server from the internet until a security update is available.
www.forbes.com/sites/daveyw...
Reposted by Jennifer Wood
A website developed for the UK Home Office's 2022 "flop" anti-encryption campaign has seemingly been hijacked to push a payday loan scheme.
www.theregister.com/2025/06/25/h...
www.theregister.com/2025/06/25/h...
Home Office anti-encryption site pushes payday loan scheme
: Company at center of findings blamed SEO on outsourcer
www.theregister.com
June 25, 2025 at 11:25 AM
A website developed for the UK Home Office's 2022 "flop" anti-encryption campaign has seemingly been hijacked to push a payday loan scheme.
www.theregister.com/2025/06/25/h...
www.theregister.com/2025/06/25/h...
Reposted by Jennifer Wood
Iran's APT42 (Charming Kitten) hacker team is now conducting targeted spearphishing attacks on high-profile Israeli national security journalists and cybersecurity researchers, according to Check Point. blog.checkpoint.com/security/edu...
June 25, 2025 at 2:30 PM
Iran's APT42 (Charming Kitten) hacker team is now conducting targeted spearphishing attacks on high-profile Israeli national security journalists and cybersecurity researchers, according to Check Point. blog.checkpoint.com/security/edu...
After five incredible years at
@lutasecurity.bsky.social I’ll be moving on at the end of the month and looking for a new senior communications leadership role within the cybersecurity industry. For more info about my background, please read: tinyurl.com/yeyw4xb6. Thanks!
@lutasecurity.bsky.social I’ll be moving on at the end of the month and looking for a new senior communications leadership role within the cybersecurity industry. For more info about my background, please read: tinyurl.com/yeyw4xb6. Thanks!
Dear friends, former colleagues, and extended network: | Jennifer (Jen) Wood
Dear friends, former colleagues, and extended network:
After nearly five incredible years at Luta Security, I’ll be moving on at the end of the month and looking for a new senior communications leade...
tinyurl.com
June 23, 2025 at 7:02 PM
After five incredible years at
@lutasecurity.bsky.social I’ll be moving on at the end of the month and looking for a new senior communications leadership role within the cybersecurity industry. For more info about my background, please read: tinyurl.com/yeyw4xb6. Thanks!
@lutasecurity.bsky.social I’ll be moving on at the end of the month and looking for a new senior communications leadership role within the cybersecurity industry. For more info about my background, please read: tinyurl.com/yeyw4xb6. Thanks!
Phew…CISA extends MITRE-backed CVE contract hours before its lapse
www.nextgov.com/cybersecurit...
www.nextgov.com/cybersecurit...
CISA extends MITRE-backed CVE contract hours before its lapse
“Last night, CISA executed the option period on the contract to ensure there will be no lapse in critical CVE services,” an agency spokesperson said.
www.nextgov.com
April 16, 2025 at 4:10 PM
Phew…CISA extends MITRE-backed CVE contract hours before its lapse
www.nextgov.com/cybersecurit...
www.nextgov.com/cybersecurit...
Uncle Sam abruptly turns off funding for CVE program. Yes, that CVE program - by @jessicalyons.bsky.social at @theregister.com
www.theregister.com/AMP/2025/04/...
www.theregister.com/AMP/2025/04/...
Uncle Sam abruptly turns off funding for CVE program. Yes, that CVE program
: Because vulnerability management has nothing to do with national security, right?
www.theregister.com
April 16, 2025 at 1:46 AM
Uncle Sam abruptly turns off funding for CVE program. Yes, that CVE program - by @jessicalyons.bsky.social at @theregister.com
www.theregister.com/AMP/2025/04/...
www.theregister.com/AMP/2025/04/...
Reposted by Jennifer Wood
#Cryptocurrency Exchanges—Do you need a security assessment? Do you need an audit for your #bugbounty program? Hire LutaSecurity—the only company led by a co-author of the international standards on vuln disclosure & handling processes. @lutasecurity.bsky.social www.lutasecurity.com/bug-bounty-s...
Bug Bounty Solutions | Luta Security
Luta Security provides bug bounty program audits, offers end-to-end vulnerability case resolution management, creates new VDP and bug bounty programs, and performs security maturity assessments.
www.lutasecurity.com
March 20, 2025 at 2:49 PM
#Cryptocurrency Exchanges—Do you need a security assessment? Do you need an audit for your #bugbounty program? Hire LutaSecurity—the only company led by a co-author of the international standards on vuln disclosure & handling processes. @lutasecurity.bsky.social www.lutasecurity.com/bug-bounty-s...
Reposted by Jennifer Wood
NEW: The Trump admin has fired members of the Cyber Safety Review Board, a committee that was lauded for its investigation into Microsoft hacks of 2023, and was working on the recent Salt Typhoon telco hacks.
One source called it a “horribly shortsighted” decision.
techcrunch.com/2025/01/22/t...
One source called it a “horribly shortsighted” decision.
techcrunch.com/2025/01/22/t...
Trump administration fires members of cybersecurity review board in “horribly shortsighted” decision | TechCrunch
The Department of Homeland security told members of the Cyber Safety Review Board that their membership was terminated.
techcrunch.com
January 22, 2025 at 4:44 PM
NEW: The Trump admin has fired members of the Cyber Safety Review Board, a committee that was lauded for its investigation into Microsoft hacks of 2023, and was working on the recent Salt Typhoon telco hacks.
One source called it a “horribly shortsighted” decision.
techcrunch.com/2025/01/22/t...
One source called it a “horribly shortsighted” decision.
techcrunch.com/2025/01/22/t...
Back in DC. Not for political reasons. Still feels like home.
January 18, 2025 at 11:31 PM
Back in DC. Not for political reasons. Still feels like home.
Who's ready to sign up for @lutasecurity.bsky.social's Long Spoons Workforce Platform?
Deck the Hall with Bugs and Payouts!
Check out @k8em0.bsky.social's update on @lutasecurity.bsky.social's contract workforce platform that includes dividend sharing.
www.lutasecurity.com/post/deck-th...
Check out @k8em0.bsky.social's update on @lutasecurity.bsky.social's contract workforce platform that includes dividend sharing.
www.lutasecurity.com/post/deck-th...
Deck the Hall with Bugs and Payouts
Update on Luta Security's contract workforce platform with dividend sharing.
www.lutasecurity.com
December 12, 2024 at 10:35 PM
Who's ready to sign up for @lutasecurity.bsky.social's Long Spoons Workforce Platform?