David Oxley
@oxley.io
Cyber threat intelligence senior leader. @CitizenLab.ca Research Fellow. Former federal agent. Fan of space, books, technology, and Mother Nature🌪️. Personal account. 🇺🇸 🇺🇦 🇹🇼 #ThreatIntel
Storm chasing: https://bsky.app/profile/wxdox.com
Storm chasing: https://bsky.app/profile/wxdox.com
Pinned
David Oxley
@oxley.io
· Nov 9
I’ve created a Starter Pack around cyber threat intelligence to make it easier to find that community here on Bluesky. Let me know of folks I missed, as I’m sure there are many! go.bsky.app/TxQYHap
Reposted by David Oxley
If I give the bully my lunch money every day eventually he will die of old age
March 21, 2025 at 12:33 AM
If I give the bully my lunch money every day eventually he will die of old age
Reposted by David Oxley
cyberscoop.com/cyber-schola...
Will open my big mouth here and say as a participant in one of these programs in the great before time, this is a massive unforced error by USG and will have impacts that span probably decades on the gov cyber workforce
Will open my big mouth here and say as a participant in one of these programs in the great before time, this is a massive unforced error by USG and will have impacts that span probably decades on the gov cyber workforce
Cyber scholarship-for-service students say government has pulled rug on them, potentially burdening them with debt
Some CyberCorps: Scholarship for Service participants have had federal agency job and internship offers rescinded this year due to cutbacks and freezes. It’s a condition of their scholarship contract ...
cyberscoop.com
October 30, 2025 at 10:47 PM
cyberscoop.com/cyber-schola...
Will open my big mouth here and say as a participant in one of these programs in the great before time, this is a massive unforced error by USG and will have impacts that span probably decades on the gov cyber workforce
Will open my big mouth here and say as a participant in one of these programs in the great before time, this is a massive unforced error by USG and will have impacts that span probably decades on the gov cyber workforce
‼️ The @cyberwarcon.bsky.social agenda and presenters list is live. Proud that Amazon Cyber Threat Intelligence will be presenting for the first time on the intersection of Iranian cyber ops and kinetic strikes with Dlshad Othman and @davidmagnotti.bsky.social! www.cyberwarcon.com/ping-first-b...
Ping First, Boom Second — CYBERWARCON
www.cyberwarcon.com
October 8, 2025 at 8:44 PM
‼️ The @cyberwarcon.bsky.social agenda and presenters list is live. Proud that Amazon Cyber Threat Intelligence will be presenting for the first time on the intersection of Iranian cyber ops and kinetic strikes with Dlshad Othman and @davidmagnotti.bsky.social! www.cyberwarcon.com/ping-first-b...
“James Comey’s rights and liberties are not the only ones at risk today. So is your own right to participate in free and fair elections in order to render a verdict on Trump’s invasion of those rights and liberties.” From @davidfrum.bsky.social apple.news/AX8_ub4UHR0G...
The Comey Indictment Is Not Just Payback — The Atlantic
It’s an advance glimpse of Trump’s next attempted seizure of power
apple.news
September 26, 2025 at 2:12 AM
“James Comey’s rights and liberties are not the only ones at risk today. So is your own right to participate in free and fair elections in order to render a verdict on Trump’s invasion of those rights and liberties.” From @davidfrum.bsky.social apple.news/AX8_ub4UHR0G...
Happy to share that Amazon Cyber Threat Intelligence (ACTI) is hiring our first role in Dublin, Ireland! 🇮🇪
This role will provide threat intel support for the AWS European Sovereign Cloud (ESC). Dublin-based, open to current EU citizens, and with relocation available.
amazon.jobs/en/jobs/3089...
This role will provide threat intel support for the AWS European Sovereign Cloud (ESC). Dublin-based, open to current EU citizens, and with relocation available.
amazon.jobs/en/jobs/3089...
Sr. Security Intelligence Engineer , European Sovereign Cloud (ESC) Threat Intelligence team
We are open to hiring candidates to work out of one of the following locations:Dublin, IEThe European Sovereign Cloud (ESC) Threat Intelligence team, part of Amazon Cyber Threat Intelligence (ACTI), i...
amazon.jobs
September 25, 2025 at 6:43 PM
Happy to share that Amazon Cyber Threat Intelligence (ACTI) is hiring our first role in Dublin, Ireland! 🇮🇪
This role will provide threat intel support for the AWS European Sovereign Cloud (ESC). Dublin-based, open to current EU citizens, and with relocation available.
amazon.jobs/en/jobs/3089...
This role will provide threat intel support for the AWS European Sovereign Cloud (ESC). Dublin-based, open to current EU citizens, and with relocation available.
amazon.jobs/en/jobs/3089...
Glad to see not every country is powerless to hold coup leaders to account - “Bolsonaro Sentenced to 27 Years in Prison for Plotting Coup in Brazil” www.nytimes.com/2025/09/11/w...
Bolsonaro Sentenced to 27 Years in Prison for Plotting Coup in Brazil
www.nytimes.com
September 11, 2025 at 11:00 PM
Glad to see not every country is powerless to hold coup leaders to account - “Bolsonaro Sentenced to 27 Years in Prison for Plotting Coup in Brazil” www.nytimes.com/2025/09/11/w...
This morning, Amazon Cyber Threat Intelligence published a report about a recent watering hole attack by APT29 🇷🇺 that we discovered targeting Microsoft device code authentication. Proud of the work of the team and the chance to share this with the community! aws.amazon.com/blogs/securi...
Amazon disrupts watering hole campaign by Russia’s APT29 | Amazon Web Services
Amazon’s threat intelligence team has identified and disrupted a watering hole campaign conducted by APT29 (also known as Midnight Blizzard), a threat actor associated with Russia’s Foreign Intelligen...
aws.amazon.com
August 29, 2025 at 1:44 PM
This morning, Amazon Cyber Threat Intelligence published a report about a recent watering hole attack by APT29 🇷🇺 that we discovered targeting Microsoft device code authentication. Proud of the work of the team and the chance to share this with the community! aws.amazon.com/blogs/securi...
“The driving principle here is obvious: In a free society, people should know who is policing them.” apple.news/ATQz-Wb-hQom...
Show Us Your Face — The Atlantic
The federal government should prohibit the wearing of masks by ICE agents and require them to properly identify themselves.
apple.news
July 7, 2025 at 10:27 PM
“The driving principle here is obvious: In a free society, people should know who is policing them.” apple.news/ATQz-Wb-hQom...
How Trump’s ‘Big, Beautiful Bill’ Will Make China Great Again www.nytimes.com/2025/07/03/o...
Opinion | How Trump’s ‘Big, Beautiful Bill’ Will Make China Great Again
www.nytimes.com
July 3, 2025 at 9:14 PM
How Trump’s ‘Big, Beautiful Bill’ Will Make China Great Again www.nytimes.com/2025/07/03/o...
Reposted by David Oxley
Use Signal. We promise, no AI clutter, and no surveillance ads, whatever the rest of the industry does. <3
June 16, 2025 at 3:30 PM
Use Signal. We promise, no AI clutter, and no surveillance ads, whatever the rest of the industry does. <3
Reposted by David Oxley
Well-done by @billmarczak.org and @jsrailton.bsky.social at @citizenlab.ca! citizenlab.ca/2025/06/firs...
Graphite Caught: First Forensic Confirmation of Paragon’s iOS Mercenary Spyware Finds Journalists Targeted - The Citizen Lab
On April 29, 2025, a select group of iOS users were notified by Apple that they were targeted with advanced spyware. Among the group were two journalists who consented to the technical analysis of the...
citizenlab.ca
June 12, 2025 at 3:25 PM
Well-done by @billmarczak.org and @jsrailton.bsky.social at @citizenlab.ca! citizenlab.ca/2025/06/firs...
Many moons ago, I was a federal agent. I arrested people. And you know how many times I did that while hiding my face and refusing to identify myself? Never. apple.news/A8NMRFx2mRua...
Opinion | The secret police descending on Small Town, U.S.A. — The Washington Post
Masked immigration officials are storming towns and arresting people.
apple.news
June 11, 2025 at 8:53 PM
Many moons ago, I was a federal agent. I arrested people. And you know how many times I did that while hiding my face and refusing to identify myself? Never. apple.news/A8NMRFx2mRua...
Happy @sleuthcon.bsky.social SLEUTHCON Day to those who celebrate! Hope to see many of you there! #SLEUTHCON
June 6, 2025 at 10:58 AM
Happy @sleuthcon.bsky.social SLEUTHCON Day to those who celebrate! Hope to see many of you there! #SLEUTHCON
👌
Weird they're showing Swan Lake on Fox right now
June 5, 2025 at 10:58 PM
👌
One week until @sleuthcon.bsky.social! Hope to see many of you at the best cybercrime conference of the year. (And grab a ticket while you still can!) #SLEUTHCON
May 30, 2025 at 11:40 AM
One week until @sleuthcon.bsky.social! Hope to see many of you at the best cybercrime conference of the year. (And grab a ticket while you still can!) #SLEUTHCON
Reposted by David Oxley
“I dOn’T ThInK I eVeR MeT hIm”
April 26, 2025 at 12:54 AM
“I dOn’T ThInK I eVeR MeT hIm”
David Brooks gets it. “It’s time for a comprehensive national civic uprising. It’s time for Americans…to form one coordinated mass movement. Trump is about power. The only way he’s going to be stopped is if he’s confronted by some movement that possesses rival power.” www.nytimes.com/2025/04/17/o...
Opinion | Time for a Civic Uprising
It will take a concerted effort by every sector of our society to respond to Trumpism’s threat.
www.nytimes.com
April 17, 2025 at 11:04 PM
David Brooks gets it. “It’s time for a comprehensive national civic uprising. It’s time for Americans…to form one coordinated mass movement. Trump is about power. The only way he’s going to be stopped is if he’s confronted by some movement that possesses rival power.” www.nytimes.com/2025/04/17/o...
Reposted by David Oxley
NEW: In an 11th hour move, CISA spokesperson says the agency extended the contract for the MITRE-backed CVE Program last night:
April 16, 2025 at 12:11 PM
NEW: In an 11th hour move, CISA spokesperson says the agency extended the contract for the MITRE-backed CVE Program last night:
I was traveling when @sleuthcon.bsky.social’s CFP and registration opened (and when this amazing challenge coin came in the mail). Sign up to present and/or attend and join the best cybercrime conference each year, bar none!
March 23, 2025 at 5:57 PM
I was traveling when @sleuthcon.bsky.social’s CFP and registration opened (and when this amazing challenge coin came in the mail). Sign up to present and/or attend and join the best cybercrime conference each year, bar none!
Reposted by David Oxley
World’s worst parent and it’s a high bar.
March 23, 2025 at 1:29 PM
World’s worst parent and it’s a high bar.
Happy to share that, as of next month, I’ve been promoted to Senior Manager (L7) with an expanded scope across Amazon CTI’s analysis teams. We’re looking for managers for two teams, AWS and incident response threat intel. Technical, in-office, US-based. DM with questions! amazon.jobs/en/jobs/2918...
Security Engineering Manager, AWS Threat Intelligence, ACTI
We are open to hiring candidates to work out of one of the following locations:Annapolis Junction, MD, USA | Arlington, VA, USA | Herndon, VA, USA | New York, NY, USAThe AWS Threat Intelligence (AWS T...
amazon.jobs
March 5, 2025 at 2:35 PM
Happy to share that, as of next month, I’ve been promoted to Senior Manager (L7) with an expanded scope across Amazon CTI’s analysis teams. We’re looking for managers for two teams, AWS and incident response threat intel. Technical, in-office, US-based. DM with questions! amazon.jobs/en/jobs/2918...
No honor among this crowd. Cowards, all of them.
This is Marco Rubio explaining how the USA promised to defend Ukraine forever if they got rid of their nuclear arsenal left after the Soviet Union fell.
This is why lil marco was sinking into the couch. He was hoping we wouldn’t find it…so don’t RT right now this very second.
This is why lil marco was sinking into the couch. He was hoping we wouldn’t find it…so don’t RT right now this very second.
March 2, 2025 at 10:32 PM
No honor among this crowd. Cowards, all of them.
Reposted by David Oxley
It means a lot, to me and to everyone who works so hard to make Signal happen every day, to hear this from a legend like @matthewdgreen.bsky.social 💐
One of the things I’ve come to appreciate being with privacy folks this week is how unique Signal is at this moment. I know it’s maybe a cliche at this point, but it needs to be said.
March 2, 2025 at 6:09 PM
It means a lot, to me and to everyone who works so hard to make Signal happen every day, to hear this from a legend like @matthewdgreen.bsky.social 💐