Aaron Stephens
@aaronst.bsky.social
idk who needs to hear this, but malware doesn’t target things
please stop saying malware targets things
please stop saying malware targets things
July 24, 2025 at 6:40 PM
idk who needs to hear this, but malware doesn’t target things
please stop saying malware targets things
please stop saying malware targets things
Reposted by Aaron Stephens
More bad #Apple #malware from our "friends" from the #DPRK (again!). 🇰🇵 Similar to the one seen by Huntress, but uses some different Nim payloads and trickery to write persistence on reboot / kill. Heads up #macOS detection engineers! 👇 @syrion89.bsky.social
www.sentinelone.com/labs/macos-n...
www.sentinelone.com/labs/macos-n...
macOS NimDoor | DPRK Threat Actors Target Web3 and Crypto Platforms with Nim-Based Malware
NimDoor reflects a leap in DPRK’s offensive toolkit, mixing compile-time trickery with native scripting to complicate and deter analysis.
www.sentinelone.com
July 2, 2025 at 11:07 AM
More bad #Apple #malware from our "friends" from the #DPRK (again!). 🇰🇵 Similar to the one seen by Huntress, but uses some different Nim payloads and trickery to write persistence on reboot / kill. Heads up #macOS detection engineers! 👇 @syrion89.bsky.social
www.sentinelone.com/labs/macos-n...
www.sentinelone.com/labs/macos-n...
Reposted by Aaron Stephens
Washington foresaw this day coming...
"They serve to organize faction; to give it an artificial and extraordinary force; to put in the place of the delegated will of the nation the will of a party, often a small [...] minority"
"They serve to organize faction; to give it an artificial and extraordinary force; to put in the place of the delegated will of the nation the will of a party, often a small [...] minority"
Trump giving a partisan political speech on a military base to active duty troops, something that George Washington said in his farewell address to the nation that a president should never do. bsky.app/profile/atru...
Trump goads the troops into booing California Gov. Gavin Newsom and LA Mayor Karen Bass and attacks them as "incompetent"
June 10, 2025 at 10:58 PM
Washington foresaw this day coming...
"They serve to organize faction; to give it an artificial and extraordinary force; to put in the place of the delegated will of the nation the will of a party, often a small [...] minority"
"They serve to organize faction; to give it an artificial and extraordinary force; to put in the place of the delegated will of the nation the will of a party, often a small [...] minority"
They won’t solve this because focusing on names is to miss the forest for the trees. Or perhaps miss the trees for the forest.
The root of this problem is the underlying data & analysis, or lack thereof. Until we set standards for these things, forget about names.
The root of this problem is the underlying data & analysis, or lack thereof. Until we set standards for these things, forget about names.
After years of people complaining about having to track all the silly names security firms give hacking groups, Microsoft/Crowdstrike/Mandiant say they're finally going to stop this. Oh wait, they're not actually going to stop it, they're just going to create a public glossary to list all the names
'Forest Blizzard' vs 'Fancy Bear' - cyber companies hope to untangle weird hacker nicknames
Microsoft, CrowdStrike, Palo Alto and Alphabet's Google on Monday said they would create a public glossary of state-sponsored hacking groups and cybercriminals, in a bid to ease confusion over the menagerie of unofficial nicknames for them.
www.reuters.com
June 2, 2025 at 5:30 PM
They won’t solve this because focusing on names is to miss the forest for the trees. Or perhaps miss the trees for the forest.
The root of this problem is the underlying data & analysis, or lack thereof. Until we set standards for these things, forget about names.
The root of this problem is the underlying data & analysis, or lack thereof. Until we set standards for these things, forget about names.
Reposted by Aaron Stephens
Navy Cmdr. Emily Shilling, lead plaintiff in the case against Trump's trans military ban, responds to SCOTUS' decision allowing it to take effect:
"We are not a policy debate. We are real people, doing real jobs, in defense of a nation we still believe in, even when it struggles to believe in us."
"We are not a policy debate. We are real people, doing real jobs, in defense of a nation we still believe in, even when it struggles to believe in us."
May 6, 2025 at 9:57 PM
Navy Cmdr. Emily Shilling, lead plaintiff in the case against Trump's trans military ban, responds to SCOTUS' decision allowing it to take effect:
"We are not a policy debate. We are real people, doing real jobs, in defense of a nation we still believe in, even when it struggles to believe in us."
"We are not a policy debate. We are real people, doing real jobs, in defense of a nation we still believe in, even when it struggles to believe in us."
Reposted by Aaron Stephens
An absolutely stunning look inside @sentinelone.com 's use of #synapse to provide intelligence context to inter-disciplinary intelligence stakeholders in defense of their own org. Truly on the leading edge of the intel driven fusion, collaboration, and impact. 🤩
www.sentinelone.com/labs/top-tie...
www.sentinelone.com/labs/top-tie...
Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today's Adversaries
This report highlights a rarely-discussed but crucially important attack surface: security vendors themselves.
www.sentinelone.com
April 28, 2025 at 11:35 PM
An absolutely stunning look inside @sentinelone.com 's use of #synapse to provide intelligence context to inter-disciplinary intelligence stakeholders in defense of their own org. Truly on the leading edge of the intel driven fusion, collaboration, and impact. 🤩
www.sentinelone.com/labs/top-tie...
www.sentinelone.com/labs/top-tie...
Reposted by Aaron Stephens
💥 BREAKING: Goldman Sachs shareholders voted today to reject two anti-DEI proposals, both by 98-2 percent. GS Board urged shareholders to vote to reject proposals. "We believe that diversity, including diversity of thought, experience and perspectives, is important to our commercial success."
April 23, 2025 at 1:56 PM
💥 BREAKING: Goldman Sachs shareholders voted today to reject two anti-DEI proposals, both by 98-2 percent. GS Board urged shareholders to vote to reject proposals. "We believe that diversity, including diversity of thought, experience and perspectives, is important to our commercial success."
Reposted by Aaron Stephens
I work with cool people who do cool things: www.eff.org/deeplinks/20...
Meet Rayhunter: A New Open Source Tool from EFF to Detect Cellular Spying
Rayhunter is a new open source tool we’ve created that runs off an affordable mobile hotspot that we hope empowers everyone, regardless of technical skill, to help search out cell-site simulators (CSS...
www.eff.org
March 5, 2025 at 10:32 PM
I work with cool people who do cool things: www.eff.org/deeplinks/20...
Reposted by Aaron Stephens
New from 404 Media: the government is to name the confidential source who first provided it with Anom, the encrypted phone company the FBI secretly backdoored. Impacted 100+ crime syndicates. First in discovery, then potentially at trial as key witness www.404media.co/government-t...
Government to Name ‘Key Witness’ Who Provided FBI With Backdoored Encrypted Chat App Anom
A lawyer has pushed to learn the identity of the person who first created Anom, which the FBI used to read tens of millions of messages sent by organized criminals. The confidential human source may t...
www.404media.co
December 23, 2024 at 1:59 PM
New from 404 Media: the government is to name the confidential source who first provided it with Anom, the encrypted phone company the FBI secretly backdoored. Impacted 100+ crime syndicates. First in discovery, then potentially at trial as key witness www.404media.co/government-t...
Reposted by Aaron Stephens
NEW REPORT: In a joint investigation with The First Department, we uncovered spyware covertly implanted on the phone of a Russian programmer following his release from Russian custody. citizenlab.ca/2024/12/devi...
Something to Remember Us By: Device Confiscated by Russian Authorities Returned with Monokle-Type Spyware Installed - The Citizen Lab
In a joint investigation with The First Department, The Citizen Lab uncovered spyware covertly implanted on the phone of a Russian programmer following his release from Russian custody. The Monokle-li...
citizenlab.ca
December 5, 2024 at 3:19 PM
NEW REPORT: In a joint investigation with The First Department, we uncovered spyware covertly implanted on the phone of a Russian programmer following his release from Russian custody. citizenlab.ca/2024/12/devi...
Reposted by Aaron Stephens
DC has *many* monuments with quotes etched in stone, but this one felt particularly apropos.
November 24, 2024 at 10:36 PM
DC has *many* monuments with quotes etched in stone, but this one felt particularly apropos.