Roger Neal
@rogredhat.bsky.social
Thoughts & posts are my own. GRRC Member, Didcot Town Football Club Trustee, Photographer & Technology Manager at Sophos.
Agree it’s a good read, but most common ways in - exploiting unpatched vulnerability, brute forcing VPN/RDP without MFA or some form of phishing / attacker in the middle / fake captcha to get an unwitting user to hand over usernames, password and MFA Session cookies.
September 29, 2025 at 6:28 PM
Agree it’s a good read, but most common ways in - exploiting unpatched vulnerability, brute forcing VPN/RDP without MFA or some form of phishing / attacker in the middle / fake captcha to get an unwitting user to hand over usernames, password and MFA Session cookies.
Not even the SIEM. EDR products were designed to alert you after it’s hitting the fan.. Strong protection and prevention should come first.
July 25, 2025 at 5:03 PM
Not even the SIEM. EDR products were designed to alert you after it’s hitting the fan.. Strong protection and prevention should come first.
Because it’s more intelligent than he is?
July 25, 2025 at 5:00 PM
Because it’s more intelligent than he is?