Thomas
@thomas0x47.bsky.social
Lead @ Microsoft Threat Intelligence Centre (MSTIC)
Reposted by Thomas
Excellent work by Mandiant and crew! Great blog!
🔥 new blog detailing 0day exploitation of Ivanti appliances as well as some newly observed malware families tracked as PHASEJAM and DRYHOOK. We also detail activity related to the previously observed SPAWN* malware ecosystem tied to China-nexus cluster UNC5337.
cloud.google.com/blog/topics/...
cloud.google.com/blog/topics/...
Ivanti Connect Secure VPN Targeted in New Zero-Day Exploitation | Google Cloud Blog
Zero-day exploitation of Ivanti Connect Secure VPN vulnerabilities since as far back as December 2024.
cloud.google.com
January 9, 2025 at 12:05 PM
Excellent work by Mandiant and crew! Great blog!
MSTIC hiring in the UK - Senior TI Analyst (up to 100% remote) and Threat Intel Analyst (up to 50% remote)
jobs.careers.microsoft.com/global/en/jo...
jobs.careers.microsoft.com/global/en/jo...
jobs.careers.microsoft.com/global/en/jo...
jobs.careers.microsoft.com/global/en/jo...
Search Jobs | Microsoft Careers
jobs.careers.microsoft.com
January 8, 2025 at 10:17 AM
MSTIC hiring in the UK - Senior TI Analyst (up to 100% remote) and Threat Intel Analyst (up to 50% remote)
jobs.careers.microsoft.com/global/en/jo...
jobs.careers.microsoft.com/global/en/jo...
jobs.careers.microsoft.com/global/en/jo...
jobs.careers.microsoft.com/global/en/jo...
Reposted by Thomas
MSTIC is hiring! Current roles in US and AU.
The Microsoft Threat Intelligence Center (MSTIC) is recruiting experienced nation-state threat hunters with highly honed threat intel analysis skills. MSTIC is responsible for delivering timely threat intelligence across our product & services teams.
The Microsoft Threat Intelligence Center (MSTIC) is recruiting experienced nation-state threat hunters with highly honed threat intel analysis skills. MSTIC is responsible for delivering timely threat intelligence across our product & services teams.
December 5, 2024 at 6:22 PM
MSTIC is hiring! Current roles in US and AU.
The Microsoft Threat Intelligence Center (MSTIC) is recruiting experienced nation-state threat hunters with highly honed threat intel analysis skills. MSTIC is responsible for delivering timely threat intelligence across our product & services teams.
The Microsoft Threat Intelligence Center (MSTIC) is recruiting experienced nation-state threat hunters with highly honed threat intel analysis skills. MSTIC is responsible for delivering timely threat intelligence across our product & services teams.
Reposted by Thomas
Excellent work by the team!
Another fascinating example of Secret Blizzard using “the tools/infrastructure of at least six other threat actors during the past seven years”
Another fascinating example of Secret Blizzard using “the tools/infrastructure of at least six other threat actors during the past seven years”
www.microsoft.com/en-us/securi...
Based on both Microsoft Threat Intel findings and governments and other sec vendors, we assess that the Russian nation-state actor tracked as Secret Blizzard has used the tools and infrastructure of at least six other threat actors during the past seven years.
Based on both Microsoft Threat Intel findings and governments and other sec vendors, we assess that the Russian nation-state actor tracked as Secret Blizzard has used the tools and infrastructure of at least six other threat actors during the past seven years.
Frequent freeloader part I: Secret Blizzard compromising Storm-0156 infrastructure for espionage | Microsoft Security Blog
Microsoft has observed Secret Blizzard compromising the infrastructure and backdoors of the Pakistan-based threat actor we track as Storm-0156 for espionage against the Afghanistan government and Indi...
www.microsoft.com
December 5, 2024 at 12:22 AM
Excellent work by the team!
Another fascinating example of Secret Blizzard using “the tools/infrastructure of at least six other threat actors during the past seven years”
Another fascinating example of Secret Blizzard using “the tools/infrastructure of at least six other threat actors during the past seven years”
Reposted by Thomas
MSTIC is hiring! Come join our team focused on tracking and disrupting threats to Microsoft and our customers!
jobs.careers.microsoft.com/global/en/sh...
jobs.careers.microsoft.com/global/en/sh...
Senior Security Researcher in Redmond, Washington, United States | Security Engineering at Microsoft
Apply for Senior Security Researcher in Redmond, Washington, United States | Security Engineering at Microsoft
jobs.careers.microsoft.com
November 15, 2024 at 2:41 AM
MSTIC is hiring! Come join our team focused on tracking and disrupting threats to Microsoft and our customers!
jobs.careers.microsoft.com/global/en/sh...
jobs.careers.microsoft.com/global/en/sh...