Keith Pawson
LightNews LightNews
winnetworks.com
Keith Pawson
@winnetworks.com
38 followers 140 following 7 posts
Posts Replies Media Videos
Reposted by Keith Pawson
patrickcmiller.bsky.social
AI Summarization Optimization www.schneier.com/blog/archive...
AI Summarization Optimization - Schneier on Security
These days, the most important meeting attendee isn’t a person: It’s the AI notetaker. This system assigns action items and determines the importance of what is said. If it becomes necessary to…
www.schneier.com
November 4, 2025 at 4:12 AM
Reposted by Keith Pawson
obialik.bsky.social
That's my #WeekendReading for this week. 🧪🌊
October 24, 2025 at 7:00 AM
winnetworks.com
Few weeks ago, been waiting for another. Winter is now here though.
June 10, 2025 at 9:23 PM
Reposted by Keith Pawson
annaguirre.bsky.social
I don't want my fridge to have a camera or Wi-Fi. I don't want my dishwasher to be smart. I don't want my washing machine to text me.

In fact, I kinda miss knobs and dials and knowing big appliances would last 20 years and could still be repaired.
January 5, 2025 at 10:07 AM
Reposted by Keith Pawson
samilaiho.com
iTerm2 patches critical security flaw exposing User Input and Output
URL: nvd.nist.gov/vuln/detail/...
Classification: Critical, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv3.1: 9.3
NVD - CVE-2025-22275
nvd.nist.gov
January 4, 2025 at 8:14 AM
Reposted by Keith Pawson
merill.net
That's him. He's the one forcing us to change our passwords every 90 days.
December 21, 2024 at 5:44 PM
Reposted by Keith Pawson
merill.net
I just merged an awesome PR for 🔥 @maester.dev just now 👇

@naunheim.cloud added this test to check for gaps in your Conditional Access policies caused by someone deleting groups used in policies. #entra #infosec

😘
MT.1038: Conditional Access policies should not include or exclude deleted groups. This test checks if there are any Conditional Access policies that target deleted security groups. This usually happens when a group is deleted but is still referenced in a Conditional Access policy. Deleted groups in your policy can lead to unexpected gaps. This may result in Conditional Access policies not being applied to the users you intended or the policy not being applied at all. To fix this issue: Open the impacted Conditional access policy. If the group is no longer needed, click Save to remove the referenced group from the policy. If the group is still needed, update the policy to target a valid group.
December 6, 2024 at 1:52 AM
Reposted by Keith Pawson
jjx.therealjj.com
YES attackers hopped through 3 orgs to get to the target network via Wi-Fi. And NO- adding MFA to Wi-Fi is NOT the answer! 🤦‍♀️
Consider-
☑️ Cert-based auth
☑️ Adv policies w/NAC
☑️ TEAP for cred chaining 💓
☑️ Shifting to ZT
Should I host a webinar to discuss?

www.darkreading.com/cyberattacks...
Fancy Bear 'Nearest Neighbor' Attack Uses Nearby Wi-Fi Network
In a "new class of attack," the Russian APT breached a target in Washington, DC, by credential-stuffing wireless networks in close proximity to it and daisy-chaining a vector together in a r...
www.darkreading.com
November 26, 2024 at 10:59 PM
Reposted by Keith Pawson
grahamcluley.com
A security researcher has blamed misconfigured implementations of Microsoft Power Pages for a slew of data breaches from web portals - including the leak of 1.1 million NHS employee records.
Data leaks from websites built on Microsoft Power Pages, including 1.1 million NHS records
A security researcher has blamed misconfigured implementations of Microsoft Power Pages for a slew of data breaches from web portals - including the leak of 1.
www.bitdefender.com
November 26, 2024 at 3:28 PM
Reposted by Keith Pawson
merill.net
Want to get rid of reposts on Bluesky? It already exists. 👇

Here's a custom feed that shows posts from people you follow without reposts and replies

bsky.app/profile/did:...

Pin it and you switch to this when you only want to see posts.
tiny.baby tinybaby @tiny.baby · Nov 26
the #1 feature on my wishlist for this place is "turn off retweets"
November 26, 2024 at 5:42 AM
Reposted by Keith Pawson
merill.net
⚡ Check out this new Microsoft Entra blog post 👇

Defeating Adversary-in-the-Middle phishing attacks

https://buff.ly/3Z44Y3A.comhttps://buff.ly/3Z44Y3A.com/discussions/Identity/defeating-adversary-in-the-middle-phishing-attacks/1751777
Defeating Adversary-in-the-Middle phishing attacks | Microsoft Community Hub
Welcome to the second in our series of articles on dealing with advanced identity-related attacks.  As we’ve crossed the threshold of more than 40% of...
techcommunity.microsoft.com
November 18, 2024 at 5:00 PM
Reposted by Keith Pawson
smashingsecurity.com
Here's the low-down on episode 393 of the "Smashing Security" podcast:

Arion Kurtaj, a teenager from the UK, amassed a fortune through audacious cybercrimes. From stealing Grand Theft Auto 6 secrets to erasing Brazil’s COVID vaccination data...

open.spotify.com/episode/7Lxx...

🧵
Who needs a laptop to hack when you have a Firestick?
Smashing Security · Episode
open.spotify.com
November 15, 2024 at 7:36 AM
Reposted by Keith Pawson
merill.net
Have you checked out this week's Entra newsletter?

Read at entra.news/p/entra-n...
Entra 🆔 News #70 → This week in Microsoft Entra Dive into the new Microsoft Zero Trust Workshop 🛡️, explore Entra ID Governance tailored for government 🏛️, connect with the growing Microsoft community on 🦋 Bluesky and more!
November 14, 2024 at 6:11 AM
Reposted by Keith Pawson
merill.net
Must follow if you are in cybersec 👇
bsky.ethicalthreat.com Spencer Alessi @bsky.ethicalthreat.com · Nov 13
📌Follow me if you’d like to see content from me about:

cybersecurity, infosec, pentesting, assume breach, Active Directory, PowerShell, occasional memes, occasional t-shirt and sticker drops

Ethos: spirit of a hacker heart of a defender

I post to provide value, I hope I deliver on that for you!
November 13, 2024 at 5:27 AM
Reposted by Keith Pawson
engineers.bsky.social
On November 12, 1980 – The NASA space probe Voyager I makes its closest approach to Saturn and takes the first images of its rings.
November 12, 2024 at 1:20 PM