PSA for those in threat intel circles - I know an org remediating 50k systems with CrowdStrike that won’t boot, and their reaction to ‘be careful of CrowdStrike themed phishing!!1!!’ is essentially ‘our entire business is having a heart attack, phishing emails are the least of our problems’.
Always remember that InfoSec is not a business, it’s a small part of a business - nobody in the trenches gives two shits about that stuff right now, they’re more worried about their businesses cratering.
Kevin Beaumont /
npub176…fkwlw
2024-07-19 22:19:27
Author Public Key
npub176rs4lx7gjqwepgg75psfpv7zjj3xz0lyj4n7rux93ftm390sars6fkwlwSeen on
wss://relay.nostr.bandPublished at
2024-07-19 22:19:27Event JSON
{
"id": "da91af92d651b75285e670ea4d36384e5673406f788daf714483a50fdcdff3c1",
"pubkey": "f6870afcde4480ec8508f50304859e14a51309ff24ab3f0f862c52bdc4af8747",
"created_at": 1721427567,
"kind": 1,
"tags": [
[
"proxy",
"https://cyberplace.social/users/GossiTheDog/statuses/112815477094407883",
"activitypub"
]
],
"content": "PSA for those in threat intel circles - I know an org remediating 50k systems with CrowdStrike that won’t boot, and their reaction to ‘be careful of CrowdStrike themed phishing!!1!!’ is essentially ‘our entire business is having a heart attack, phishing emails are the least of our problems’. \n\nAlways remember that InfoSec is not a business, it’s a small part of a business - nobody in the trenches gives two shits about that stuff right now, they’re more worried about their businesses cratering.",
"sig": "5abf04f913827b562fd5198efbd6793e4444df28c0eb62e1ef65773e3a135eb3e5753490978ded147f93d0464301036e4632a30111464f73403a6c506d6c1c6b"
}