English
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어
_matt_kennedy's profile picture. Manager at Microsoft Threat Intelligence Center. Adjunct Faculty at Georgetown University. Penn State Alum. Tweets are my own.

Matthew Kennedy

@_matt_kennedy

Manager at Microsoft Threat Intelligence Center. Adjunct Faculty at Georgetown University. Penn State Alum. Tweets are my own.

102Posts 372Followers 219Following
You might like
Matthew Kennedy reposted
MalwareRE's profile picture.
Ramin Nafisi
@MalwareRE
Jun 27

Today, Microsoft Threat Intelligence Center (#MSTIC) is excited to announce the release of #RIFT, a tool designed to assist software/malware analysts automate the identification of attacker-written code within Rust binaries. Blog: microsoft.com/en-us/security… Tool:…

MalwareRE's tweet card. As threat actors are adopting Rust for malware development, RIFT, an open-source tool, helps reverse engineers analyze Rust malware, solving challenges in the security industry.
Unveiling RIFT: Enhancing Rust malware analysis through pattern matching | Microsoft Security Blog
Source: microsoft.com
This post is unavailable.
0
58
167
79
27K
Matthew Kennedy reposted
MsftSecIntel's profile picture.
Microsoft Threat Intelligence
@MsftSecIntel
Nov 22, 2024

At @CYBERWARCON, Microsoft is sharing research on North Korean threat actors who steal cryptocurrency and target satellite & weapons systems orgs, as well as details on intelligence collection operations by Chinese threat actor Storm-2077. Learn more: msft.it/6016Wvv28

MsftSecIntel's tweet card. At CYBERWARCON 2024, Microsoft Threat Intelligence analysts will share research and insights on North Korean and Chinese threat actors representing years of threat actor tracking, infrastructure...
Microsoft shares latest intelligence on North Korean and Chinese threat actors at CYBERWARCON |...
Source: microsoft.com
0
46
89
20
10K
_matt_kennedy's profile picture.
Matthew Kennedy
 @_matt_kennedy
Nov 16, 2024

One of the most fascinating aspects of following DPRK threat actors is observing leading indicators from numerous intrusion sets target the same technologies months before an announcement.

axios's profile picture. Smart Brevity worthy of people's time, attention and trust. Subscribe to our newsletters: https://t.co/uMitaJHEA1
Axios
 @axios
Nov 15, 2024

North Korea orders mass production of exploding drones trib.al/cHIzAPI

axios's tweet card. It comes on the heels of North Korea deploying troops to fight in Russia's war against Ukraine.
North Korea orders mass production of exploding drones
Source: axios.com
3
7
16
3
16K
1
3
14
4
2K
Matthew Kennedy reposted
ItsReallyNick's profile picture.
Nick Carr
@ItsReallyNick
Aug 21, 2024

Mandatory multi-factor auth for all of these services is going to make things significantly harder for threat actors to conduct intrusions. This will raise the resource cost significantly – and reduce success rate – for malicious infrastructure & service abuse in Azure.…

ItsReallyNick's profile picture. Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA
Nick Carr
@ItsReallyNick
Aug 21, 2024

🚨 Mandatory multi-factor authentication • MFA Phase 1 (Oct 2024): Azure portal, Entra admin center, and Intune admin center. • MFA Phase 2 (early 2025): gradual enforcement for Azure CLI, Azure PowerShell, Azure mobile app, and Infrastructure as Code (IaC) tools 📩…

3
9
40
11
29K
3
22
80
11
30K
Matthew Kennedy reposted
KC7cyber's profile picture.
KC7 - Cyber detective game
 @KC7cyber
Aug 7, 2024

We out here! Come find us!

KC7cyber's tweet image. We out here! Come find us!
0
5
45
0
3K
Matthew Kennedy reposted
cglyer's profile picture.
Christopher Glyer
@cglyer
Jul 19, 2024

🧵on the ongoing outage caused by Crowdstrike content update. Insights here mostly based on my time working on/helping build a competitor product Mandiant Intelligent Response\HX First & foremost this sucks for both Crowdstrike & their customers - no one wants to see this happen

5
71
209
136
64K
_matt_kennedy's profile picture.
Matthew Kennedy
 @_matt_kennedy
May 28, 2024

It's not every day you get to lead in defining a new DPRK threat actor. A big congrats to the team that worked on this! "Moonstone Sleet’s diverse set of tactics is notable... because of how they have evolved from those of several other North Korean threat actors over many years"

MsftSecIntel's profile picture. We are Microsoft's global network of security experts. Follow for security research and threat intelligence.
Microsoft Threat Intelligence
@MsftSecIntel
May 28, 2024

Microsoft has identified a new North Korean threat actor, Moonstone Sleet (Storm-1789), that combines many tried-and-true techniques used by other North Korean threat actors with unique attack methodologies for financial and cyberespionage objectives. msft.it/6017Ygsud

MsftSecIntel's tweet card. Microsoft has identified a new North Korean threat actor, now tracked as Moonstone Sleet (formerly Storm-1789), that combines many tried-and-true techniques used by other North Korean threat actors,...
Moonstone Sleet emerges as new North Korean threat actor with new bag of tricks | Microsoft...
Source: microsoft.com
3
103
217
45
39K
0
4
24
1
2K
Matthew Kennedy reposted
MsftSecIntel's profile picture.
Microsoft Threat Intelligence
@MsftSecIntel
May 28, 2024

Microsoft has identified a new North Korean threat actor, Moonstone Sleet (Storm-1789), that combines many tried-and-true techniques used by other North Korean threat actors with unique attack methodologies for financial and cyberespionage objectives. msft.it/6017Ygsud

MsftSecIntel's tweet card. Microsoft has identified a new North Korean threat actor, now tracked as Moonstone Sleet (formerly Storm-1789), that combines many tried-and-true techniques used by other North Korean threat actors,...
Moonstone Sleet emerges as new North Korean threat actor with new bag of tricks | Microsoft...
Source: microsoft.com
3
103
217
45
39K
Matthew Kennedy reposted
greglesnewich's profile picture.
Greg Lesnewich
 @greglesnewich
Apr 16, 2024

New piece on TA427 (overlaps with Emerald Sleet, APT43, the K-word) 🇰🇵🇰🇵 Lots of benign email conversations to gather strategic information from NGOs, think tanks, and academics in the DPRK research space 📧📮 DMARC, typosquats, and solicitation oh my! proofpoint.com/us/blog/threat…

greglesnewich's tweet card. Key takeaways   TA427 regularly engages in benign conversation starter campaigns to establish contact with targets for long-term exchanges of information on topics of strategic
From Social Engineering to DMARC Abuse: TA427’s Art of Information Gathering  | Proofpoint US
Source: proofpoint.com
2
42
98
24
11K
Matthew Kennedy reposted
modubyk's profile picture.
Max Dubyk
 @modubyk
Feb 22, 2024

Pfizer's Cyber Threat Analysis and Response team is hiring a Cyber Intrusion Analyst ! Come join a team of curious and passionate defenders with a critical mission. This is a hybrid role based in the Philadelphia area. pfizer.wd1.myworkdayjobs.com/PfizerCareers/…

0
3
6
0
443
Matthew Kennedy reposted
bkMSFT's profile picture.
bk (Ben Koehl)
@bkMSFT
Feb 2, 2024

MSTIC is looking for a cleared Senior Threat Intelligence Analyst in Australia (CBR). This is an exciting opportunity to make a tangible difference in combating Nation State, ransomware threats, and more. Day to day you'll be working with peers around the world tracking and…

0
10
31
5
7K
Matthew Kennedy reposted
MalwareRE's profile picture.
Ramin Nafisi
@MalwareRE
Feb 1, 2024

MSTIC is looking for Senior Security Researchers (Malware Reverse Engineers) in the US and Australia to join our MSTIC-RE team. This is an exciting opportunity to make a tangible difference in combating Nation State (NS/APT/DHA) and ransomware threats. jobs.careers.microsoft.com/global/en/job/…

0
41
90
14
97K
Matthew Kennedy reposted
MsftSecIntel's profile picture.
Microsoft Threat Intelligence
@MsftSecIntel
Jan 31, 2024

Listen to Microsoft Threat Intelligence analysts @Greg_Schloemer & @_matt_kennedy discuss with @sherrod_im what makes the North Korean threat landscape unique, and how actors persistently abuse chains of trust to generate revenue for the regime: msft.it/6019i0kBF

MsftSecIntel's tweet card. On this week's episode of The Microsoft Threat Intelligence Podcast, Sherrod DeGrippo is joined by Greg Schloemer and Matthew Kennedy. Sherrod, Greg, and Matthew discuss North Korean cyber operatio...
North Korea Threat Landscape Update
Source: thecyberwire.com
0
49
107
24
18K
_matt_kennedy's profile picture.
Matthew Kennedy
 @_matt_kennedy
Jan 24, 2024

This was a blast! Loved chatting all things North Korea cyber operations with @sherrod_im and @Greg_Schloemer!

sherrod_im's profile picture. Host of THE Microsoft Threat Intelligence Podcast. I like tracking crime actors. Infosec is my passion.
💻 Sherrod DeGrippo 🛸
 @sherrod_im
Jan 24, 2024

THE Microsoft Threat Intelligence podcast. 🇰🇵Special request DPRK episode! 🇰🇵 Greg and Matthew discuss North Korean cyber operations, highlighting the unique aspects that set North Korea apart, emphasizing North Korea's persistence and adaptability.🫡 podcasts.apple.com/us/podcast/mic…

5
26
86
19
10K
0
1
12
0
789
likethecoins's profile picture. Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @likethecoins@infosec.exchange

Katie Nickels

@likethecoins
JohnHultquist's profile picture. Chief Analyst, Google Threat Intelligence Group. @CYBERWARCON and @SLEUTHCON founder. Johns Hopkins professor. Army vet.

John Hultquist

@JohnHultquist
cyb3rops's profile picture. Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim

Florian Roth ⚡️

@cyb3rops
CristinGoodwin's profile picture. Founder, Advanced Cyber Law & Advancing Cyber, former Assoc. GC & GM, Cybersecurity @ MSFT. I ❤️ incident response, threat intel, & skiing. @Cristin.bsky.social

Cristin Flynn Goodwin

@CristinGoodwin
MsftSecIntel's profile picture. We are Microsoft's global network of security experts. Follow for security research and threat intelligence.

Microsoft Threat Intelligence

@MsftSecIntel
ItsReallyNick's profile picture. Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA

Nick Carr

@ItsReallyNick
sherrod_im's profile picture. Host of THE Microsoft Threat Intelligence Podcast. I like tracking crime actors. Infosec is my passion.

💻 Sherrod DeGrippo 🛸

@sherrod_im
SwiftOnSecurity's profile picture. computer security person. former helpdesk.

SwiftOnSecurity

@SwiftOnSecurity
blackorbird's profile picture. Peace and Love. Just Analysis/Hunter/Youtuber/AiCoder/Entrepreneur/. #APT #threatIntelligence #Exploit #CTI #meme #cyber #hacker #OSINT #Ai Need Remote Job

blackorbird

@blackorbird
KimZetter's profile picture. Journalist - cyber/national security. Author - COUNTDOWN TO ZERO DAY: Stuxnet and the Launch of the World's First Digital Weapon. https://t.co/334DzfSL1f

Kim Zetter

@KimZetter
jfslowik's profile picture. CTI, OT/ICS, DE&TH, and related infosec content. Oh, and memes. And shitposting. Lots of shitposting.

Joe Słowik 🌻

@jfslowik
MalwareJake's profile picture. Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him

Jake Williams

@MalwareJake
markpars0ns's profile picture. Threat Analyst @ Microsoft - mostly tweet about astrophotography and occasional some work. Tweets are my own

Mark Parsons

@markpars0ns
thechrisharrod's profile picture. Personal account — Manager of Security Operations for the United States House of Representatives

Chris Harrod

@thechrisharrod
C_C_Krebs's profile picture.

Chris Krebs

@C_C_Krebs
klrgrz's profile picture. Christian. Killer Grizz, Threat Intel & Thrunter. Hack things w/ @bsides_nova. @DEFCON Contests Dept Lead & Black Badge DC32. GSE #344. (VIEWS ARE MY OWN).

Andy Piazza

@klrgrz
chrissanders88's profile picture. Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM

Chris Sanders 🔎 🧠

@chrissanders88
a_greenberg's profile picture. WIRED writer, author of SANDWORM and now TRACERS IN THE DARK: The Global Hunt for the Crime Lords of Cryptocurrency. Andy.01 on Signal. agreenberg@wired.com

Andy Greenberg (@agreenberg at the other places)

@a_greenberg
bryceabdo's profile picture. 🐗 🦅 🎯 Research & Discovery @ Google/Mandiant

Bryce

@bryceabdo
DAlperovitch's profile picture. Geopolitics/NatSec, Russia, China, Cyber. Chairman @SilveradoPolicy; Author WorldOnTheBrink; Host @GeopolDecanted; Founder @alperovitch; Co-Founder @CrowdStrike

Dmitri Alperovitch

@DAlperovitch
linuxisp's profile picture. Threat Analyst @ Microsoft Threat Intelligence Center #MSTIC | previously UK Gov and Zycomm/W3Z | IPv6 nerd | Ham M0DMF | Views my own.

Charles Price

@linuxisp
swat_cyber's profile picture. Threat Intelligence Instructor. She/her. Using Twitter discourse to sound smart at work. #cti #infosec #cyber swat_cyber@ioc.exchange

Sarah Kalevra

@swat_cyber
mikehorka's profile picture. Cyber Forensicator, Incident Responder, Programmer

Mike

@mikehorka
troyhunt's profile picture. Creator of @haveibeenpwned. Microsoft Regional Director. Pluralsight author. Online security, technology and “The Cloud”. Australian.

Troy Hunt

@troyhunt
malwareforme's profile picture. Security researcher

Jack

@malwareforme
kausrini's profile picture. Reverse Engineering | Threat Intel | DFIR | Captcha verified human with own opinions (not employer's). @kausrini@infosec.exchange

Kaushik

@kausrini
woanware's profile picture. Principal Security Researcher @ Microsoft (MSTIC). Software development, detections, security and DFIR. Thought/opinions are mine, not those of my employer.

woanware

@woanware
KC7cyber's profile picture. The free cyber detective game. Investigate realistic cybersecurity intrusions in data. ⚠️ addictive

KC7 - Cyber detective game

@KC7cyber
BakedSec's profile picture. IR at LinkedIn | focused on the intersection of data science, engineering, and cybersecurity | Scooping up APT and bopping them on the head | opinions my own

Austin Baker

@BakedSec
mesa_matt's profile picture. Tweets are my own. https://t.co/fpbUvfjlXS…

Matthew Mesa

@mesa_matt
aptwhatnow's profile picture.

aptwhatnow

@aptwhatnow
LaurenLeigh522's profile picture. Intelligence Analyst. (Former) dancer. Not good at tweeting but love reading and liking tweets from others! Views are mine not my employer’s.

Lauren Leigh

@LaurenLeigh522
invisig0th's profile picture. Founder @vtxproject Father of the #APT1 Report @mandiant / @fireeye Inventor of synapse, vivisect, UNCs, imphash, ... DEFCON CTF Champion, Founder of Kenshoto

visi stark

@invisig0th
vtxproject's profile picture. On a mission to create an intelligence-driven future with Synapse.

The Vertex Project

@vtxproject
jdallman's profile picture. Microsoft Threat Intelligence. Mostly promoting work stuff & smart security people. Obsessed with good coffee & scotch. Opinions my own.

Jeremy Dallman

@jdallman
vincenttiu's profile picture. Cybersecurity @Microsoft (MSTIC) #mstic #threatintel #malware

Vincent Tiu

@vincenttiu
obnoxious4n6's profile picture. Sr. Security Research Manager @Microsoft GHOST || 👻 Threat Hunting 👻 || tryin to navigate this cyber stuff || tweets == my own

waymon

@obnoxious4n6
SLEUTHCON's profile picture. 2025 talks now available! | https://t.co/eDLUuWTyDX

SLEUTHCON

@SLEUTHCON
unpacker's profile picture. Zscaler APT Research | Formerly Kaspersky GREAT | Threat Intelligence Hustler | Tweets are my own | Keybase: @seongsupark | Mastodon: @spark@infosec.exchange

Seongsu Park

@unpacker
The_Daily_NK's profile picture. Underreported stories. Unique perspectives. From Sinuiju to Kaesong.

The Daily NK

@The_Daily_NK
snydersas's profile picture. President and CEO, Korea Economic Institute of America (KEI), a FARA registered organization funded by KIEP. All opinions are my own and RT not an endorsement.

Scott Snyder

@snydersas
LibertyinNK's profile picture. Join North Korean refugees, activists and advocates empowering change. Be an Ally today. https://t.co/alKU9U5SfX

Liberty in North Korea

@LibertyinNK
Joel_Wit38's profile picture. Former State Department official. Founder, @38NorthNK, Senior Fellow @stimsoncenter

Joel Wit

@Joel_Wit38
NKintheWorld's profile picture. An interactive website on North Korea's external economic and diplomatic relations, created by @NCNKorea and @EastWestCenter

North Korea in the World

@NKintheWorld
chadocl's profile picture. Journalist from London, based in Seoul. Founder of https://t.co/jmDY5qVkbz This is a personal account, so it’s personal views (not official company ones).

Chad O'Carroll

@chadocl
j3nnyt0wn's profile picture. Senior Fellow at @StimsonCenter; Director of Stimson Korea Program and @38NorthNK; Associate Fellow of @FPI_SAIS. Views are my own. RTs are not endorsements.

Jenny Town

@j3nnyt0wn
joshjonsmith's profile picture. @Reuters Korea Bureau Chief covering South & North Korea • Previously in Afghanistan • MA @warstudies • josh.smith@tr.com • DM for Signal • Personal account

Josh Smith

@joshjonsmith
MiaSLittle's profile picture. National Security & Crime Focused; Lusophone; sometimes political; Views = mine

Maria L

@MiaSLittle
johnnysaks130's profile picture. Cybersecurity and Intelligence Reporter at @politico. Former author of the Morning Cybersecurity newsletter. Reach me at jsakellariadis@politico.com or Signal.

John Sakellariadis

@johnnysaks130
AlanSuderman's profile picture.

Alan Suderman

@AlanSuderman
AbirGhattas's profile picture. Chief Information Officer @HRW • Feminist •🥋• @abirghattas@infosec.exchange •

Abir Ghattas

@AbirGhattas
markus_neis's profile picture. Senior Principal Threat Intelligence Researcher at Arctic Wolf Labs | Opinions are my own

markus neis

@markus_neis
ericalikestech's profile picture.

.

@ericalikestech
Big_Bad_W0lf_'s profile picture. Bad guys and Breaches with #AdvancedPractices 🦅 @Mandiant / @Google | tweets are my own

John

@Big_Bad_W0lf_
RiddellSam's profile picture. Analyst @Mandiant and @Google. Former Georgetown SSP & Ohio State Buckeye. Troll hunter, disinfo junkie. Tweets my own. https://t.co/R377IV5fi9

Sam Riddell

@RiddellSam
kyotorocks's profile picture. Threat Intelligence Manager / Reverse Engineer @ Microsoft Threat Intelligence Center (MSTIC). Tweets are my own.

Sil

@kyotorocks
greglesnewich's profile picture. great, now I'm on twitter

Greg Lesnewich

@greglesnewich
olgs7's profile picture. Director of Emerging Tech @SAISHopkins, teach disinfo/IO. Frmr @Meta IO Policy Lead/ Journalist @atlanticmedia. RT≠endorsement. Views my own. Mostly on Threads

Оlga Belogolova 🌻

@olgs7
cyrusSecurity's profile picture. Security Researcher @crowdstrike | ex @microsoft @mitrecorp | Beardown @UArizona

Cyrus

@cyrusSecurity
_John_Doyle's profile picture. Cyber threat intelligence | Mandiant | SANS FOR578 instructor | Member of @curatedintelligence | Arcane Trickster | Ex-CIA | Posts represent my personal views

InfoSecProf

@_John_Doyle
ryanaraine's profile picture. 🎧 Three Buddy Problem: https://t.co/ZGEyqy2h7g. ✍🏼 Writing: @securityweek 🗣️ Conference: @labscon_io

Ryan Naraine

@ryanaraine
DeltaTangoTwo's profile picture.

Dan Taylor

@DeltaTangoTwo
JoeHannon52's profile picture. Security researcher @ MSTIC, Microsoft https://t.co/8IO8nzNnAQ

Joe Hannon

@JoeHannon52
trk_rdy's profile picture. MSFT | My opinions are mine.

Joe

@trk_rdy
sj94356's profile picture. opinions are my own, retweets != endorsements

Sj

@sj94356
cyberdaddy247's profile picture. technical cyber leader: IR, Intel, Automation, former RE ### father, husband ### faith, family, friends

Kelsey Britton

@cyberdaddy247
KembaWalden's profile picture. former White House; former Microsoft; former DHS; always Cyber

Kemba Walden

@KembaWalden
Bing_Chris's profile picture. @propublica reporter: national security and technology. 📧: christopher.bing@propublica.org / 📞(Signal): 771-217-8550. More contact info: https://t.co/FnTdrahhi0

Chris Bing

@Bing_Chris

United States Trends

You might like

Something went wrong.


Something went wrong.