Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Glenn Mallo Profile picture
@Glenn_Mallo
Sep 9 β€’ 13 tweets β€’ 1 min read β€’ Read on X
🚨 Most breaches don’t start with zero-days.
They start with simple misconfigurations.
NSA + CISA’s Top 10 offenders πŸ‘‡
#CyberTuesday 🧡
1️⃣ Default settings left in place = handing out spare keys.
Fix: Change defaults, disable unused accounts.
2️⃣ Privilege creep β€” too many admin rights, not enough oversight.
Fix: Enforce least privilege.
3️⃣ No internal monitoring. If your logs don’t talk, attackers walk right in.
Fix: Enable & review logs.
4️⃣ Flat networks β€” one breach = full access.
Fix: Segment your network.
5️⃣ Patch delays. Waiting months = attacker’s playground.
Fix: Patch promptly, automate updates.
6️⃣ Access control workarounds. β€œJust this once” = shadow IT.
Fix: Enforce MFA + RBAC.
7️⃣ Weak MFA configs. SMS MFA can be phished.
Fix: Use phishing-resistant MFA (FIDO2, PKI).
8️⃣ Open network shares. Anyone can see everything.
Fix: Tighten ACLs.
9️⃣ Poor credential hygiene. Weak/reused passwords = free entry.
Fix: Password managers + rotation.
πŸ”Ÿ Unrestricted code execution. Letting anything run anywhere = chaos.
Fix: Application allow-listing.
πŸ’‘ NIST 800-171 call these out.
Misconfigs = not just operational risk, but compliance gaps.

Which one do you see most in the wild? πŸ‘‡

Full list + fixes here:


#Cybersecurity #NIST #BuildQualityIncsoonline.com/article/362370…
@threadreaderapp please unroll

β€’ β€’ β€’

Missing some Tweet in this thread? You can try to force a refresh
γ€€

Keep Current with Glenn Mallo

Glenn Mallo Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @Glenn_Mallo

Glenn Mallo Profile picture
Aug 9
πŸŽ–οΈ 83 Years Ago Today: The Nightmare of Savo Island (1/4) 🧡
On August 9, 1942, the Battle of Savo Island was a brutal wake-up call.

In Neptune’s Inferno, James D. Hornfischer recounts: "a swift accumulation of errors,'" with "fear of using sensors and communications... widespread." Surprise long-range Lance torpedoes ravaged Allied cruisersβ€”USS Quincy, Astoria, Vincennes, and HMAS Canberraβ€”in just 32 minutes, claiming over 1,000 lives.Image
πŸŽ–οΈ (2/4)
Survivors on Astoria witnessed horror: "I know I wasn’t the only one... who noticed our shipmate’s body slowly shrinking as the flames consumed it... a funeral pyre seemed symbolically appropriate."

Yet, as Hornfischer notes, the defeat "shook the Navy to its core but planted the seeds for its eventual mastery of the Pacific." This lesson in readiness turned the tide in the Pacific.Image
πŸŽ–οΈ (3/4)
Fast-forward to 2025: China's navy, with over 370 warships surpassing our 232, threatens $1.4T in U.S. trade routesβ€”vital chokepoints since ancient times.

A CSIS report warns China could endure 52 ship losses to our 7-20 and still dominate. History demands action: Invest in tech, alliances like AUKUS, and a fleet ready for all fights.Image
Read 5 tweets
Glenn Mallo Profile picture
Jan 15, 2023
β€œπ‘‡β„Žπ‘’ π‘…π‘–π‘‘π‘’π‘Ÿ π‘œπ‘› π‘‘β„Žπ‘’ π‘ƒπ‘Žπ‘™π‘’ π»π‘œπ‘Ÿπ‘ π‘’ π‘Ÿπ‘œπ‘‘π‘’ 𝑒𝑝 π‘‘β„Žπ‘’ π‘ β„Žπ‘–π‘π‘  π‘€π‘Žπ‘˜π‘’ π‘Žπ‘›π‘‘ π‘–π‘›π‘‘π‘œ π‘‘β„Žπ‘’ π‘ π‘šπ‘œπ‘˜π‘’ π‘Žπ‘›π‘‘ π‘“π‘™π‘Žπ‘šπ‘’ π‘Žπ‘”π‘Žπ‘–π‘›. π‘‡β„Žπ‘’ π‘β„Žπ‘Žπ‘Ÿπ‘”π‘’π‘Ÿ π‘‘π‘Ÿπ‘–π‘’π‘‘ π‘‘π‘œ π‘π‘Ÿπ‘’π‘Žπ‘˜ π‘“π‘Ÿπ‘’π‘’ π‘Žπ‘›π‘‘ π‘Ÿπ‘’π‘› π‘‘β„Žπ‘Ÿπ‘œπ‘’π‘”β„Ž π‘‘β„Žπ‘’ π‘šπ‘’π‘› π‘œπ‘› π‘‘π‘’π‘π‘˜ 𝑏𝑒𝑑…”
Got to read read the book in the very same 03-level compartments described in the opening chapters.
a.co/d/dQub4Hk
Passed on the stories when we ran drills during the workups to what became the Operation Desert Fox deployment.
Read 9 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(