Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Shane Huntley Profile picture
Shane Huntley
@ShaneHuntley
🇦🇺 Sydney based security / tech guy. Google Threat Intelligence. Co-founder Threat Analysis Group (TAG). Tweets are my own not my employers.
Nov 9 9 tweets 2 min read
Kids need a better relationship with technology but the proposed ban is a perfect example of the politician's fallacy.

1. Something must be done.
2. This is something.
3. Therefore, we must do this.

The implementation challenges and 2nd order consequences are scary. (1/9) Firstly, defining "social media" is tough. Different apps have very different properties and challenges. There's no clear line between "social media" and straight up communications or educational websites. (2/9)
Feb 14 7 tweets 3 min read
Launching today our new report "Tool of First Resort: Israel-Hamas War in Cyber"



Cyber provides a lower-cost, lower-risk way for rivals to engage in conflict, gather information, disrupt daily life, and shape public perceptions. 🧵blog.google/technology/saf… The full report is here:

It contains a wealth of details on what was observed both before and after the terrorist attack on October 7th.

Three key findings:bit.ly/48iFbWy
Feb 16, 2023 7 tweets 5 min read
"Fog of War: How the Ukraine conflict Transformed the Cyber Threat Landscape"

TAG's biggest ever report. Along with @Mandiant and others from @Google we outline insights into changes in the cyber threat landscape triggered by the war.

blog.google/threat-analysi… 1/7 The full 27 page report on government backed attacks, information operations and involvement of the cybercrime ecosystem in the Ukraine conflict is here: services.google.com/fh/files/blogs…

Some quick highlights though:

2/7
May 25, 2022 4 tweets 2 min read
Article on latest Russian efforts.

The "English Coop" website was linked to what the Google knew as "Cold River," a Russia-based hacking group. We're able to see that through technical indicators.

reuters.com/technology/exc… COLDRIVER is a Russian-based threat actor sometimes referred to as Callisto, that @billyleonard reported previously as attempting credential phishing. This is the first time we've seen them step into the disinformation / hack & leak space.

blog.google/threat-analysi…
Jan 26, 2021 4 tweets 1 min read
New blog post from TAG with details of a North Korean campaign targeting security researchers working on vulnerability research and development.

blog.google/threat-analysi…

Stay safe out there everyone! In one part of the attack the actors would ask the targeted researcher if they wanted to collaborate on vulnerability research together, and then provide the researcher with a Visual Studio Project containing malware.
Jul 22, 2018 5 tweets 1 min read
2FA is super important but please, please stop telling people that by itself it will protect people from being phished by the Russians or governments. If attacker can trick users for a password, they can trick them for a 6 digit code. 2FA will protect you against you against other important attacks such as password being stolen from one site and used on another, or passwords databases being compromised. But any 2FA system that involves the user entering a code is phishable.