Same username, probably same “hey I’m hiring” and “here are words about vulnerabilities” posts over at

RT @Horse_ebooks: Everything happens so much

RT @stephenfewer: Great analysis from @the_emmons on the recent SonicWall VPN auth bypass. Hijacking an active client SSL VPN connection is…

"Nobody is going to patch the printers anyway." —@Percent_X saying the quiet part out loud on a call 😭

RT @the_emmons: The Rapid7 ETR team just published an analysis of CVE-2024-53704, a SonicWall VPN authentication bypass that was announced…

RT @ShyBucketGetter: I’d never want the Chinese to get my data. They’d use it to exploit me. That’s why I trust it only with the least expl…

RT @mubix: Job opening on my team for a Lead Red Team role:

Rapid7 MDR has observed CVE-2024-55591 threat activity from known TA IPs, but so far this has been consistent with reconnaissance, not exploitation. We have not linked a CVE to the data dump, but Kevin Beaumont notes possible link to CVE-2022-40684

RT @catc0n: Rapid7's vulnerability research team is hiring a manager in Dublin, IE to run external CVD, shepherd new 0day research, and lea…

Nice Google blog with threat intel — note the anti-forensics actions taken by the adversaries

New Ivanti Connect Secure 0day — I'm sure we'll see Mandiant and MSTIC write-ups on whatever campaign/actor was using CVE-2025-0282 shortly.

Naturally the link is now different 😂 Correct one:

RT @stephenfewer: We now have a @metasploit RCE exploit module in the pull queue for CVE-2024-55956 - an unauthenticated file write vulnera…

RT @stephenfewer: Fantastic opportunity to join the @rapid7 vuln research team in a manager role🚀

Rapid7's vulnerability research team is hiring a manager in Dublin, IE to run external CVD, shepherd new 0day research, and lead a small team of exceptionally skilled folks who are uncovering new forms of risk:

No, Apache Struts CVE-2024-53677 isn't being "actively exploited" to actually compromise production systems. Stop it. You know better. And if you don't, stop saying words on the internet. There are real threats to prioritize.

TL;DR = evangelizing or even installing security tech for loved ones isn't enough. You've gotta show them how to use those technologies, prove they can work for even non-tech-savvy folks, and help them practice to build confidence and trust.

It's been a week, so this is a bit belated, but @rapid7 released a round-up of threat statistics for 2024, with data on most active ransomware groups, most common malware our SOC observed, and notable CVEs.

@Sujeet @rapid7 @AttackerKb Thanks for the boost! We're hoping orgs can start looking at / interpreting guidance correctly ASAP. Totally get the confusion on this one based on incorrect public info.

RT @rapid7: In 2024, our teams responded to 100s of major incidents, vulnerabilities, & ransomware threats — all bolstered by visibility in…