Monday was my last day as
@anduriltech
’s CIO, almost 4 yrs after I started as its first security engineer. Proud of the team of hitters that will carry the org forward in my absence.
I’m a builder at heart, and with some SpaceX friends and VCs in tow, to building I return. LFG
I’m looking for AI / ML engineers interested in working at the intersection of generative AI and cyber defense. Especially those with evolutionary / genetic computing experience.
We are Anduril / SpaceX alumni backed by Tier 1 VCs and you will be employee number 4.
LFG.
Thinking through multi-agent AI architectures that need to make autonomous decisions together. May need a consensus mechanism powered by a decentralized and immutable data stru….oh no….no no no…
Lessons here for those working with sensitive trade secrets.
> No amount of compliance is going to save you against the CCP. Get to actual work.
> Disable personal cloud storage and iCloud. Work stays on work infra.
> Telemetry + analysis at the edge is critical. See next post.
If you're a Gundo defense tech company and have upcoming work with USG or DOD, I will - for free - walk you through getting your cyber compliance in order, so you don't make the same mistakes I made
@mttgrmm
suffer through. DMs open.
There is a certain class of IT engineer you can tell to HALO jump into the arctic to setup infrastructure, and they’ll give you a wordless nod and 24 hours later people in igloos are watching Netflix. A rare gift of a human.
“We don’t do Elon-type mandates” is populist kayfabe. Everyone secretly desires Apollo 13 we-need-to-make-this-work-with-this-using-nothing-but-that moments.
This is funny to me because I’ve interviewed at a few startups made up of mostly SpaceX alums and they’ve all listed “no crazy Elon mandates” as an upside of working there … but that seems to be the secret sauce
The
@USArmy
has awarded Palantir a prime agreement for the Prototype Maturation Phase of the Tactical Intelligence Targeting Access Node (TITAN). As the Army’s first AI-defined vehicle, TITAN is a milestone capability for America’s warfighters.
Learn more:
.
@FilArons
was gracious enough to show me the demo. Not only is it the obvious future of manufacturing software - he's also just an overall awesome dude.
Exciting News! After months in stealth, we're introducing Dirac's BuildOS - the first AUTOMATED Work Instruction platform.
It's time to change the way manufacturing engineers draft work instructions.
Get access to BuildOS here:
1/9
The veteran VC community is just the best. Thirty seconds of social proofing through an indecipherable-to-civilians exchange of task force colors, numbers, or units usually followed by "hell yeah brother - whatcha building..."
Deeply appreciative of the barrage of inbound interest regarding the new company. Please bear with me while I work through all the messages. Candidates - psyched to speak with you. Investors - please note our round is closed but would love to get to know you anyway. Thanks!
The number of U.S. Servicemembers that were Injured last night during the Drone Attack on the Tower 22 Patrol and Operations Base in Northeastern Jordan has now Risen from 25 to 34, with a Majority being Evaluated for Traumatic Brain Injuries (TBIs).
So I want to talk real quick about the recent announcements from OpenAI.
Without hyperbole, I think what they announced represent both the greatest boon for business and the biggest problem for security that we’ve seen injected in a single day in many decades.
There were many
Anyone breathlessly extolling defense tech investments - please read this excellent thread for a dose of what your founders are in for when navigating defense acquisition bureaucracy.
@anduriltech
and
@SpaceX
have proven it’s possible, not easy.
1/Worthy of a much longer and more detailed storm in the future BUT one of the core reasons defense tech is soooo hard is that you need to find three different product market fits instead of one.
> This person's behavior (Notes -> PDF -> GDrive) left a trail on MacOS that you don't need fancy tools to detect. In this case, a cupsd process followed by CGPDFService followed by a connection Google Drive.
> Is that normal for your org? Maybe. Maybe not. Someone should know.
Flying from SF to LA and spotted the DZ near Monterey I would jump at on the weekends while going to DLI as a young Staff Sergeant. Would make a few bucks driving the bus to retrieve the tandems every now and again between jumps. Simpler times.
Big lesson for me scaling Infosec
@anduriltech
through hypergrowth was although units of work grew linearly or sub-linearly, the complexity of each unit grew exponentially. Ideally I should have optimized the department early on to be a complexity-killing machine.
A massive counteroffensive to TikTok is needed immediately, and every federal institution postured to do it is asleep at the wheel. Best they wake up, for all our sake.
> All the "zero trust" controls in the world didn't save Google from this dude. Your org's network is a living organism and it is impossible to detect weak points unless you put it through constant stimulus / response cycles that model possible threats.
@JoshuaSteinman
Every time I realized this in the military it was like “are you shitting me” and then we got on with the job. Whenever I doubt that SOF service prepares anyone for startup life I am reminded of this.
@subTee
.
@subtee
- looks to be detectable by creating a Sysmon 10 include rule such that GrantedAccess covers 0x1F0FFF through 0x1FFFF. The resulting Sysmon 10s indicate csrss as the source image along with a couple of conhost threads. Legit spawns have the actual source image.
> Yes your execs (and everyone) will complain when you want to shut off stuff like personal file storage. Convey the ROI, enable them to make a risk-based decision for the business, then either execute or develop compensating controls. Don't be that security neckbeard.
A case study in why internal applications - especially those that meld atoms and bits - must be treated as first-class citizens subject to the same antifragility standards as customer facing systems.
Anduril has prohibited TikTok/ByteDance from all devices used to access Anduril systems, including personal devices.
Two reasons:
1) The No TikTok on Government Devices Act requires this of defense contractors. It should have gone further.
2) TikTok is nation-state warfare.
@oyhsu
This is why at Anduril I named the internal tools and applications teams Arsenal and gave them the mission of powering the internal arsenal that builds the real one.
If you're a Gundo defense tech company and have upcoming work with USG or DOD, I will - for free - walk you through getting your cyber compliance in order, so you don't make the same mistakes I made
@mttgrmm
suffer through. DMs open.
11. Daily remembrance rituals. Everyone at
@SpaceX
walks past a mural in the mess hall depicting Mars going through terraforming cycles, culminating in a lush planet with blue ocean.
> It took 7 minutes in my testing for these logs to ship to Microsoft's cloud for alerting. Other tools are similar. Your data is long gone in those 7 minutes. Push analysis to the edge so you can detect instantly. If you don't know how, hire someone that does.
@teddyfeld
is gmi because whenever he tweets I get to learn things like the geopolitical power balance implications of cadmium telluride vs polysilicon based solar panels.
so amazing that
- the universe gave us an infinite energy glitch
- the US decided to use it to power giant underwater Gods (Ohio class submarine), enough to power it straight for 30 years
- then entire society collectively chose not to use this energy source for anything else
In biological warfare, AI will probably give the advantage to the defender, says Anduril's Palmer Luckey on this week's podcast.
Link to the full episode threaded below.
"He's a hot dog. Graduate school, Marine Corps. Taken down some heavy crews. Lieutenant in Robbery-Homicide, major crimes unit. Divorced twice. Means he's one of those guys out there, prowling around all night, dedicated."
- Heat, '95
Happy Friday Night Grind to The Dedicated
In other words, while Five Eyes has been focused on local optima in the form of ensuring “fair” defense industrial bases, a globalist free market has been relentlessly pursuing tech dominance with little regard to fairness.
"American Strength."
Is it HIMARS sales and drone strikes? Or is it a society with values worth emulating, a techno-industrial base worth envying, and combat power projection worth not fucking with?
We knew the correct answer once.
It's Monday morning anon. Western civilization is crumbling around you. Get up, grit your teeth, and build something worthy of the long line of ancestors that got you here.
When conducting offensive cyber operations, step 1 is probing the configuration of the target network’s perimeter to figure out what will pass through, what won’t, and what elicits network defender response. Extrapolate to air defense.
Devs who work exclusively on “app” frontends don’t understand that game engine technology is so far ahead of the world they live in it may as well be alien technology
Signed up for a student loan forgiveness program 20 years ago. Came with guns, helicopters, and free housing overlooking the water in Monterey, CA. Would recommend.
@cyb3rops
And don’t have the time to dig around and find the research from some random blog that mentions the one log line from an esoteric subsystem on the device that would confirm compromise.
The most crucial sentence to understand in Microsoft's post:
"The threat actor then used the legacy test OAuth application to grant them the Office 365 Exchange Online full_access_as_app role"
I explain why here:
Not sure these young bucks know that, statistically, taking a FIVE EYES citizen hostage in such a public manner is highly correlated with green eyed gorillas falling from the sky, heavily armed and likely unhappy they had to cancel their weekend barbecue.
Independence Day laid out the UAP response playbook years ago: pre-assault cyber / electronic warfare with kinetic follow through. Seems we’ve forgotten the first part given the lack of RC/EC/WC-135 racetracks around the latest incidents.
@zanemountcastle
Please yes. And if you’re good as the big league products without charging the 200-500% security tax your enterprise sales cycle will be measured in days.
Conversations with houseguests in spaces not arrayed around a television (kitchen island etc) seem to have 10x information density / signal-to-noise ratio.
“Men wanted for hazardous journey. Low wages, bitter cold, long hours of complete darkness. Safe return doubtful. Honour and recognition in event of success.”