A "must have" extension for privacy conscious users. If this isn't adverse to your #OpSec or risk appetite think about joining!
1 day ago
1
0
0
0
Posts by WitchyPurpleSec
Securing and understanding your supply chain can help minimize organizational risk when things like this happen. In this case even a well planned Vendor Risk Management program may have identified this as an issue.
3 days ago
1
0
1
0
Until something major happens AI security and compliance will be thought of as secondary and most companies won't put time or effort behind either. In organizations with a good understanding of the risk you'll see what this article touches on. They will approach vendors and access as a risk.
4 days ago
0
0
0
0
I love the commercial where the pizza shop uses copilot to bring back dollar slices by giving it access to their financial spreadsheets and saying "bring back $1 slices". Like Microsoft copilot wouldn't just go "OK bro!" and magic up some bizarre numbers that would tank the joint in 3 months.
1 week ago
0
0
0
0
This could have been catastrophic.
1 week ago
0
0
0
0
This should concern anyone who uses Signal but also anyone concerned about digital privacy. We agree to give up a lot of our privacy to leverage convenient modern tech. Even using a "secure " app could put youat risk if you are too quick with the "I agree to X" button.
9to5mac.com/2026/04/09/f...
1 week ago
1
0
1
0
Statistically what percentage of Rick Astley's YouTube views do you think come from redirected phish simulations?
1 week ago
0
0
0
0
Advertisement
The Hugh Jackman interview at RSA reminded me I need to rewatch Swordfish. It also reminded me of a post I saw talking about the best #hacker movies. I don't know about the "best" but my favorites in no particular order are:
Hackers
Ghost In The Shell
Who Am I
#Cybersecurity #MovieRecommendations
1 week ago
0
0
0
0
If you are still on the fence about HSC check out how awesome the agenda is. I always get a lot of value out of this and Hack Red Con. If you'd like to see me attempt my first red teamer talk ever I'll be speaking on Saturday!
1 week ago
0
0
0
0
"What leader do you look up to?"
1 week ago
0
0
0
0
We are #hiring for an #InfoSec Intern role. Get more details and apply below.
#BlueTeam #RedTeam #GRC #Job
cisecurity.wd1.myworkdayjobs.com/en-US/CIS_Ex...
1 week ago
0
0
0
0
It's important to remember that privacy is a vital (often forgotten or disregarded) component of security. To improve your OpSec and better protect your privacy look into browsers like Mullvad or a properly tuned version of Firefox.
#Privacy #OperationalSecurity
medium.com/@makalin/the...
1 week ago
1
0
0
0
Post RSA Conference sales outreach is crazy. "Hey (misspelled version of my name) I see you went to RSA. I didn't see you there, you never came to my booth, I wasn't there... But I sell an AI platform you've never heard of vibe coded by 3 people that will change the very fabric of your existence".
1 week ago
0
0
0
0
If you were at the 2026 RSA Conference (and your badge gave you session access) you can watch my colleague and I announce the SDF and provide some examples of how you may use it. Check out our session replay here:
path.rsaconference.com/flow/rsac/us...
#RSAC2026
2 weeks ago
0
0
0
0
I've published a framework designed to help #InfoSec, #GRC, and #IT professionals avoid analysis paralysis, expedite decision making, and ensure decision alignment with organizational needs. Check out the Simplified Decision Framework on GitHub.
#StrategicAlignment
github.com/WitchyPurple...
2 weeks ago
1
0
1
0
Thinking about doing a video about my every day carry. I have one set I carry daily and a new set I built for conference season. I might release it after RSA so I can give feedback on the conference EDC. If that's something you'd be interested in seeing let me know below!
#EDC #TechEDC #PurpleEDC
1 month ago
1
0
0
0
Advertisement
If you still don't have your schedule finalized for #RSAConference I hope you will consider giving my sessions a shot. One is first thing on Monday morning so help us fill that room if you can! #RSAC2026 #BlueTeaming #GRC #InfoSecFrameworks
path.rsaconference.com/flow/rsac/us...
1 month ago
0
1
0
0
I'm not sure what SXSW is like but I've seen multiple people posting full images of their badges on LinkedIn and Bluesky. One of the images wasn't even posted by the badge owner. Quick OpSec reminder that posting images of any access badge could lead to badge theft or give bad actors access.
1 month ago
0
0
0
0
I've been debating moving to an older Pixel device so I can leverage GrapheneOS. Finding out they just cut a deal with Motorola is awesome. I can't wait to see what comes out of this.
#Privacy #MobilePrivacy #Degoogle
motorolanews.com/motorola-thr...
1 month ago
1
0
0
0
It was absolutely surreal to speak with @darkreading.bsky.social about my 2026 RSA Conference session. If you want to hear more, stop by my session STR-M06 Shift Left Everywhere: Embedding Security into Business Operations.
#Cybersecurity #InfoSec #GRC
www.darkreading.com/cybersecurit...
1 month ago
0
0
0
0
This is a really interesting use of AI and a cool way to correlate OSINT resources. If anyone you know doesn't understand the power of OSINT show them this. While it's uncomfortable from a privacy perspective I see some really insane red team value here.
www.spatialintelligence.ai/p/i-built-a-...
1 month ago
0
0
0
0
When AI components become essential to day to day life or business an outage like this could become as bad any AWS or Cloudflare outage. It's a heavy crown to wear if you want to be at the center of everything.
1 month ago
1
0
0
0
Trusting any social media app (COUGH Bluesky COUGH) with your ID is a mistake. These companies just aren't equipped to handle that sort of data and have to depend on 3rd parties they are expected to vet accordingly with no real knowledge of how to do so.
www.theverge.com/tech/876575/...
2 months ago
0
0
0
0
Also make sure you follow @secconferences.bsky.social to learn more about the event and get updates!
2 months ago
0
0
0
0
A Hack Space Con promotional image for a Business Track session. The title of the session is Talking to Corpos 101: Translating Hacker Speak to Executive Action. The event takes place May 6th - 9th at Kennedy Space Center in Florida and the Radisson Resort at the Port.
Learn to talk Corpo! I'm excited to be speaking at #HackSpaceCon this May in Florida! In this session we will discuss how to translate your red team and security work into discussion topics leads and managers care about.
For more information go to www.hackspacecon.com
#HackerCon #CyberSecurity
2 months ago
0
0
0
1
Just being on the web store for download shouldn't give extensions a pass on you personal or professional security review. It's still worth doing your research and understanding what the extension does before you use it. The requirements for publishing to the store may not cover your risk appetite.
3 months ago
0
0
0
0
Advertisement
I always found it so odd that Microsoft's out of box configuration was basically a house with every door and window open. Its so easy to miss a configuration setting during an initial deployment that could create a security nightmare down the road. I feel like this is a step in the right direction.
3 months ago
0
0
0
0
Great now I'm suspicious of both cats and zebras.
3 months ago
1
0
0
0
New year ahead, fresh momentum. Take 40% off everything with code HOLIDAY40 and fill your shelf with books that help you build real skills and reach the next milestone you’ve been working toward. Ends Jan 2 at 11:59 PM PST.
nostarch.com
4 months ago
7
2
0
0
A promotional image announcing the users speaking engagement at the 2026 RSA Conference in March. The event takes place in San Francisco at the Moscone Center March 23rd to March 26th.
I've been selected to speak at #RSAC 2026! This year I'm covering two different topics. One session covering #CyberSecurity strategy and one on #Governance. More to come as we get closer to the event!
#GRC #InformationSecurity #Conferences
4 months ago
1
0
1
0