John Lambert

@JohnLaTwC

Distinguished Engineer, Microsoft Threat Intelligence Center, johnla(AT), **BEWARE There are Tech Support Scams that use my name **

Redmond WA
Joined October 2010

Tweets

You blocked @JohnLaTwC

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @JohnLaTwC

  1. Retweeted
    19 hours ago

    Need a Reference Architecture? Check out this one showing how technology enables this strategy/access model. Slide 14 of CISO Workshop Module 3

    Undo
  2. Retweeted
    1 Nov 2019

    📇 Good afternoon! In this blog I explain how we can authenticate using devicelogin from interactive Python code execution like Jupyter notebooks and utilize keyvault. 👇

    Undo
  3. Retweeted
    Feb 1

    This thread is pure gold for both ops and incident response folks.

    Undo
  4. Jan 31
    Show this thread
    Undo
  5. Jan 31

    Unicode VBA for obfuscation purposes: 🔗d7987d5bfcd0d8fd206c45b5a83bc429e22759c414d427c8bf1236e7d573f7c3

    Show this thread
    Undo
  6. Jan 31
    Show this thread
    Undo
  7. Undo
  8. Jan 31

    Follow Friday on interesting VT Submitter Ids. My first is ec31b410 uploading from Denmark. Examples in this thread

    Show this thread
    Undo
  9. Jan 31
    Undo
  10. Jan 30
    Undo
  11. Jan 30

    Blue teamers, just watched this webinar by on how to use to hunt over data. Hypothesis formulation, graph investigation, notebooks, and more!

    Undo
  12. Jan 30

    🆕hxxps://transnesia.co.id/olympicfencingtoshiromutotokyo2020/

    Show this thread
    Undo
  13. Jan 29

    That feeling when someone has just joined and you're looking forward to grabbing coffee with them.

    Undo
  14. Jan 29

    has helped me discover many researchers to follow. I am going to create a hashtag where you list VirusTotal SubmitterIds that are uploading cool stuff. Anyone game?

    Undo
  15. Retweeted
    Jan 29

    Need a SOC Reference Architecture? Check out this one we put together to show how Microsoft technology integrates into a SOC. Slide 73 of Azure Security Compass -

    Undo
  16. Jan 29

    I didn't know was a thing. All of these outdoors pictures:

    Undo
  17. Jan 29

    , you might want to check the Referrer in your weblogs to see non-Olympics sites loading Could help discover phishing sites like these.

    Show this thread
    Undo
  18. Jan 29

    and 🆕hxxps://amazingmonkeys.es/tokyo2020portal/

    Show this thread
    Undo
  19. Jan 29

    Would someone use the Olympics to phish? Yes, yes they would. 🆕hxxps://amazingmonkeys.es/tokyo2020comiteeolympic/ 🆕hxxps://amazingmonkeys.es/olympiccomitee/ hxxps://154dst.com/comiteeolympic/ hxxps://154dst.com/olympiccomitee/ hxxps://154dst.com/olympicinternationalcomitee/

    Show this thread
    Undo

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·