Keith on Twitter (archived)

Keith

@kwm

Parroting "but attacks bypass <insert soapbox security thing here> all the time" may be technically accurate, but is pointless.

Attackers don't apparate in O365 mailboxes, on endpoints, in an AWS console.

Attackers go from A > B > C > 💥

Same principle applies in defense.

3/26/2023, 11:23:20 AM

Favs: 11

Retweets: 2

link

Keith

@kwm

In order for a meaningful intrusion to take place, attackers have to seize multiple opportunities, and defenders have to miss multiple opportunities.

There's plenty of opportunity to go around, for better and for worse.

3/26/2023, 11:42:10 AM

Favs: 6

Retweets: 0

link