The Cavalry is a global grassroots organization that is focused on issues where computer security intersects public safety and human life. We strive to ensure that these technologies are worthy of the trust we place in them.
Media and Research Requests
For journalists of all media, please use my PGP key for e-mail communications. Most requests I receive are for validating claims of major security events or vulnerabilities.
About one out of every five events I examine turn out to be fully or partially true. Our little community is increasingly becoming filled with rotten apples.
There is also an assumption of anonymity on my part, with exceptions only in very specific and authorized situations.
For research discoveries and disclosure, I already have a trusted list of journalists. For individuals and groups looking to include me in their efforts, please communicate using my PGP key listed above. Do your due dilligence first. I get a lot of requests and vetting what is legitimate is time consuming..
23 May 2017 - Android O, due in the third quarter, figures to elevate the security of the mobile OS with new features focused on improved third-party patching, a new permission model and hardening of existing features.
23 May 2017 - Researcher Chris Evans reported a new bug and showed how also used a previously known flaw in ImageMagick to leak Yahoo server data and steal images and authentication secrets.
23 May 2017 - Apple revealed this week that it received at least one National Security Letter from the U.S. government for user data during the last six months of 2016…
23 May 2017 - Just released:Snort Subscriber Rule Set Update for 05/23/2017We welcome the introduction of the newest rule release from Talos. In this release we introduced 28 new rules and made modifications to 15 additional rules of which 3 are Shared Object rules. There were no changes made to the snort.co…
23 May 2017 - Pushed build 234 to github (snortadmin/snort3):byte_math: port rule option from 2X and add feature documentationpgm: don't calculate checksum if header length is not divisible by 4appid: fix sip event handling, http pattern lists, thread localsbuild: fix issues with OpenSolaris and FreeBSD buildscma…
17 May 2017 - Even though we announced the EOL of 2.9.7.6 back in March, we kept 2.9.7.6 around for while to help the people that could not move off of 2.9.7.6 immediately.However, our download count for 2.9.7.6 is down to "hey, I forgot about this install" levels, so we've removed the build from our packag…
17 May 2017 - We created an infographic to illustrate our coverage for the WannaCry Ransomware for another group, and we thought that the Snort community would love to have this as wellFor more information on our coverage for WannaCry, check it out here.
For research discoveries and disclosure, I already have a trusted list of journalists. For individuals and groups looking to include me in their efforts, please communicate using my PGP key listed above. Do your due dilligence first. I get a lot of requests and vetting what is legitimate is time consuming..
