Frédéric Grelot
CEO of GLIMPS Inc. Canada | Speaker | Co-Founder, Scientist Lead at GLIMPS | Board member French Tech Toronto, #AI & #Cybersecurity
- Report this post
🇫🇷 For my English speaking community: I wanted you to realize that some great ressources about ransomware are possible thanks to two French guys: Valery Rieß-Marchive and Julien Mousqueton.The former has a permanent eye on the dark/deep web (manually and through automated tools he developed himself) and updates a Github repository [1] as soon as a cyber attack has been discovered or published somewhere. He also monitors leaks of chat of ransomware negotiations and publishes them on another repository [2]. This works also led Ellis Stannard to create a "GPT" on OpenAI platform dedicated in the simulation of ransomware negotiation [3] (might become handy if you want to try some strategies, but don't want to read all the chats to see if this is a good one...). Valery also has a Mastodon account where he publishes all those findings [4].The latter created a website dedicated to present in a very exploitable way all these information [5]. As we say, having the data is half the work, presenting it is the other half!Thank you both, and keep up the good work: you are the proof that the French cyber community is at the very top level! :-)🇫🇷 🐓 [1] https://lnkd.in/gkZkj7yA[2] https://lnkd.in/gEc97Z7r[3] https://lnkd.in/gT_istEp[4] https://lnkd.in/gaTfNffX[5] https://lnkd.in/gAVgPiBi
14
2 Comments
Julien Mousqueton
CTO Cybersécurité chez Computacenter
2d
- Report this comment
Thank you very much Frédéric for highlighting our efforts in informing about ransomware and for sharing our work with your network.
2Reactions 3Reactions
Valery Rieß-Marchive
Rédacteur-en-chef, LeMagIT
2d
- Report this comment
🙏
3Reactions 4Reactions
To view or add a comment, sign in
More Relevant Posts
-
Frédéric Grelot
CEO of GLIMPS Inc. Canada | Speaker | Co-Founder, Scientist Lead at GLIMPS | Board member French Tech Toronto, #AI & #Cybersecurity
- Report this post
How Sandworm, Russia's elite hackers, attacked a small mill instead of dam they targetted lemonde.frSandworm (elite unit of the Russian government) apparently targeted a mill in France by mistake, thinking it was a dam ⚡.If you still had doubts, this definitely reminds us that critical infrastructure are targeted by threat actors.This is a bad thing that they succeeded of course, but what strikes me most is that the consequence was apparently a 20cm (8 inches) of the lower water level.20 cm! That's huge, and most of all, that's not zero!That means that they not only attacked the "dam" : they conducted physical actions.What if it were a real dam? What would have been the consequences?Maybe they realized their mistake and only then decided to make that physical action.Or maybe this was not a mistake, but a real warning. ⚠️Of course one can hope that real dam have a better protection, but the warning remains, and with it the malicious intent and the real consequences of this attack.Link to the article, available both in French and English:https://lnkd.in/g-tuA_-8
5
1 Comment
Like CommentTo view or add a comment, sign in
-
Frédéric Grelot
CEO of GLIMPS Inc. Canada | Speaker | Co-Founder, Scientist Lead at GLIMPS | Board member French Tech Toronto, #AI & #Cybersecurity
- Report this post
Sharing is by far the best way to learn.When you write, you realize that everything you assumed might be either unknown to others or, worse, can be challenged by some.You're then forced to confirm these assumption, and often find that some were wrong.This does not necessarily invalidate your conclusion, you just realize that you might have come to a conclusion through the wrong path.People who know me know that I've always strongly worked with my intuition.But my greatest success and discoveries happened when I had to explain to others what they were.Again, intuition can be right, but it can also be important to get to the path that proves them.All the articles or posts I wrote helped me having a clearer view of what I had in mind, and probably helped me even more as they helped others.Zeal: start writing. It will take you some time. You might even do it without any reader. You'll learn anyway.
4
1 Comment
Like CommentTo view or add a comment, sign in
-
Frédéric Grelot
CEO of GLIMPS Inc. Canada | Speaker | Co-Founder, Scientist Lead at GLIMPS | Board member French Tech Toronto, #AI & #Cybersecurity
- Report this post
[Édito] Respectez les sciences, bordel ! - Next https://next.inkEncore un excellent article de Next.ink sur le traitement des sciences dans notre société.Bravo Sébastien GAVOIS et toute l'équipes, vous faites un travail formidable.Félicitation pour le "sauvetage" de ce média l'année dernière vers un nouveau départ : vous me permettez de ne pas me poser de questions pour les années à venir sur quelle sera ma source d'information technique (orienté informatique quand même ;-) ) pour les années à venir.En un mot : continuez.cc Christophe Neau, moji.fr
5
Like CommentTo view or add a comment, sign in
-
Frédéric Grelot
CEO of GLIMPS Inc. Canada | Speaker | Co-Founder, Scientist Lead at GLIMPS | Board member French Tech Toronto, #AI & #Cybersecurity
- Report this post
Take this opportunity to influence our communication campaigns, and learn more about your topics of interest!
2
Like CommentTo view or add a comment, sign in
-
Frédéric Grelot
CEO of GLIMPS Inc. Canada | Speaker | Co-Founder, Scientist Lead at GLIMPS | Board member French Tech Toronto, #AI & #Cybersecurity
- Report this post
[IA & Cybersécurité, Podcast] Encore une fois, c'est un plaisir que d'échanger avec Nicolas-Loïc Fortin !Nous vous avions promis un rayon de soleil lors de l'épisode un peu "dark" sur l'IA et la cybersécurité offensive (il faut dire qu'il y a plein de "superbes" opportunités pour les attaquants...), c'est chose faite !Nous avons donc traité un nouveau sujet dans notre "saga IA", à savoir l'apport de ces nouvelles technologies (car oui, il y a du vieux, mais aussi beaucoup de nouveau !) en cybersécurité défensive !Au menu : des enjeux (le manque d'expert, le volume de données à traiter), de la détection (sur les malwares évidemment, c'est mon dada ! Mais aussi dans les logs, les comportements, le réseau, etc...), mais aussi des choses plus "rigolotes" comme un GPT dédié à l'entraînement à la négociation de rançongiciel (grâce notamment au travail de notre ami Valery Rieß-Marchive, LeMagIT).On entend souvent que l'attaquant a un avantage sur le défenseur, car il lui suffit de gagner une seule fois (là où le défenseur doit toujours gagner !). Mais quand on parle d'IA, la tendance est différente car le défenseur a un autre avantage : celui de la donnée. Car lorsque son travail est bien fait (de collecte de logs, de capitalisation, mais aussi d'échange d'information avec ses partenaires), le défenseur possède une mine d'or d'information.Après le pétrole des siècles précédents, l'or noir du 21e siècle est la donnée et ce gisem*nt ne demande qu'à être raffiné pour alimenter nos "moteurs d'IA", ceux-là même qui propulsent les solutions de détection.Alors à vos forages, collectez les données cyber et faites-en le meilleur carburant de votre défense !
10
Like CommentTo view or add a comment, sign in
-
Frédéric Grelot
CEO of GLIMPS Inc. Canada | Speaker | Co-Founder, Scientist Lead at GLIMPS | Board member French Tech Toronto, #AI & #Cybersecurity
- Report this post
[workshop announcement] Do you want to learn malware analysis ?On April 10th with our partner Sopra Steria, we are organizing a malware analysis workshop, where you will discover how our analysts work together to investigate malware efficiently.Together, we will discover several malware samples, how they work and how we can extract valuable information that helps conducting a proper response.In exclusivity, our partner Sopra Steria will also present how they managed to reduce an incident response crisis from 6 month to 2 months thanks to an unprecedented use of our solution (that's their words, not mine!).Seats are limited so hurry up : as long as you see this message with no "registration closed" comment, that means that we have seats left !Depending on the schedule and your interest, we could also add an exclusive introduction to how we use machine learning and LLMs within our research and CTI teams to improve our malware characterization capabilities: feel free to ask, this workshop is yours!!Reach me directly or register on the following page !🚀 https://lnkd.in/gwy745nm📅 Date: April 10, 2024⏰ Time: 8:45AM - 12:00PM EST🌎 Toronto, Canada
30
Like CommentTo view or add a comment, sign in
-
Frédéric Grelot
CEO of GLIMPS Inc. Canada | Speaker | Co-Founder, Scientist Lead at GLIMPS | Board member French Tech Toronto, #AI & #Cybersecurity
- Report this post
We need more psychological support for developers.Imagine working years making yourself a good reputation in the open source world.Imagine participating in feature commits.Imagine even writing tests for some features.Imagine waiting to be trusted enough before allowing yourself to improve the build process of a largely used library.Imagine having your code used in important software like systemd or openssh.Imagine forgetting to proper test for memory leaks of slowdowns of the programs using your code.And imagine that, one day, a random PostgreSQL developers finds that your code slows down his ssh connection.He digs down to the root cause, and ends up removing all your code.Imagine that you are that skilled developers and suddenly all your hard work gets ruined.And suddenly you lose one of the most beautiful backdoor you've ever worked on.All this happened to someone last week.Please let me know in comments how we could help him!Next time, we'll have some thoughts for the vulnerability researchers who loose their 0-days because of a random refactoring...#CVE2024_3094 #AprilFools
10
1 Comment
Like CommentTo view or add a comment, sign in
4,759 followers
- 246 Posts
View Profile
FollowExplore topics
- Sales
- Marketing
- Business Administration
- HR Management
- Content Management
- Engineering
- Soft Skills
- See All
