top of page
All Posts
Salt Typhoon Goes to Washington
Salt Typhoon Goes to Washington
Patrick Duggan
Jan 92 min read
The Scattered Spider Trilogy: Win, Lose, and Give It Away
The Scattered Spider Trilogy: Win, Lose, and Give It Away
Patrick Duggan
Jan 83 min read
Larry Ellison's Two-Month Head Start (For the Attackers)
Larry Ellison's Two-Month Head Start (For the Attackers)
Patrick Duggan
Jan 84 min read
Scattered Spider Meets Honeypot: When the Hunters Become the Hunted
Scattered Spider Meets Honeypot: When the Hunters Become the Hunted
Patrick Duggan
Jan 83 min read
Scattered Spider Goes to Space: The OAuth Arc Continues
Scattered Spider Goes to Space: The OAuth Arc Continues
Patrick Duggan
Jan 84 min read
DPRK Tradecraft Evolution: From Email to QR Code to Blockchain
DPRK Tradecraft Evolution: From Email to QR Code to Blockchain
Patrick Duggan
Jan 84 min read
When Google's AI Writes Your Receipts
When Google's AI Writes Your Receipts
Patrick Duggan
Jan 82 min read
All Hat, No Cattle? A Decade of Receipts
All Hat, No Cattle? A Decade of Receipts
Patrick Duggan
Jan 83 min read
His Name Is Anusfragger: We Wrote a Song About It Before Zscaler Named It
His Name Is Anusfragger: We Wrote a Song About It Before Zscaler Named It
Patrick Duggan
Jan 73 min read
Zscaler's "NodeCordRAT Discovery": We Published This Pattern 6 Weeks Ago
Zscaler's "NodeCordRAT Discovery": We Published This Pattern 6 Weeks Ago
Patrick Duggan
Jan 74 min read
The ASML "1011" Claim: Noise, Signal, and the Attack Vectors That Actually Matter
The ASML "1011" Claim: Noise, Signal, and the Attack Vectors That Actually Matter
Patrick Duggan
Jan 75 min read
Your $200K Security Tool Has a STIX Import Button. Here's the Free Feed It's Been Waiting For.
Your $200K Security Tool Has a STIX Import Button. Here's the Free Feed It's Been Waiting For.
Patrick Duggan
Jan 64 min read
Your $200K Security Tool Has a STIX Import Button. Here's the Free Feed It's Been Waiting For.
Your $200K Security Tool Has a STIX Import Button. Here's the Free Feed It's Been Waiting For.
Patrick Duggan
Jan 63 min read
72 Days: A Transparency Report on CVE-2022-24999
72 Days: A Transparency Report on CVE-2022-24999
Patrick Duggan
Jan 63 min read
72 Days: A Transparency Report on CVE-2022-24999
72 Days: A Transparency Report on CVE-2022-24999
Patrick Duggan
Jan 63 min read
Article 77 and the 48-Hour Coincidence
Article 77 and the 48-Hour Coincidence
Patrick Duggan
Jan 34 min read
DPRK Read Our Math: How North Korea Inverted Blockchain Vulnerability
DPRK Read Our Math: How North Korea Inverted Blockchain Vulnerability
Patrick Duggan
Jan 24 min read
🔺 CONSPIRACY THEORY Newsletter Vol. 47: The Paperwork Is The Weapon
They're not even HIDING it anymore. The form is the bullet. The requirement is the trigger. The bureaucrat is the soldier who 'was just following orders.' Dr...
Patrick Duggan
Dec 31, 20254 min read
New Year's Eve 2025: Buc-ee's, Vulcans, and Hot Dog-Tier Psyops
Somewhere around December 19th, an interstellar object made its closest approach to Earth. It didn't stop. It didn't signal. It just looked. If you're going ...
Patrick Duggan
Dec 31, 20254 min read
The Quiet Was The Signal: How We Caught DPRK Building Blockchain C2
Three weeks ago, I published a piece that pissed off exactly the right people.
Patrick Duggan
Dec 29, 20255 min read
bottom of page