I retooted (excuse me) @securityonion's post about #SecurityOnion's latest update. But I feel like I gotta shout the firm and their work out a little bit more.

Where I live, there was a VERY active campaign leveraging business email compromise (#BEC) to distribute malware. Threat actor mapped very cleanly against #TA551.

The actor was targeting small non-profits linked to multiple government entities. As part of community engagement in spreading the word about this attack, it was super great to be able to say to these non-profits who have been facing other hardships to be able to say, "Don't worry. There's an organization and tool that's got your back".

#SecurityGentifrication is a real thing. And each one of those non-profits that got compromised (only 3 to my count) increased the odds of a larger incident impacting more of us.