I’m an experienced cyber‑security professional with a career spanning two decades of service with the Federal Bureau of Investigation. During my tenure I've led investigative cyber‑operations, risk‑assessment initiatives, and incident‑response teams that protected high‑technology environments from emerging threats. My work has consistently emphasized rapid triage, thorough forensic analysis, and the implementation of advanced mitigation techniques that keep critical systems secure.
I possess a Master’s in Information Security and have graduated from the SANS Institute with a Graduate Certificate in Cyber Defense among other degrees. I also hold a portfolio of industry certifications - including the ISC2 CISSP, multiple SANS credentials, numerous CompTIA and other industry specific certifications. These qualifications underpin a deep technical expertise that bridges policy, architecture, and hands‑on threat hunting.
| Website | https://www.kraudelt.com |
| Credly | https://www.credly.com/users/anthonykraudelt/badges |
| https://www.linkedin.com/in/anthonykraudelt/ |
I'm excited to announce I'll be speaking at #GrrCon in September 2026!
Many companies seem focused on protecting against highly technical attacks or nation‑state actors, when in reality the most common, and often more devastating, threat comes from the true APT, Ambitious Persistent Teens.
Find out what I'm up to @ https://kraudelt.com
The phrase "Advanced Persistent Threat" (APT) no longer means what it once did. With not just nation-state threat-actors possessing advanced skills, it's time to abandon the traditional APT classification in favor of motivation oriented identifiers. In my book, How MICE Threaten Cyber Security, I discuss the four motivating factors driving cybercrime and the skills and techniques to thwart them.
Check it out on Amazon: https://a.co/d/0awR4gNr
Both Microsoft and Google are reporting passkeys alone are not the panacea solution being sold by vendors. This is a recurring reminder that no one solution exists in protecting user identities and security systems.
There exists no silver bullet in a world of cybersecurity. Security requires defense in depth and constant vigilance on behalf of every person from the end users to admins and executives.
Keep safe out there!
"If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victory gained you will also suffer a defeat. If you know neither the enemy nor yourself, you will succumb in every battle." -Sun Tzu, The Art of War
Uncover the mindset behind threat-actors in our Digital Age.
Available at Amazon: https://a.co/d/0awR4gNr
Should the industry start to move away from the use of the term Advanced Persistent Threat (APT) as a way of describing a cyber intruder? Due to its broad use across several threat-actor categories it seems to be used indiscriminately to describe all types of attacks. If media reporting and industry discussions label everything from highly motivated financial threats to nation-state actors as "APT", maybe it's time the term is retired.
With increased threats against Microsoft InTune; administrators should consider utilizing multi-admin authentication for specific administrative level tasks including the deletion or wiping of devices. Although this may seem like an additional burden, if a threat-actor gains access to a single administrative credential this could mean a complete wipe of all InTune assets.
@TiamatEnity thank you for the boost on my post about my new book. It's important that we share as much knowledge as possible. It's not about making money it's about being successful engaging in cyber defense!
