Katie Moussouris (she/her)🥜👋🏼

@[email protected]
11.1K Followers
487 Following
474 Posts
Personal social media, use specific contact info below!
✌🏼💗🌺

CEO @LutaSecurity Founder @payequitynow MIT &Harvard visiting scholar, @NewAmCyber & @MasonNatSec Fellow. Hacker.

#BugBounty #VulnerabilityDisclosure expert 

👩🏻‍💻👩🏻‍💻👩🏻‍💻
Hire us or refer a customer: [email protected]
💰Earn ca$h for referrals that lead to new customers:
https://LutaSecurity.com/referralbounty
💵 
👩🏻‍💻
Apply for a job with us:
https://LutaSecurity.com/careers
Questions and resume submission: [email protected]
🌺🌺🌺
✨✨✨
✨Media/public speaking: [email protected]✨
🎤🎤🎤

😻😻😻
😻Cat/vacation/thirst traps/food pics: 
https://Instagram.com/kmoussouris
💃🏻 💃🏻💃🏻
I’ve been a molecular biologist, bioinformatics engineer, UNIX sysadmin, Linux developer, professional penetration tester, security code reviewer, and now founder of a successful bootstrapped cyber company. I’m far older than I look & therefore have no time for nonsense.
🚨🚨Mansplain to me at your peril.🚨🚨

Peace, love, and healthy boundaries to you all ✌🏼💖🌺
Equalityhttps://Payequitynowfoundation.org
Work - Let Me Pay Youhttps://LutaSecurity.com/referralbounty
Kobayashi Maruhttps://ManglonaLab.org
Instgram Cats & Thirst Trapshttps://www.instagram.com/kmoussouris/
Katie Moussouris (she/her)🥜👋🏼Apr 15, 2023
CheRosachApr 13, 2023
The problem with capitalism
Katie Moussouris (she/her)🥜👋🏼Apr 13, 2023
Matt Linton Apr 12, 2023

Every time I get into a debate about Coordinated Vulnerability Disclosure and am trying to make someone understand a particular opinion that I strongly hold, I know I can look and find a video of a talk or blog post by @k8em0 which makes that point more firmly and eloquently and with more data than I could possibly do so.

I really appreciate that, and y'all should too.

Katie Moussouris (she/her)🥜👋🏼Apr 12, 2023
Phil ReitingerApr 12, 2023

Shout out to @wendynather in the Inside Cybersecurity story on the one-year anniversary of #CyberCivilDefense. https://insidecybersecurity.com/share/14540

“There’s a nice synergy between IST and GCA” on equipping organizations in the fight against ransomware, Stifel said, adding, “We really need to think collectively about this, particularly those below the ‘cybersecurity poverty line,’” a phrase coined by cyber pro Wendy Nather to describe a dividing line between organizations with and without cyber resources.

“It’s not 20-30 percent, it’s more like 97 percent below the poverty line,” Reitinger added. He highlighted the GCA cyber toolkit for individuals and other resources.

| InsideCyberSecurity.com

Katie Moussouris (she/her)🥜👋🏼Apr 12, 2023

Ah yes, another high profile bug bounty forcing non-disclosure — even for fixed bugs.
🤦🏻‍♀️
It’s the bugs they won’t fix that will put users at risk.
All orgs need a vulnerability disclosure program that doesn’t ban Disclosure.
But what do I know.
I just coauthored the standard
#GPT

“But it’s a bug bounty & they are paying so it’s fair to ask for non disclosure”
That’s fine if everything submitted is paid work, like a penetration test.
Oh, only paying selectively & only the first of any duplicates?
That’s labor abuse & the worst gig economy deal out there.

“But pen tests don’t get you all the eyeballs”

Neither do bug bounties - you get a random number of eyeballs willing to sign NDAs.

If orgs actually care about security, they cast as wide a net s as possible to get the best researchers - especially those who won’t sign NDAs.

“This is better than no bug bounty”

No, it isn’t.

It breeds a false sense of security for users & the org itself, while actively excluding the highest skilled researchers who will never sign an NDA for speculative pay or who want to see the bugs FIXED as their motivation.

Katie Moussouris (she/her)🥜👋🏼Apr 12, 2023
SwiftOnSecurityApr 11, 2023
🤖 In AD 2101 war was beginning
🔅💥 🔆💥
👸🏽 what happen
👷🏻‍♀️ someone set up us the bomb
💁🏾‍♂️ we get signal
👸🏽 what !!
💁🏾‍♂️ main screen turn on
👸🏽 it’s you !!
👾 how are you gentlemen !!
👾 all your base are belong to us
👾 you are on the way to destruction
👸🏽 what you say !!
👾 you have no chance to survive make your time
👾 ha ha ha ha
👷🏻‍♀️ captain !!
👸🏽 take off every ZIG
👸🏽 for great justice
🚀🚀🚀🚀🚀🚀🚀🚀
Katie Moussouris (she/her)🥜👋🏼Apr 12, 2023

Today I cried with joy & gratitude that I’m alive when I saw the Olympic mountains.

So much better than the tears I’ve been crying lately.

Find your tears of joy among all the tears of sorrow.

Cookies need both salt & sugar to come out right🍪
Pic cred:

https://commons.wikimedia.org/wiki/File:The_Brothers_from_West_Seattle.jpg

File:The Brothers from West Seattle.jpg - Wikimedia Commons

Katie Moussouris (she/her)🥜👋🏼Apr 11, 2023
Luta SecurityApr 11, 2023

We're excited to announce that @LutaSecurity is sponsoring 4 @swsissec scholarships of $5K each for women pursuing undergraduate or graduate degrees in #cybersecurity or related fields.

https://www.lutasecurity.com/post/luta-security-sponsors-four-scholarships-for-women-pursuing-cybersecurity-careers

Luta Security Sponsors Four Scholarships for Women Pursuing Cybersecurity Careers

Luta Security is sponsoring 4 SWSIS scholarships of $5K each for women studying cybersecurity or related fields.

Luta Security
Katie Moussouris (she/her)🥜👋🏼Apr 10, 2023

Just got good news.

The kind that makes you cackle.

Such great news!!

Katie Moussouris (she/her)🥜👋🏼Apr 7, 2023

Conversations I truly cherish, memories of hackerish things mixed with the fact that we’re all getting old & have to watch our health. 💞

- Remember when you were in Vegas in a scooter gang dressed as Elvis during Defcon?

- I’m eating oatmeal every day to lower my cholesterol.

Katie Moussouris (she/her)🥜👋🏼Apr 6, 2023

Ready to start a fun partnership with a strong, capable, mature…

…cyber insurance company.

Who has a contact at one that understands:

✅vulnerability disclosure or bug bounties can be useful indicators of security

BUT

🛠️there’s wild competency variance behind the curtain