Selena Larson

@selenalarson
3.4K Followers
390 Following
2.2K Posts
Threat research and intelligence at Proofpoint. Cohost of the DISCARDED podcast. Runner. Dog person. She/her
Selena LarsonJul 24, 2025
Threat InsightJul 22, 2025

Proofpoint threat researchers released new details on a widespread Request for Quote (RFQ) scam that involves leveraging common Net financing options to steal a variety of high value electronics and goods.

To understand how the scam works, our researchers posed as suppliers with lax finance departments and engaged directly with threat actors.

Step into the mind of a cybercriminal and read all about the anatomy of the scam in this blog: https://www.proofpoint.com/us/blog/threat-insight/net-rfq-request-quote-scammers-casting-wide-net-steal-real-goods

#shipment #RFQ #finance #scam

Selena LarsonJun 26, 2025
Kevin BeaumontJun 26, 2025

Help request. My brother has Stage 4 colorectal cancer.

His life insurance has refused to pay out on a technicality, meaning he and his loved ones cannot afford the mortgage on their home.

I've never asked for anything in return for infosec stuff, but if you have anything spare, please chuck it this direction instead:

https://gofund.me/b9a0d8f4

Selena LarsonMay 23, 2025
Brian ClarkMay 23, 2025

Nice work by International Law Enforcement in taking down the Danabot malware infrastructure. Includes quotes from @selenalarson of Proofpoint on the dual-use Cybercrime/Nation State Intelligence nature of some of the operations.

From: @arstechnica
https://mastodon.social/@arstechnica/114558921895285595

Selena LarsonFeb 18, 2025
New report on the web injects landscape, two new threat actors, and new Mac malware: https://www.proofpoint.com/us/blog/threat-insight/update-fake-updates-two-new-actors-and-new-mac-malware
An Update on Fake Updates: Two New Actors, and New Mac Malware | Proofpoint US

Key findings  Proofpoint identified and named two new cybercriminal threat actors operating components of web inject campaigns, TA2726 and TA2727.  Proofpoint identified a new

Proofpoint
Selena LarsonFeb 4, 2025

The latest episode of Only Malware in the Building dives into romance scams, just in time for Valentine's Day. I encourage everyone to have more empathy for people who fall victim to social engineering, especially things like romance and sextortion.

https://thecyberwire.com/podcasts/only-malware-in-the-building/9/notes

Selena LarsonJan 28, 2025
It’s tax season so of course I’m blogging the scams https://www.proofpoint.com/us/blog/threat-insight/security-brief-threat-actors-take-taxes-account
Security Brief: Threat Actors Take Taxes Into Account | Proofpoint US

What happened  Proofpoint researchers have identified an uptick in campaigns and malicious domains impersonating tax agencies and related financial organizations. This activity aligns with

Proofpoint
Selena LarsonJan 22, 2025
New episode of DISCARDED! We're joined by Kristina Walter, Chief of the NSA's Cybersecurity Collaboration Center to talk about private / public sector partnerships, cybercrime and APT activities, and career pathways in this industry. It was a fantastic conversation and at one point I literally snapped for Kristina's amazing takes. Tune in wherever you get your podcasts! 
Apple: https://podcasts.apple.com/us/podcast/discarded-tales-from-the-threat-research-trenches/id1612506550?i=1000685038003
Spotify: https://open.spotify.com/episode/0Ontn7NsufUVen72X44oAn?si=0128fac511794931
Web: https://www.proofpoint.com/us/podcasts/discarded#140361
The Power of Partnerships: An Interview with the NSA’s Kristina Walter

Podcast Episode · DISCARDED: Tales From the Threat Research Trenches · 01/22/2025 · 40m

Apple Podcasts
Selena LarsonJan 8, 2025

New episode of DISCARDED! 🎙️

We're joined by Hannah Rapetti to talk about how threat actors create and use malicious domains and the process for taking down adversary infrastructure. Tune in wherever you get your podcasts!
 
Apple: https://podcasts.apple.com/us/podcast/discarded-tales-from-the-threat-research-trenches/id1612506550?i=1000682992487
Spotify: https://open.spotify.com/episode/6gpE0Gy3tvp8F03U4TAHqg?si=944addc0a1d9454a
Web: https://www.proofpoint.com/us/podcasts/discarded#140011

The Battle for a Safer Internet: Inside Domain Takedowns and Threat Actor Tactics

Podcast Episode · DISCARDED: Tales From the Threat Research Trenches · 01/07/2025 · 38m

Apple Podcasts
Selena LarsonDec 23, 2024
Jeremy KirkDec 23, 2024
Great piece by @selenalarson in @RUSI's journal about why cybercriminals on are par with APTs as far as capability and arguably pose a higher risk for most organisations for financial loss and damage: https://rusi.org/explore-our-research/publications/commentary/why-biasing-advanced-persistent-threats-over-cybercrime-security-risk #infosec
Why Biasing Advanced Persistent Threats over Cybercrime is a Security Risk

Once reserved for nation-state actors, advanced and persistent cyber tactics are now common among cybercriminals, making them equally devastating in today’s threat landscape.

Selena LarsonDec 17, 2024
TaggartDec 17, 2024

@selenalarson spitting some truth here. We ignore cybercrime at our own peril. Enough with the APT action figures; focus on the groups that have widespread daily impact on people's lives.

https://www.rusi.org/explore-our-research/publications/commentary/why-biasing-advanced-persistent-threats-over-cybercrime-security-risk

Why Biasing Advanced Persistent Threats over Cybercrime is a Security Risk

Once reserved for nation-state actors, advanced and persistent cyber tactics are now common among cybercriminals, making them equally devastating in today’s threat landscape.