When the Five Eyes cyber security agencies put out a coordinated policy statement, it's a big deal. It's worth repeating in their own words We urge leaders to: • understand and assess risk, readiness and accountability • prioritize foundational cyber security practices and controls • empower cyber leaders with authority and resources • stay actively engaged as threats and guidance evolve Success will come from getting the basics right, acting quickly, and integrating cyber security into core business strategy. Those that do not will face growing operational and strategic disadvantage. Our founder Jonathan Cran lays out his thoughts here: https://lnkd.in/eYxVWnAe
Mallory
Computer and Network Security
Austin, Texas 608 followers
Building the future of cyber intelligence
About us
Building the future of cyber intelligence.
- Website
-
https://mallory.ai
External link for Mallory
- Industry
- Computer and Network Security
- Company size
- 11-50 employees
- Headquarters
- Austin, Texas
- Type
- Privately Held
- Founded
- 2025
Locations
-
Primary
Get directions
Austin, Texas 78702, US
Employees at Mallory
Updates
-
Jonathan Cran showing off some epic use cases that are only possible when you combine modern agentic harnesses with refined CTI data. Webinar with SANS Institute happening later today: https://lnkd.in/eGNGTGc5
Working through demos for today's SANS Institute webinar with Rebekah Brown .. "Agentic CTI Automation for Fun and Profit!" ... showing folks how they can use Mallory & Claude to build intel products and analysis dashboards like this... Reg link is in the comments...
-
-
Welcome aboard Jace Davis - excited to have you join us on this epic journey!
Very excited to announce I've joined Mallory as GTM Leader & Founding AE! Mallory is an AI-native threat intelligence platform built for modern security operations. We turning fragmented intel into prioritized, actionable cases. I appreciate the support from my friends here on LinkedIn and everyone that I've worked with along the way. This incredible opportunity truly showed me LinkedIn at it's best- please reach out if I can help with anything. More to come. Go time!
-
Mallory reposted this
This is too cool not to share - we have sharable threads in the app as of 8pm last night, so you can run an investigation or do research and share with your team, or even publicly. Check out what Mallory has to say about TeamPCP - https://lnkd.in/ePTVE_jJ
-
Mallory reposted this
Another day, another set of compromised packages, this time in redhat-cloud-services. We have integrated Mallory Supply Chain Compromise intelligence, enabling a swift audit of your environment to identify the use of known-compromised packages. For more details, check out the video: https://lnkd.in/ebNGtZh4
Automated Compromised Package Audits with GitHub
https://www.loom.com
-
Mallory reposted this
The cybersecurity industry doesn't have a shortage of threat intelligence. It has a shortage of context. In this episode of Cyber Confersations, I sit down with Jonathan Cran, Founder of Mallory, to discuss how AI is reshaping threat intelligence, attack surface management and the way security teams identify and prioritise risk. We explored: 🔹 Why traditional vulnerability management is struggling to keep pace 🔹 How AI is changing both attack and defence 🔹 The growing challenge of software supply chain risk 🔹 Why security teams need actionable intelligence, not more alerts 🔹 How organisations can move from reactive security to continuous exposure management One of my biggest takeaways: Security teams no longer need more data, they need better context. As AI accelerates both software development and attacker capabilities, understanding what matters, whether you're exposed, and what action to take next is becoming more important than ever. A huge thank you to Jcran for joining me. It's easy to see why companies like Mallory, backed by investors such as Decibel Partners , are generating so much attention right now. Tune in using the links below 🎙️ Confero | Mallory | Decibel Partners
-
Mallory reposted this
If you are looking to stay up-to-date on all the most current cyber security NEWS check out the free Mallory Intel feed. Available via RSS or delivered into your email every morning. Example below. Mallory. https://lnkd.in/gcM2xMhb
-
AI-CTI is here. - Daily briefings customized to your org, stack, individual teams. - Every public exploit, analyzed for a multitude of factors, and payload analyzed & understood - Every advisory, ingested and CPEs generated, so you can match to your infrastructure automatically - Chat with intelligence ... "give me a list of every known compromised OSS package in the last 4h"
The connection between AI and CTI receives less attention than AI-SOC workflows, but a new player, Mallory https://www.mallory.ai/ is emerging, offering a solution for expedited AI-powered Vulnerability intelligence Mallory is a cybersecurity intelligence platform founded by Jonathan Cran, an old co-worker of mine from Mandiant (part of Google Cloud), responsible for their Attack Surface Management product. Mallory has a few unique use cases to take note of 1) Vulnerability Prioritization -https://lnkd.in/grJWFC6c - Prioritizing vulnerabilities by real-world exploitabilities, not just CVSS scores 2) Exposure Investigation - https://lnkd.in/gx7px7Mw - Determines whether your organization's exposure in minutes rather than hours or days 3) Threat Hunting - https://lnkd.in/gYk3zhB2 - Determining context, extracting TTPs, and writing queries takes longer than the hunt itself. Mallory helps expedite creating hunt guides for emrging threats Sign up for a free 14-day trial here:https://lnkd.in/geUXbPix Word has it that a community edition may be in the works, so stay tuned
-
-
Whether you believe Mythos is a watershed moment or not, it's hard to deny that there's a heavier load of vulnerability triage & escalation that teams are dealing with right now. We're actively working with teams on what we're calling vuln-ops and the need for quick escalation & routing decisions. Check out how we're already supporting teams https://lnkd.in/gY3R-GKH
-
Mallory reposted this
CopyFail (CVE-2026-31431) is getting attention for a reason. - It's not "just" local. Container escape paths are possible in Kubernetes and CI runners. In modern infra, "local" is the host. - The bug has been sitting in the kernel since 4.14 (2017). ~9 years of exposure. - Public PoCs in Python, C, and Go are already out. - The exploit primitive is a controlled page-cache write, which is hard to detect. - The easy workarounds aren't easy: many enterprise kernels build algif_aead in, so unloading the module does nothing. Bottom line: any existing low-priv access - a shell on a container, a leaky service account, a CI runner - can now turn into root. Full story + 55 sources: https://lnkd.in/gH2s6XUc