THREAD: When Chris Krebs and his workplace, SentinelOne, was singled out by Donald Trump on Wednesday, I thought it was an opportunity to weigh the cybersecurity industry's rhetoric against their real world actions.
Conversation
Notices
-
Embed this notice
razhael (razhael@infosec.exchange)'s status on Saturday, 12-Apr-2025 00:37:24 JST 
razhael
-
Embed this notice
razhael (razhael@infosec.exchange)'s status on Saturday, 12-Apr-2025 04:55:38 JST
razhael
Well, turns out not so much.
Let's start with Krebs' former employer, Microsoft. Krebs worked as a DC-based director for the software giant between 2014 and 2017, one of last jobs before helming CISA.
Microsoft's CEO Brad Smith told Congress in 2021 that:
"There is no value that is more fundamental and timeless in our country than our commitment to democracy."
Steve's Place repeated this. -
Embed this notice
razhael (razhael@infosec.exchange)'s status on Saturday, 12-Apr-2025 04:55:38 JST
razhael
Microsoft's response yesterday to the news that their former exec had been blackballed by the president?
"Nothing to share at this time."
-
Embed this notice
razhael (razhael@infosec.exchange)'s status on Saturday, 12-Apr-2025 04:55:39 JST
razhael
Chris Krebs is at every other conference. His leadership of CISA, his novelty socks, his pineapple pizza jokes, and his dramatic Nov. 2020 standoff with Trump have all contributed to making him something of a cyber mascot.
-
Embed this notice
razhael (razhael@infosec.exchange)'s status on Saturday, 12-Apr-2025 04:55:39 JST
razhael
As for the industry, it often casts itself as working at the frontline in fighting threats to Western freedoms, election interference, and foreign disinformation.
So surely the move to punish Krebs for defending the truth about America's elections - and to punish SentinelOne for the 'offense' of having hired him - would draw widespread, public indignation, right?
-
Embed this notice
All GNU social JP content and data are available under the