Hello, my name is Tony Muzo

I build security automation, threat intelligence reports, and cloud defense tooling.

Security Engineer
Automation Builder
Threat Intel Writer
Tony posing for a picture

Threat Intelligence

Profiling ransomware groups, mapping adversary TTPs, and producing high‑impact intelligence that drives defensive engineering.

Security Automation

Building tooling and pipelines that eliminate manual workload, accelerate investigations, and strengthen SOC efficiency.

Detection & Incident Response

Developing detections, coordinating incident response workflows, and translating complex attacker behavior into actionable defense.

Selected Work

A few of my security engineering, automation, and threat intelligence projects.

View All

Latest Writing

Cybersecurity notes, operator commentary, and practical defensive engineering essays.

Jun 26, 2026

Order-tracking app Shop abused to push callback phishing attacks

Verify all inbound support requests; assume legitimate apps can be weaponized.

 Jun 25, 2026

Attackers Hit Cisco SD-WAN Flaw 2 Months Before Disclosure

Active exploitation means immediate investigation and remediation of core network infrastructure is paramount.

 Jun 24, 2026

LastPass confirms data breach in Klue supply chain attack

A single third-party compromise amplified risk across multiple organizations.
Read Blog

Mentions

I have been fortunate enough to receive praise for my work in several publications. Take a look below to learn more.

  • GitHub

  • SANS Institute

  • Wazuh

  • Cisco Secure

  • OffSec