For the past 4.5+ years, MasterCard has had a typo in its DNS records, where one of its domains was named as a22-65.akam.ne, instead of a22-65.akam.net (Akamai).

Fortunately for MasterCard, the person who figured this out is one of the good guys, and he's actually here on Mastodon: @titon. I interviewed @titon -- Philippe Caturegli, founder of the security firm Seralys, in a story last year on domain name collisions.

https://krebsonsecurity.com/2024/08/local-networks-go-global-when-domain-names-collide/

Curiously, a look into the passive DNS for this domain via DomainTools indicates that someone in Russia registered this domain akam.ne in 2016 and had it sporadically resolve to an IP address in Germany for a few years (185.53.177,31). May have also involved the email address um-i-delo@yandex.ru.

Just a reminder to check your DNS records for typos. Because if you don't control the domain name that your name servers are pointing to, there is virtually no end to the world of hurt that crooks can visit on your organization.

@forbes 30-under-30 never misses. https://www.yahoo.com/tech/ai-startup-ceo-forbes-30-192337094.html?guccounter=1

If you haven't used it before I highly recommend you give zizmor from
@yossarian a spin -- https://github.com/woodruffw/zizmor

GH actions are a common place for footguns, use this to protect your toes, feet, ankles and bug bounty program

Had an excellent time presenting "web3 security is embarrassing" at #defisecuritysummit and #devcon

Understanding RedLine Stealer: The Trojan Targeting Your Data https://malwr-analysis.com/2024/08/22/understanding-redline-stealer-the-trojan-targeting-your-data/

@Aconite33 I understand your account seems to predominantly exist to promote your tool but I can't figure out anyway that it being 'recursive' would solve the problem over my scaling docker workers? How does writing a bbot module help fetch whois and rdap for 260k domains, I'd still need to actually make those queries?

@joriki unfortunately not, I want to grab the whois and rdap data to identify the registrar's :(

If I was looking to pull the RDAP and Whois data for about 250K malicious domains (mixed TLD, ccTLD, gTLD, etc) -- is there anyone who can help me with the data? Doing it with `whois` and https calls and going slow to avoid rate limits is kicking my ass!

X's first transparency report since Musk reveals a surprising contradiction https://www.zdnet.com/article/xs-first-transparency-report-since-musk-reveals-a-surprising-contradiction/#ftag=RSSbaffb68

https://techcrunch.com/2024/09/24/moneygram-blames-cybersecurity-issue-for-ongoing-days-long-outage/

A friend of mine asked "How do you deal with this?" to which I replied that I dealt with it almost 2 years ago when I deleted my account.

Why people remain on Twitter, I do not know.

https://www.theverge.com/2024/9/23/24252438/x-blocked-users-view-public-posts

@lorenzofb I'm genuinely trying to understand, and I dont know how to make this not come across like an ass... but is there anything new in this? This has been the process of jailbreaking since GPT3 was released, its also been on their bugbounty that they *explicitly* dont do jailbreaks, for... always?

@singe @samczsun @tay We are hoping to become honorary squarespace security members ^_^

therapist: are these "stakeholders" in the room with us right now?

Worthy of Wednesday Addams.

@f4grx @bagder what about companies that deal with finance? Robinhood? Are they really so different to coinbase

@singe a lot of the time sec industry as a whole defaults to crypto is bad/scam/not technically good. But dprk bring their a-team for it so it's technically fun. Everyone has likely already seen ownage of their accounts either themselves or 1 hop away and because the ROI is so high for attackers there is a lot of exec level buy in for security. It's also pretty much doing a speed run of the sec we have already done in a new format (ie simulation of transactions vs vm environments) but nothing has been preset so there is a lot of space for building new interesting security tooling and ideas

@roastveg @bagder with this attitude you should be careful about using public wifi. Most likely it's due to the fact that converting it back would be a taxable event and result in the project not getting as much. All of your reasons show an unfortune gap in your knowledge, but a common sec insight, which is always surprising to me. I'd recommend you look at some of the more recent blackhat talks on the topic, it is really interesting!