Idk.. -insert cyber stuff here- May or may not threat hunt May or may not partake in analysis of malware and research Meme master and lurker extraordinaire
Where are my #splunk contacts who can get me into a SOC tour at #splunkconf24 ? My rep never had the access to send invites out. I had a blast checking out the #Blackhat_NOC last time I was in town for a conference and would welcome the opportunity to compare. I’m also attempting persistence by just waiting to see if someone won’t show up.
Edit: I am upping the ante (it is Vegas after all). I have a fruit rollup for anyone who can get me in. #cybersecurity folks love fruit rollups right?
I've now confirmed 6 major orgs running Snowflake cyber incidents, so I've made a theme song about Snowflake's response.
This is why we can’t have nice things:
I did a thing today. :rondoudou: :rondoudou:
#giac #GREM #reverseengineering #malware #cybersecurity #infosec
https://youtu.be/jNgFmAY20wY?si=gQUUoSJDqU15iX8r
:pika: Oh nert. Thank you, #microsoft
#devtunnels #cybersecurity #RDP
Me: Nah, they can’t be this dumb :cutyou:
Also Me: *whispers* they are :pika:
Before deleting an account somewhere, be sure to obfuscate your data. Change your name, your email, profile photos, delete posts, and mess up everything you can. Some companies don’t fully delete your account or remove your data so obfuscating your info before deleting your account helps ensure it won’t come back. (It could if a backup gets hacked or the company keeps change logs, but that does not happen often)
#nice #tryhackme #cybersecurity
I’m mature.
@briankrebs Knock on wood, I’ve been ok (didn’t go to defcon, not sure if there’s a correlation between who has it or not). But all the more reason for sales people to let folks recover. Hoping for a speedy recovery to the folks you know who tested positive.
I know it’s their jobs, but I wish vendors and their sales reps from #hackersummer camp (particularly #blackhatusa ) would give us a solid two weeks of rest/‘catch up with work’ recovery time before bombarding us. :blob_dizzy_face:
I have no purchasing power.
#infosec community: pros and cons of working for a MDR?
More on this #Gootloader . It appears to be part of this August campaign: https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/gootloader-why-your-legal-document-search-may-end-in-misery/
Make sure if you visit a site and get the WP forum page with the link (and you want the sample), that you download immediately. They have some cool evasion tricks such as x-pingback, etc. to look to see if you've visited before and meet criteria, in order to hide their payloads from researchers.
Whelp. .#Gootloader up to some weird SEO poisoning. Don't ask how this one was found.
RequestURL: hxxps://cbxmodulars[.]com/can-you-legally-pee-in-your-car/
Sha256: 68433d5f8d59c5817dd50b6d37004ed2ff3a3ef53c6627eb157cbe96e972c263
Zip > JS (FileName (can't make this up): canyoulegallypeeinyourcar96503.js) > Wscript fun (TECHNI~1[.]JS).
Hardcoded C2s
Here are all the Blackhat USA 2023 presentations:
https://github.com/onhexgroup/Conferences/tree/main/Black%20Hat%20USA%202023%20slides
@folktale I appreciate the video context which caused my horrible travel tale. I haven’t flown since before the pandemic so this was 200 times worse than anything I had ever experienced. Makes sense why now; Thank you :)
#deltaairlines stands for “Don’t Expect Luggage To Arrive” or ‘we’ll keep one bag with you and send the other to Atlanta’ or ‘we’ll change your flight 5 times, lmao good luck making your connections.’
I should have stayed for #defcon
Going to be pretty heartbroken if all my swag from #Blackhat and personal items disappear into the void.
Met @JohnHammond at #BlackHat2023 today. Always nice to meet another person who wishes to protect the world from devastation.
:rondoudou: :rondoudou: :rondoudou:
I’m hereeeeee.
Prepare for trouble, #BlackHat2023 :pokeball:
T-minus 3 days until I leave for #hackersummercamp2023 ! I’ll be at #TheDianaInitiative , #bsideslv , and #blackhat ! No #defcon though :psyduck:
Look forward to hanging and meeting some awesome #cybersecurity folks! I’ll be volunteering on and off at the #WomansSocietyCyberJutsu booth at BH.
