Founder of CleanBrowsing, Sucuri and OSSEC. Former VP Engineering, GoDaddy - CTO, Sucuri. Builder and breaker by heart...
This is my PhD thesis
I did not ask for this
I did not consent to this
I did not approve of this
I was not compensated for this
I would not have advised this
I do not like this
And worst of all, the number of people who've read my thesis has still not increased.
Have you noticed this "?slince_golden=test" requests on your logs?
It is for a WordPress Backdoor. We wrote a small summary about it here:
https://trunc.org/learning/slince_golden_wordpress_backdoor
Seeing it on your logs too?
I'm old enough to remember when our #1 concern about the veracity of online information was that anyone could edit Wikipedia
⚠️ Change your Steam Password ⚠️
89,000,000 usernames, passwords, and 2-step verification codes have been leaked.
After changing your password, you may wish to reset your 2-step code too.
We put up a list with the top domains (most visited) via our DNS intelligence:
https://dnsarchive.net/top-domains
top 100
top 1,000
top 10,000
I noticed that a *lot* of the crawlers/bots we see on www.bbc.co.uk & www.bbc.com are spoofed e.g. a "Meta" crawler coming from 10s of different small ISPs across the world (the real one comes from a Meta ASN).
I deployed a change this morning which adds source ASN validation (alongside user-agent string analysis) to our "known crawlers/bots" classifier & well, the results speak for themselves. Attached graphs show RPS from "known crawlers/bots" to www.bbc.co.uk & www.bbc.com.
#WebDev #BBC #Bots
First thing I do on any of my new ubuntu servers:
apt install net-tools
Just so I can have my old ifconfig back.
@mike805 agree. That would be perfect
Big loss for Apple, big win for everyone else:
https://www.theverge.com/news/659246/apple-epic-app-store-judge-ruling-control
Hopefully next is the freedom to easily install Apps from anywhere - outside of the app store.
Microsoft: We write 30% of code using Gen AI.
The rest of the world: That explains the current state of Windows 11, MS-Office and all other products.
Not always DNS, but close...
On April 16, between 2:25 P.M. ET and 4:12 P.M. ET, the domain zoom.us was not available due to a server block by GoDaddy Registry. This block was the result of a communication error between Zoom’s domain registrar, Markmonitor, and GoDaddy Registry, which resulted in GoDaddy Registry mistakenly shutting down zoom.us domain.
If you want to help support this ( noc.social ) Mastodon instance, you can do so here:
https://buy.stripe.com/5kA7tAduCbdT5ZS7sw
We will also create a page for all the supporters that wish to be listed.
Thanks!
Oracle Still Denies Breach as Researchers Persist https://www.darkreading.com/cyberattacks-data-breaches/oracle-still-denies-breach-researchers-persist
The number of DDoS attacks spiked in the third quarter of 2024. Cloudflare mitigated nearly 6 million DDoS attacks, representing a 49% increase QoQ and 55% increase YoY. https://blog.cloudflare.com/ddos-threat-report-for-2024-q3/
I love the "security insights" at https://trunc.org to quickly review any security-relevant logs.
Easy flag and check for:
-Accounts added
-Accounts deleted
-Logins from tor
-Logins from blacklisted IPs
-Apps installed
-Apps deleted
-Logs cleared
-System crashes
-Low memory warnings
-Disk space warnings
-Review logins
And a bunch more options to quickly see the current state of security based on the logs.
