Daniel Cid

Founder of CleanBrowsing, Sucuri and OSSEC. Former VP Engineering, GoDaddy - CTO, Sucuri. Builder and breaker by heart...

#security #cleanbrowsing #dns #cdn #opensource #infosec

Daniel Cid boosted:
Dean Burnett (that brains guy)Garwboy@ohai.social
2025-06-04

This is my PhD thesis

I did not ask for this

I did not consent to this

I did not approve of this

I was not compensated for this

I would not have advised this

I do not like this

And worst of all, the number of people who've read my thesis has still not increased.

Email saying "An AI created a podcast of your paper"

Said paper is my PhD dissertation, "The Role of The Hippocampus In Configural Learning"
Daniel Ciddcid@noc.social
2025-06-04

Have you noticed this "?slince_golden=test" requests on your logs?

It is for a WordPress Backdoor. We wrote a small summary about it here:

trunc.org/learning/slince_gold

Seeing it on your logs too?

Daniel Cid boosted:
lcamtuf :verified: :verified: :verified:lcamtuf@infosec.exchange
2025-05-18

I'm old enough to remember when our #1 concern about the veracity of online information was that anyone could edit Wikipedia

Daniel Cid boosted:
2025-05-17
Screenshot of an article entitled “How the Web Became Unreadable” with the lede obscured by a Medium login modal
Daniel Cid boosted:
Linux Is BestLinux@mastodon.au
2025-05-14

⚠️ Change your Steam Password ⚠️

89,000,000 usernames, passwords, and 2-step verification codes have been leaked.

After changing your password, you may wish to reset your 2-step code too.

techradar.com/pro/security/hac

#Steam #SteamPowered #Game #Gaming

Daniel Ciddcid@noc.social
2025-05-14

We put up a list with the top domains (most visited) via our DNS intelligence:

dnsarchive.net/top-domains

top 100
top 1,000
top 10,000

Daniel Cid boosted:
Neil Craigtdp_org
2025-05-12

I noticed that a *lot* of the crawlers/bots we see on www.bbc.co.uk & www.bbc.com are spoofed e.g. a "Meta" crawler coming from 10s of different small ISPs across the world (the real one comes from a Meta ASN).
I deployed a change this morning which adds source ASN validation (alongside user-agent string analysis) to our "known crawlers/bots" classifier & well, the results speak for themselves. Attached graphs show RPS from "known crawlers/bots" to www.bbc.co.uk & www.bbc.com.

Graph of requests from "known crawlers/bots" over time to www.bbc.co.uk for today.
The graph is relatively steady until about 08:45 UTC when it drops by about 90%Graph of requests from "known crawlers/bots" over time to www.bbc.com for today.
The graph is relatively steady until about 08:45 UTC when it drops by about 90%
Daniel Ciddcid@noc.social
2025-05-02

First thing I do on any of my new ubuntu servers:

apt install net-tools

Just so I can have my old ifconfig back.

Daniel Ciddcid@noc.social
2025-05-02

@mike805 agree. That would be perfect

Daniel Ciddcid@noc.social
2025-05-01

Big loss for Apple, big win for everyone else:

theverge.com/news/659246/apple

Hopefully next is the freedom to easily install Apps from anywhere - outside of the app store.

Daniel Cid boosted:
nixCraft 🐧nixCraft
2025-05-01

Microsoft: We write 30% of code using Gen AI.

The rest of the world: That explains the current state of Windows 11, MS-Office and all other products.

Daniel Ciddcid@noc.social
2025-04-17

Not always DNS, but close...

On April 16, between 2:25 P.M. ET and 4:12 P.M. ET, the domain zoom.us was not available due to a server block by GoDaddy Registry. This block was the result of a communication error between Zoom’s domain registrar, Markmonitor, and GoDaddy Registry, which resulted in GoDaddy Registry mistakenly shutting down zoom.us domain.

status.zoom.us/incidents/pw9r9

Daniel Ciddcid@noc.social
2025-03-31

If you want to help support this ( noc.social ) Mastodon instance, you can do so here:

buy.stripe.com/5kA7tAduCbdT5ZS

We will also create a page for all the supporters that wish to be listed.

Thanks!

Daniel Cid boosted:
2025-03-31
Daniel Ciddcid@noc.social
2025-03-31

@dermoth @tony Oh yes, thats the plan. We will update to 4.3 as soon as it is required, but it is quite a bit of work...

Daniel Ciddcid@noc.social
2025-03-01

@ste @29821632 ah, anyone have a contact at quad9 to see why they got it blocked?

Daniel Ciddcid@noc.social
2025-02-26

@light @msh @me We don't block them, maybe they block us?

Daniel Cid boosted:
2024-10-23

The number of DDoS attacks spiked in the third quarter of 2024. Cloudflare mitigated nearly 6 million DDoS attacks, representing a 49% increase QoQ and 55% increase YoY. blog.cloudflare.com/ddos-threa

Daniel Ciddcid@noc.social
2024-10-23

I love the "security insights" at trunc.org to quickly review any security-relevant logs.

Easy flag and check for:

-Accounts added
-Accounts deleted
-Logins from tor
-Logins from blacklisted IPs
-Apps installed
-Apps deleted
-Logs cleared
-System crashes
-Low memory warnings
-Disk space warnings
-Review logins

And a bunch more options to quickly see the current state of security based on the logs.

Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst