Since the decline of peer-to-peer botnets it's been difficult to track malware infections externally. But smart contract based C2 infrastructure provided us with unique insights into this campaign.

https://expel.com/blog/clearfake-new-lotl-techniques/

My latest blog post investigating a malware campaign which infects victims by utilizing only legitimate infrastructure. The malicious activity spans hundreds of hacked websites, the BSC blockchain, and a popular CDN.

https://expel.com/blog/clearfake-new-lotl-techniques/

Just checking in on my investment portfolio, because apparently computers are appreciating assets now.

I've been researching some malware that uses Blockchain Smart Contracts as Command-and-Control infrastructure. Since blockchain data is public, I was able to write code to track how many new systems the malware infects each day. Blog post coming next week.

The other really wild thing about UK elections is while they're on a fixed term similar to how US elections are, the government can vote to hold an election basically whenever, at which point you have ~25 days until the election and ~26 until the new government takes over. During Brexit they called like 3 elections in 4 years and by the end of it everyone was so sick of democracy there was a proposed legislation to just have no more elections until a fixed date 💀

@GossiTheDog Yeah that's pretty standard for a vendor conference. It'll be a lot of internal employees, then a couple of external "big names".

@DasFaultier I'm leaning towards the latter. Seems futile to be taking toothless moral stances while the world burns