DomainToolsAug 28, 2024

Scattered Spider continues its operations despite high-profile arrests. These arrests have pushed the group to iterate and adopt new tactics, including using different domain name patterns to target new employees unfamiliar with security protocols.

https://www.govinfosecurity.com/tracking-elusive-cybercriminals-through-domain-analysis-a-26022

🔍 Key Insights from Malachi Walker, Security Adviser at DomainTools:
🔹 The group’s decentralized structure allows it to remain resilient and operational.
🔹Analyzing domain registrations and IP addresses can uncover connections between campaigns and aid law enforcement.
🔹Knowing when a domain was created helps narrow down the compromise window and block associated domains.

📽️ Watch Malachi Walker’s interview at DEF CON 2024 with Information Security Media Group (ISMG) to learn more about:
🔹Scattered Spider’s decentralized operations
🔹The importance of a domain activity timeline
🔹Proactive threat detection and incident response

Stay vigilant and proactive! 🛡️

#CyberSecurity #ThreatDetection #DEFCON2024 #DomainTools

Tracking Elusive Cybercriminals Through Domain Analysis

Scattered Spider, a notorious cyberthreat group, has continued its operations despite a series of high-profile arrests. The group's decentralized structure, in

Benjamin Carr, Ph.D. 👨🏻‍💻🧬Aug 22, 2024

“Disenshittify or Die”

#CoryDoctorow's talk on #enshittification at #Defcon32
https://doctorow.medium.com/https-pluralistic-net-2024-08-17-hack-the-planet-how-about-a-nice-game-of-chess-a26c73418baf #Defcon #Defcon2024

“Disenshittify or Die” - Cory Doctorow - Medium

I’m coming to BURNING MAN! On TUESDAY (Aug 27) at 1PM, I’m giving a talk called “DISENSHITTIFY OR DIE!” at PALENQUE NORTE (7&E). On WEDNESDAY (Aug 28) at NOON, I’m doing a “Talking Caterpillar” Q&A…

Medium
Marcel SIneM(S)USAug 16, 2024
Noch kein Patch: Sicherheitsforscher beraubt Windows sämtlicher Schutzfunktionen | Security https://www.heise.de/news/Noch-kein-Patch-Sicherheitsforscher-beraubt-Windows-saemtlicher-Schutzfunktionen-9834479.html #BlackHat2024 #BlackHat24 #BlackHat #DefCon #DefCon32 #DefCon2024
Noch kein Patch: Sicherheitsforscher beraubt Windows sämtlicher Schutzfunktionen

Stimmen die Voraussetzungen, können Angreifer Windows Update manipulieren, um beliebige Windows-Komponenten durch veraltete, angreifbare Vorgänger zu ersetzen.

heise online
JelloeaterAug 13, 2024
https://www.theregister.com/2024/08/13/defcon_badge_disagreement_gets_physical/
#defcon32 #defcon2024
DEF CON badge disagreement gets physical as firmware dev removed from event stage

Is it not a strange fate that we should suffer so much fear and doubt for so small a thing?

The Register
Marcel SIneM(S)USAug 12, 2024
#MostEpicFail: #Crowdstrike-Präsident nimmt #PwnieAward persönlich entgegen | Security https://www.heise.de/news/Most-Epic-Fail-Crowdstrike-Praesident-nimmt-Pwnie-Award-persoenlich-entgegen-9831647.html #Hacking #DefCon32 #BlackHat #DefCon2024 #DefCon24 #BlackHat24 #BlsckHat2024 #PwnieAwards #PwnieAwards2024 #PwnieAwards24
Most Epic Fail: Crowdstrike-Präsident nimmt Pwnie Award persönlich entgegen

Elf Pwnie Awards für bemerkenswerte Bugs, Hacks, Exploits oder Fehlleistungen. Crowdstrike gab zu, "schlimm versagt" zu haben.

heise online
Marcel SIneM(S)USAug 12, 2024
CPU-Sicherheitslücke in #AMD-Prozessoren ermöglicht #Malware-Infektionen | heise online https://www.heise.de/news/CPU-Sicherheitsluecke-in-AMD-Prozessoren-ermoeglicht-Malware-Infektionen-9831278.html #DefCon2024 #DefCon24 #DefCon #DefCon32
CPU-Sicherheitslücke in AMD-Prozessoren ermöglicht Malware-Infektionen

Sicherheitsforscher haben eine als Sinkclose bezeichnete Sicherheitslücke in AMD-CPUs entdeckt und auf der Defcon 32 in Las Vegas präsentiert.

heise online
Light🐧⁂Aug 12, 2024

🤦 Unbelievable among the tools the hotel that hosts Def Con is a breadboard and any soldering kit. I mean wtf 🤣😂, what security dander the soldering kit could be and what about the innocuous breadboard. ⁉️

#defcon33 #defcon2024 #tools

https://www.404media.co/here-are-the-hacker-tools-a-def-con-hotel-is-hunting-for/

Here are the Hacker Tools a DEF CON Hotel is Hunting For

Resorts World is searching rooms daily for hacker tools. 404 Media obtained the list of hunted items.

404 Media
IrishMASMSAug 11, 2024

What a surprise, #defcon has shit on people again & there is drama with the badges - again 🙄

https://www.404media.co/def-con-badge-maker-pulled-off-stage-amid-claims-of-non-payment-and-failed-work/

#cultofpersonality #defcon2024 #DefCon32 #shitty #badgelife #hackers #hackersummercamp #summercamp #hackernews #infosec #hackersummercamp2024

DEF CON Badge Maker Pulled Off Stage Amid Claims of Non-Payment and Failed Work

Entropic Engineering, the small company that helped manufacture this year’s DEF CON badge, claims the conference organizers failed to pay for completed work. DEF CON says the company went well over budget.

404 Media
Crash and CompileAug 11, 2024

The final standings for Crash and Compile. Congratulations to haxx og spaghetti for their win at Crash and Compile.

All the teams were great. Thank you all for playing our game this year. #defcon32 #defcon2024 #defcon

James_inthe_boxAug 10, 2024

Blue teamers attending #defcon2024 #blackhat2024 : YEA! AWESOME!

Blue teamers not attending: Ugh...all these new vulns...