Mastodawn

DaLanShark Apr 18, 2023

On a webcast today, I contradicted that there were "two types" of companies, those who have been breached, and those who haven't been breached YET, was wrong.

We have to think about those companies that are being breached, and they don't know it YET.

We really need to think about bad controls, poor detection of control failure, insiders who know how to avoid internal controls... The breach didn't start when the ransom notice appeared on the screen.

DaLanShark Apr 10, 2023

Lesley Carhart

Apr 8, 2023

Pals, I don’t know who needs to hear this but one of the most offensive things you can say to somebody who has bought something new - especially a big purchase - and is sharing the news with you is, “here is why you should have bought this alternative instead”, like they’ve fucked up or they should have spent 5x as much on something else. They already gave someone money. They’re invested.

Some people just don’t get this nuance when they want to share knowledge about something they’re really excited about, but I really have to warn you that’s an incredibly hurtful thing to say that folks don’t forget. They probably were working within a budget, or within specific constraints or needs you are not fully aware of.

They probably do know what they’re doing. You are talking down to them and basically implying they’re stupid. You’re not helping and you don’t look smart.

DaLanShark Apr 10, 2023

Matt Blaze Apr 9, 2023

This month is the 30th anniversary of the announcement of the Clipper Chip, the first of many bad ideas for weakening cryptography with "key escrow" backdoors. Clipper is long dead, but its ghost continues to haunt us from time to time.

https://gizmodo.com/life-and-death-of-clipper-chip-encryption-backdoors-att-1850177832

The Short Life and Humiliating Death of the Clipper Chip

Thirty years ago, the U.S. government first floated the idea of a backdoor into public-key encryption, an idea it's been obsessed with ever since.

Gizmodo

DaLanShark Apr 10, 2023

InfoSecSherpa Apr 9, 2023

I made a homemade Passover treat of coconut macaroons. The left were dipped in semi-sweet chocolate and the right were dipped in a white & semi-sweet mix. They both have orange essence in them, to give a little citrus enhancement. Most of these are going to neighbors. Most 👀

DaLanShark Apr 3, 2023

Recon InfoSec Apr 3, 2023

Join us THURSDAY @ 12:30pm CT for THURSDAY DEFENSIVE! A 30min fireside chat with defensive people around the industry.

This week's guest: @likethecoins talking about threats to watch.

https://reconis.co/3LBhCR9

#infosec #thursdaydefensive

Thursday Defensive Webcast - Recon InfoSec

Unscripted, commercial-free discussions between seasoned cybersecurity professionals, streamed live.

Recon InfoSec

DaLanShark Apr 3, 2023

Matthew Green Apr 3, 2023

I really don’t know why you’d store your data in a cloud operated by Western Digital. But if you did, you’re in trouble. https://www.bleepingcomputer.com/news/security/western-digital-discloses-network-breach-my-cloud-service-down/

Western Digital discloses network breach, My Cloud service down

Western Digital announced today that its network has been breached and an unauthorized party gained access to multiple company systems.

BleepingComputer

DaLanShark Mar 30, 2023

Joe Słowik Mar 30, 2023

My awesome colleague @JohnHammond worked through the night with fellow @huntress analysts to produce this overview of #3CX #3CXApocalypse attack paths and vendor-neutral defensive guidance. Honestly the best summary and overview of activity since the initial CrowdStrike disclosure. #DFIR #ThreatIntel #CTI
https://www.huntress.com/blog/3cx-voip-software-compromise-supply-chain-threats

3CX VoIP Software Compromise & Supply Chain Threats

The 3CX VoIP Desktop Application has been compromised to deliver malware via legitimate 3CX updates. Huntress has been investigating this incident and working to validate and assess the current supply chain threat to the security community.

DaLanShark Mar 30, 2023