Things are not always what they seem
Redfin | Rent Head of Information Security
Former Ubisoft Director of Security Operations
Microsoft Alumni | Former Director of MSRC's Cloud Incident Response | He/Him/Hrm | Philosopher & Ninja
SANS:
GCIH #16353 - Cerified Incident Handler
GWAPT #3274- Web Application Pen Tester
GXPN #164 - Exploit Researcher and Advanced Penetration Tester
@GossiTheDog ok. Officially notified.
You feel strongly on the signs of IOC for that particular mongodb though?
If you reward technology teams to ignore cybersecurity, they will.
If you think security teams can magically stop criminals and spies while this is happening, you are fooling yourself.
Asciicinema joins the crab army! https://blog.asciinema.org/post/three-point-o/
That one is straight outta the UK LAPSUS playbook btw, eg they frequently get access to Azure and start spinning up VMs and using them to host data from other victims, they daisy chain them together like The Data Centerpede so every victim hosts other stolen data.
ReliaQuest may have been detailing the Prosper incident there, we’ll see.
Jimmy Kimmel show got cancelled by his network for saying:
“The MAGA Gang desperately trying to characterize this kid who murdered Charlie Kirk as anything other than one of them and doing everything they can to score political points from it.. In between the finger-pointing, there was grieving,”
Good thing everybody is so concerned about free speech.
https://www.cnbc.com/2025/09/17/charlie-kirk-jimmy-kimmel-abc-disney.html
@GossiTheDog sigh
Yup... if the cloud fixes it and the customer doesnt have to take action for a fix, then it's mostly silent.
Due diligence review of potential post-breach unauthorized access is completely excluded
CVE is obsolete in cloud service paradigm
:/
Mark Simos
Taggart
Kevin Beaumont