Steve Ragan (SteveD3) 

@[email protected]
3.2K Followers
2.5K Following
572 Posts
Father. Grandpa. Geek. Former journalist.
Hacker.
Security researcher.
Board of directors @CircleCityCon (RIP)
CMO @BSidesLV
Member: @CuratedIntel
Twitterhttps://twitter.com/SteveD3
GitHubhttps://github.com/steved3
Keybasehttps://keybase.io/steved3
Websitehttps://steved3.io/about/
Fedifiedhttps://fedified.com/@SteveD3
Steve Ragan (SteveD3) Mar 4
BSides Las VegasMar 4

Things are spinning up. First All Hands call happening tonight. Expect additional details soon, including room blocks, CFP, and more.

Save the dates: August 3rd, 4th, and 5th, 2026

Steve Ragan (SteveD3) Nov 29

RE: https://infosec.exchange/@SteveD3/114660976520491326

FTR, it was a great show. The whole cast was awesome. The lounge was really cool too. It was themed to look like the Slytherin common room. I wish all shows on Broadway had something like this.

Steve Ragan (SteveD3) Sep 12, 2025
Brian SlettenSep 12, 2025

Gregg Kellogg passed away this week. Most of you won’t know him but he was a good guy, very likable, and he worked tirelessly, as do many people, to develop internet/web standards so all of this just works.

These people don’t get a lot of recognition so, I just thought you should know.

RIP Gregg.

Steve Ragan (SteveD3) Aug 27, 2025
Zack WhittakerAug 26, 2025

I wrote some mid-week words for my newsletter (and now blog!) ~ this week in security ~ on Google today sounding the alarm over a new "widespread" wave of Salesforce data thefts targeting customers of Salesloft Drift.

Excited to share this with premium tier subscribers. ❤️

https://this.weekinsecurity.com/a-new-wave-of-data-thefts-are-targeting-salesforce-instances/

Salesforce instances targeted in new 'widespread' wave of data thefts

Salesloft confirmed a security incident affecting customers who integrate its Drift product with Salesforce. It's the latest wave of data thefts targeting Salesforce's instances.

~this week in security~
Steve Ragan (SteveD3) Aug 19, 2025

I'm amused. Just finished moving 11k archives (~20GB). Went to do another backup.

rsync -avzP --delete

The script did what it was asked to do... now I get to move all 11k archives a second time b/c of --delete. Lesson? You can't copy and paste your way out of everything.

Steve Ragan (SteveD3) Jun 10, 2025

Got tickets to go see Tom Felton in Harry Potter and the Cursed Child at the Lyric Theatre in November.

Should be a fun little pre-holiday trip.

Steve Ragan (SteveD3) May 24, 2025
Steve Ragan (SteveD3) May 16, 2025
Obfuscated JavaScript in Phishing Kits https://technicaloutcast.com/blog/2025/05/16/JavaScript-Phishing-Obfuscation/
Obfuscated JavaScript in Phishing Kits - Technical Outcast

While sorting phishing kits this morning, I discovered a clever use of JavaScript to hide an infostealer.

Technical Outcast
Steve Ragan (SteveD3) Apr 14, 2025
Josh BressersApr 11, 2025

I've had a bunch of people ask me why I wasn't at #VulnCon, so I wrote a blog post about it

TL;DR - I don't think VulnCon should exist

Follow me for more security hot takes

https://opensourcesecurity.io/2025/04-why-i-didnt-go-to-vulncon/

Why I didn't go to VulnCon

VulnCon 2025 is over. I didn’t go. A bunch of people have asked me why, and rather than keep my answer to a small group, I thought it would make sense to write something public about it all. The TL;DR is I went to a different conference that I thought was a better use of my time. The conference I went to was Cyphercon and BSides Milwaukee. They are regional conferences in Wisconsin. Good people, great shows, a lot of fun and learning. Yeah, it was technically the week before VulnCon, but I lack the fortitude to do two conferences back to back. Some people can, I tip my hat to those folks. I’m not one of them. I should be clear though, this isn’t the only reason. I also don’t think VulnCon should exist (more on that at the end).

Open Source Security
Steve Ragan (SteveD3) Apr 2, 2025
ChatGPT is generating some dark phishing images.