remember kids: lack of consequences is tantamount to permission.

not holding people accountable for being fucking monsters is giving them permission to continue being monsters.

Accidentally found legit websites that have been compromised in the last few days and couldn't find evidence that anyone else had found this yet: Two automotive forums I used to go to regularly - VW Vortex and Land Rovers Only - have had malicious code slipped in at some point in the last week. It's subtle, but definitely there, and has specific targeting aimed at noscript/adblock users. And I know it was within the last 7 days at most because I have links to both of them on my own website, and I have a background process that runs every week to check whether sites I've linked to still exist. These two have been fine for a long time, but both threw up a 409 Conflict error tonight. Weird. Checked them out, and both try to redirect to or download random files from generic-sounding domains like "enable-javascript[.]com" or "error-report[.]com", with behind-the-scenes assets like CSS pulling from more obviously sketchy domains like "cheftoondiligord[.]site".

It's 5am local time as I write this, and I didn't set out looking for a Research Project™️ tonight, but a cursory search yielded no coverage or flagging about this yet, so, hopefully this post is useful to some threat intel folks ^.^ #infosec #threatintel #malware

Greetings fellow humans.

My podcast editor has suggested that I start uploading episodes to YouTube, and to accomplish this, that I should get some artwork done to serve as a wall-paper-y thing for the audio to play over.

Is there any chance that there are any artists here that would be interested in a small job? Might be a long shot, but someone that listens to the podcast will probably have great opinions on the vibe!

We are working to add the Net NTLMv1 Raindbow Table to our collection.

It’s in .rt format and takes up 8TB, but compressing it will get it down to 4TB. If anyone knows of a utility to convert from .rt to .rt2 that would be great as that is just as good as compression.