Brian Clark

@[email protected]
540 Followers
1,031 Following
4.4K Posts

#InfoSec #Cybersecurity #threatintel and Politics. I try my best.
Also @[email protected]

Searchable

Verified by Twittodonhttps://twittodon.com/share.php?t=Deepthoughts10&[email protected]
Find my tootsTootfinder
Show threadBrian Clark1d ago
@neurovagrant same as it ever was
Show threadBrian Clark2d ago
@http_error_418 the DoD originally just called this aircraft “damaged”. It’s destroyed. The AWACS part of the AWACS plane is gone. It’s a total loss. $700 million to replace it, and that replacement will take a few years.
Brian Clark3d ago

RE: https://infosec.exchange/@ScumBots/116313336377653315

A legit service offers subdomains of hopto.org you can use for redirects. It’s often abused. Add it to your threat hunts and block if you are able. #cybersecurity

Brian Clark3d ago
404 Media4d ago
“It’s known by Minnesotans as a place where executives and CEOs live,” Parr the man behind a project get the neighborhood on Google Maps told 404 Media. “Famously Walter Mondale is from North Oaks, but also like United Healthcare executives and Target executives.”
https://www.404media.co/mapping-googles-unmappable-city/
Mapping Google's Unmappable City

How filmmaker Chris Parr put North Oaks, Minnesota on the map.

404 Media
Brian Clark5d ago
Lee Holmes 6d ago
THE BLOOMSCROLLING WILL CONTINUE UNTIL MORALE IMPROVES
Show threadBrian Clark5d ago
@cR0w @nopatience agreed!
Show threadBrian Clark5d ago
@badsamurai @FritzAdalis @Viss @cR0w this is the content I come to Mastodon for!
Brian Clark6d ago

RE: https://infosec.exchange/@VirusBulletin/116294907171305521

Etherhiding is an established but lesser known method of providing C2 information to malware. Most businesses do not need to allow access to the blockchain-related API / RPC endpoints used by this technique. I highly recommend you block them.

eth.llamarpc.com
mainnet.gateway.tenderly.co
rpc.flashbots.net
rpc.mevblocker.io
eth-mainnet.public.blastapi.io
ethereum-rpc.publicnode.com
rpc.payload.de
eth.drpc.org
eth.merkle.io

#cybersecurity

Brian Clark6d ago
Show threadSquiblydoo6d ago

My database is at CertGraveyard .org . We document these to keep a public record and to use it for cyber defense.

To that end we've also partnered with MagicSword (https://www.magicsword.io/plan?utm_source=certgraveyard&utm_medium=affiliate&utm_campaign=community-widget&utm_content=social ); their tool uses our database.
5/6

MagicSword | Prevent Modern Cyber Attacks

Stop malware-free attacks with agentless, AI-driven application control. Block what's abused, allow what your business needs.

MagicSword
Show threadBrian ClarkMar 25
@tayfonay you avoided being in a Seinfeld episode!