Funes

@funes@infosec.exchange
163 Followers
337 Following
602 Posts

Some sort of threat researcher or something. Malware. Detection/Hunting. PNW.

"My memory, sir, is like a garbage heap."

FunesJun 10
Has #directorytraversalmemes gotten a look at CVE-2025-47176 yet? https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2025-47176
Show threadFunesOct 5, 2024
FunesSep 27, 2024
FunesAug 16, 2024

Been keeping an eye on this registrant registering DGA domains used for #socgholish payloads for a minute and noticed recently they were registering names outside of the usual random format.

These follow a pattern typical of their other next-stage payload servers where they redirect to Google if you navigate to the root dir:
getazurecommand[.]icu
azuregetrequest[.]icu
get-azurecommand[.]icu -> 67.217.228[.]186
azure-getrequest[.]icu -> 64[.]52.80.211

However these host a login page for an #hvnc service called #hvnc_blazor :
testmyws24[.]top -> 23.163.0[.]56
newrelayws24[.]top -> 5.161.234[.]18
testmyrelay[.]top
ws2424[.]top -> 168.100.11[.]52

#ioc #threatintel

FunesNov 28, 2023

Every week I ask myself why I still subscribe to this newsletter that has shifted to maybe a head nod towards security. This is the week I finally unsubscribe.

Here's my pulled-out-of-my-ass #ai prediction since everyone has been dispensing them freely: The largest public interaction with AI will be observed in the continued dramatic degradation of customer service. People already hate automated phone trees, they're going to hate them even more when they only direct customers to interact with an LLM agent and never a real person. A market for goods and services that promise they're untainted by AI will develop as a point of status for the wealthy and as an ethical decision for the middle class, similar to things like organic produce. Everyone else will just accept that everything has gotten shittier in quality while vocally bemoaning it with no intent to act on it, because why wouldn't they? They've accepted it with everything else in life so far because they know deep down that no one's actually fighting for them to have a good life, just a marginally acceptable cheap one.

But the thought that someday soon only the people outlined below will be employed seems so out of touch with what's happening in the world outside of the AI hype vacuum. It describes society cleft in two, featuring an empty automaton of an economy operating past its meaning like a Ray Bradbury short story and a world that has moved on to necessarily support itself in regardless of the other.

FunesSep 3, 2023

*just found detect.fyi* oh nice, a group publishing #detectionengineering content.

*opens an article*:

FunesAug 15, 2023
This #covid test got me stuck in an infinite loop.
FunesAug 14, 2023
I will say, it was fun seeing all the people that came with #meshtastic nodes. Had a good time chatting with y'all.
FunesJul 25, 2023
Not a lot of vetting of the lyrics #spotify uses it seems. I've noticed clearly incorrect lyrics coming up before, but this is pretty funny.
FunesJul 11, 2023
Finally took the time to set up a #DShield #honeypot to help contribute to the @sans_isc Thanks for all the hard work @jullrich I watched an old, old interview with you made by HackTV Underground and it pushed me to finally make it happen.