Andras Iklody

@[email protected]
523 Followers
197 Following
102 Posts
Caffeinated MISP lead dev (he/his)
Andras Iklody1d ago
Kevin Beaumont1d ago

Oracle have laid off 30k employees today. They did it to personal email accounts at 6am 🫡 saying they needed the money to spend on GenAI instead. https://thenextweb.com/news/oracle-layoffs-march-2026

Oracle’s share price since they went GenAI nuts:

Andras Iklody2d ago
qjerome2d ago

🪲 Bug Fix in pure-magic!

I just fixed a tricky offset computation bug in pure-magic, your pure Rust port of libmagic for safe file identification. So, make sure you are using the latest version available for your toolings.

🔎 Check it out

- Rust Crate: https://crates.io/crates/pure-magic
- CLI Tool (replaces file): cargo install wiza
- Python Bindings: https://pypi.org/project/pure-magic-rs/
- Repository: https://github.com/qjerome/magic-rs

#Rust #FileIdentification #OpenSource #Python

crates.io: Rust Package Registry

crates.io serves as a central registry for sharing crates, which are packages or libraries written in Rust that you can use to enhance your projects

Show threadAndras Iklody5d ago
@uztq what the hell... This should be a lesson learnt for all european efforts, relying on US partners at the moment is a massive liability.
Andras Iklody6d ago

RE: https://toad.social/@KimPerales/116296287470500816

Hope this isn't true, what guarantees are there for other EU-US collaborations that the funds won't be redirected?

https://infosec.exchange/@KimPerales@toad.social/116296287808070299

Show threadAndras IklodyMar 17
@a I love this one. That's how you start a proper flame-war!
Andras IklodyMar 17
@x_cli @a Yeah, it actually is, quite a few useful tools listed in one place.
Show threadAndras IklodyMar 17
@a I hope they stick to their guns and stop using anything from the list. Good luck avoiding curl
Andras IklodyFeb 13
circlFeb 13

An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthenticated attacker to leak specific stored credential data.

#cybersecurity #ivanti #vulnerabilitymanagement #vulnerability

Thanks @reverseics for the infographics and Ivanti for the continuous source of discoveries.

https://db.gcve.eu/vuln/CVE-2026-1603

Andras IklodyJan 26
Show threadOtmar LendlJan 26

@briankrebs just cancel the Olympics and the FIFA World Cup as the next step.

I will not travel to the US in 2026 just as sure as I would not recommend time travel to Germany 1936 to a jew.

Andras IklodyJan 1
Alexandre DulaunoyJan 1

Someone asked me, “Have you read the latest Dan Brown?” There’s actually a mention of MISP in The Secret of Secrets. And yes, it fits surprisingly well within the story. Alex Conan (who assists Jonas Faukman in the investigation) mentions that he detected the activity using FTK, and that the indicators were later reused by the threat actor (having a hit on a MISP instance).

“But before I could build the algorithm, my FTK scan returned a hit. One of
the IoCs from this hack had a match on MISP associated with known—"

“Alex, I have no idea—"

“All you need to know is that the people who hacked PRH were in a hurry!
They saved time by using a piece of their own recycled code—duplicated strings
that hackers call copy pasta! It saves time, but it also risks revealing—"

@misp

#misp #danbrown #cybersecurity #threatintelligence