jbaggs

@jbaggs@infosec.exchange
235 Followers
172 Following
144 Posts

I've been in and out of information security professionally, but somehow always have related projects. Mainly working with zeek and network level detection at the moment. SDR, cycling, and climbing enthusiast.

I boost a lot. Topics range far and wide from security and "the cybers" and may include politics, food, humor, science, law, nature, art, and other sundry unsavories. I occasionally post my own projects and thoughts.

Pronounshe / him
Githubhttps://github.com/jbaggs
AgeSomewhere between Bianchi green and Soekris green
jbaggs34m ago
Michael Lucas 5h ago

WeTransfer just changed their ToS to allow them to train AI on any files you transfer through them.

Don't use there service, especially for work that you don't have the right to relicense to them (e.g., commercial work that's exactly the most likely to create the huge files WeTransfer specializes in).

(ETA: this is already going boom so I'm muting it.)

https://wetransfer.com/explore/legal/terms

WeTransfer - Send Large Files & Share Photos Online - Up to 2GB Free

WeTransfer is the simplest way to send your files around the world

WeTransfer - Send Large Files & Share Photos Online - Up to 2GB Free
jbaggs1h ago
Jeff Sikes10h ago

How many parked (unused) domains do you own? I have an idea and want to know if my assumption is correct.

Boost generously, please.

None
1-5
6-10
Over 10
Poll ends at .
jbaggs1h ago
Show threadabadidea1h ago
@GossiTheDog the best/worst part is how transparently she’s based on the psycho serial killer girlfriend from Death Note, whom elon was caught being horny on main for
jbaggs9h ago
Show threadEmily Velasco9h ago

This bicycle part is done. Lots of tiny, fiddly welding.

It's not as pretty as the commercial version, but hopefully it will work just as well

jbaggs10h ago
Raphaël Vinot13h ago

The whole EU age verification app thing is so exhausting. Yes, the tech specs are public, yes, the wallet app is opensource, yes, it could be done in a worse way.

Yet, it is still the newest attempt to answer the question: "can we tech hard enough to avoid having parents talking to their kids?"

And the answer is still no, you can't.

jbaggs10h ago
Tony “Abolish ICE” Arcieri🌹🦀12h ago

DOGE told regulator to ‘rubber stamp’ nuclear

The Nuclear Regulatory Commission's historic role of assuring safety is changing as the White House shifts some responsibility to the Department of Energy.

https://www.politico.com/news/2025/07/14/doge-to-regulator-rubber-stamp-nuclear-00450658

#uspol

jbaggs10h ago
Jack Daniel (often offline)12h ago
Happy Bastille day y’all
jbaggs11h ago
Zack Whittaker11h ago

Trump's "One Big Beautiful Bill" allocated $1 billion for the DOD to carry out "offensive" hacking operations. The budget also cut a billion dollars from defending the U.S. against cyberattacks.

https://techcrunch.com/2025/07/14/trump-administration-to-spend-1-billion-on-offensive-hacking-operations/

Trump administration to spend $1 billion on 'offensive' hacking operations | TechCrunch

A top Democrat criticized the move to spend a billion on offensive hacking operations as the budget guts a billion from U.S. cyber defense.

TechCrunch
jbaggs11h ago
Chris Adams12h ago

“One evening, as I made my husband walk our dog past the same scenic view multiple times so that I could get the best shot of it for a video, I experienced a sudden wave of revulsion for myself and what I was doing. From then on, I began to despise the way this supposedly necessary aspect of modern authorship was intruding on parts of me that I had never meant to be available for public consumption.

Worst of all, perhaps, it didn't even seem to be doing anything.”

https://www.carolinecrampton.com/im-done-with-social-media/

I'm Done With Social Media

Or: why I have a blog now.

Caroline Crampton
jbaggs1d ago
Cory Doctorow1d ago
Hey #Uruguay folks! I have cousins outside of Montevideo who have a complex of mental health and physical issues, and who are in food insecurity, and who have struggled to access services there. We have been sending them money for years but it's beyond our means. They need a social worker, and have failed to find one through regular channels. Is there such a thing as a private social worker who we can hire to get them into the system?
×
Show threadKevin BeaumontJul 5

2 and a bit days in and Ingram Micro still haven’t admitted what is happening, instead saying “Maintenance”

They’re both a large MSP and MSSP who sell anti-ransomware services.

#threatintel #ransomware

Show threadKevin BeaumontJul 5
There's also several hundred gigabytes of data out of Ingram Micro's network. I suspect they'll have a long running, uhm, maintenance.
Show threadKevin BeaumontJul 6

Three days in, Ingram Micro have updated their website to say they’re having a cybersecurity incident. They’ve also linked their press release, calling it ransomware. https://www.ingrammicro.com/

It’s a smart play as it makes them the owner of the narrative.

Show threadKevin BeaumontJul 7

Ingram Micro have filed an 8-K for ransomware.

Some incredible wordsmithing here - rather than say when the incident began, they say when they issued a press release. Which was days later than when the incident began. I think this is because they missed SEC reporting deadlines.

https://www.sec.gov/ix?doc=/Archives/edgar/data/1897762/000162828025034372/ingm-20250705.htm

#ransomware

Show threadGeorge Liquor, AmericanJul 7

@GossiTheDog
Item 8.01. Other Events.

On July 5, 2025, Ingram Micro Holding Corporation (the “Company”) issued a press release stating the Company identified ransomware on certain of its internal systems. Promptly after learning of the issue, the Company took steps to secure the relevant environment, including proactively taking certain systems offline and implementing other mitigation measures. The Company also launched an investigation with the assistance of leading cybersecurity experts and notified law enforcement.

A copy of the press release is attached hereto as Exhibit 99.1, noting that the Company is working diligently to restore the affected systems so that it can process and ship orders.
#AltText #Alt4You

Show threadZack WhittakerJul 7
@GossiTheDog live shot of Ingram Micro issuing its press release in the middle of a ransomware attack
Show threadEmoryJul 7
@zackwhittaker @GossiTheDog it's just as glorious as enron's shredder evolution
Show threadvampirdaddyJul 7
@GossiTheDog
German translatio of 8-K
= Ad-Hoc Meldung
https://www.deltavalue.de/form-8-k-sec-filing/
Form 8-K SEC Filing - Definition & Erklärung

Form 8-K Filing (SEC) ✅ Anleitung, Bedeutung & Interpretation ✅ So investierst und handelst du erfolgreich ✅ Jetzt mehr erfahren ➤

DeltaValue.de
Show threadInterpipes 💙13h ago
@GossiTheDog I didn't see you close the loop here but Ingram say they've been fully operational again since the 9th July (an email just landed in my mailbox promoting https://www.ingrammicro.com/en-us/information )
Show threadgreemJul 6
@GossiTheDog refreshingly honest, in comparison to M&S at least.
Show threadExpertenkommision CyberunfallJul 6

@greem @GossiTheDog

“refreshing honest” would have been wighin the first two hours…

Show threadRay—Golden Retriever Whisperer—🔝InsightsJul 6
@GossiTheDog because you wouldn’t want Palo Alto Networks to take over.
Show threadMulti :companion_cube:Jul 5
@GossiTheDog how/where do you observe global network flow like this, fwiw?
Show threadHugo MillsJul 5
@GossiTheDog Is this one of those irregular verbs? I am maintaining / you are restoring / she is pwned.
Show threadPhreakByteJul 5
@GossiTheDog Tabletop Exercise? 😁
Show threadBrian ClarkJul 5
@GossiTheDog their main line of business is as a distributor of IT equipment. Lots of smaller IT equipment resellers depend on Ingram Micro to fulfill their orders as Ingram does the warehousing and shipping of the products for them. One example: they are one of Cisco’s largest distributors. Same for thousands of computer accessory makers like Logitech, Belkin, etc.
Show threadRootWyrm 🇺🇦Jul 5

@deepthoughts10 @GossiTheDog this is a fundamental misunderstanding.

Ingram Micro is a *TIER 1*. There are only three of them; IM, TD Synnex, and AVNET. They do not do business with 'small.' I just happen to be a grandfathered customer in good standing from the 90's.

All the low tier MSPs are dealing with an entirely different arm. The minimums for a REAL customer is an insurable LoC of at least $10M last I looked.

Show threadBrian ClarkJul 5
@rootwyrm @GossiTheDog so I should have clarified what I meant by small. Some would call $10 million small, others would say medium. Regardless, there are thousands of resellers who rely on Ingram who will be hurting come Monday.
Show threadInterpipes 💙Jul 5

@GossiTheDog and iirc it's not possible to eject a reseller partner (even one that isn't currently placing licences in your tenant) from your MS365 tenant, either - the reseller has to delete the relationship (or maybe, if you can figure out a way to contact them, MS can do it for you).

Can't reseller partners create new global admins to do tenant recovery even if they have no role assigned?