Jeremy Kirk

@jkirk@infosec.exchange
1.6K Followers
490 Following
671 Posts
Threat intel @ Intel 471. Personal account. Interests: Cybercrime, cyber threat intelligence, OSINT, data breaches, photography. Also produce Intel 471's "Cybercrime Exposed" podcast. #Australia
Bluesky@jkirk.bsky.social
LinkedInhttps://www.linkedin.com/in/jeremykirk/
Podcasthttps://podcasters.spotify.com/pod/show/cybercrimeexposed
Website
Twiiter
AI scraping of original postsI do not consent to my content being used for any LLM or AI training.
Jeremy Kirk4h ago
The leader of the Black Basta ransomware group employed a trusted, experienced cybercriminal actor who went by the nickname Tinker. Tinker, who worked for the infamous Conti ransomware group, could quickly drum up phishing content aimed at stealing VPN creds and analyze stolen data to figure out how much an organisation might pay in ransom. Tinker knew how to run criminal call centers to social engineer victims into installing remote access software. More here from Intel 471's Adversary Intelligence team: https://intel471.com/blog/a-look-at-tinker-black-bastas-phishing-fixer-negotiator
A look at ‘Tinker,’ Black Basta’s phishing fixer, negotiator

The leader of the Black Basta ransomware group employed a trusted, experienced cybercrime actor nicknamed Tinker who he relied on for phishing content,…

Intel 471
Jeremy Kirk2d ago
This is the first time I've seen privacy used as a marketing argument for eyeglasses. Is Zenni's claim is accurate? Does deflecting infrared light foil facial recognition/AI-based tracking? #infosec
Jeremy KirkMay 26
Tomáš ZnamenáčekMay 24
I’ve just realized how RADICAL it feels to open a Wikipedia app on my phone and look up a topic without anyone trying to sell me something, steal my data or hit me with random genAI nonsense. What have we done?
Jeremy KirkMay 17
Matt BlazeMay 16

Imagine you scheduled a group brainstorming session to get some important work done, and one of the attendees casually mentions that they took LSD for the first time right before the meeting.

That's how you should treat ChatGPT output.

Jeremy KirkMay 15
Russian man Andrei Tarasov was indicted on cybercrime charges related to the Angler exploit kit. He was arrested in Germany but slipped away to Russia — despite his anti-Russian views. Research by Intel 471 #infosec https://intel471.com/blog/how-an-alleged-russian-hacker-slipped-away
Jeremy KirkMay 4
This didn't take long at all: "A hacker has breached and stolen customer data from TeleMessage, an obscure Israeli company that sells modified versions of Signal and other messaging apps to the U.S. government to archive messages." #infosec via @404mediaco https://www.404media.co/the-signal-clone-the-trump-admin-uses-was-hacked/
The Signal Clone the Trump Admin Uses Was Hacked

TeleMessage, a company that makes a modified version of Signal that archives messages for government agencies, was hacked.

404 Media
Jeremy KirkApr 9
The White House has ordered an investigation of CISA and taken away Christopher Krebs' security clearance. It also has suspended security clearances of SentinelOne employees pending a review. A "Fact Sheet" calls Krebs "a significant bad-faith actor who weaponized and abused his government authority" and who "falsely and baselessly denied that the 2020 election was rigged and stolen." #infosec https://www.whitehouse.gov/fact-sheets/2025/04/fact-sheet-president-donald-j-trump-addresses-risks-from-chris-krebs-and-government-censorship/
Fact Sheet: President Donald J. Trump Addresses Risks from Chris Krebs and Government Censorship

RESTORING TRUST IN GOVERNMENT: Today, President Donald J. Trump signed a Presidential Memorandum revoking any active security clearance held by Chris

The White House
Jeremy KirkMar 12
Since 2024, Russia-based bulletproof hosting service Zservers has been breached, doxxed and sanctioned, but there are signs this cybercrime and ransomware service provider may not be finally done. New research from Intel 471. #infosec https://intel471.com/blog/zservers-bulletproof-hosting-for-crime
Jeremy KirkMar 11
Nice chart of paid OSINT tools here plus an accompanying report on them from the UK OSINT Community group. #infosec https://www.osint.uk/state-of-the-market
UK OSINT State of the Market: Paid Tool Landscape Map (Free Guide)

Discover the UK OSINT Community’s Paid OSINT Tool Landscape Map, a free guide to paid OSINT tools for UK investigators. Identify the right solutions for your workflow—download now.

Jeremy KirkMar 9
Went out for a mountain bush walk this morning and child #2 spots this delight -- a blue mushroom! We looked for smurfs but unfortunately didn't find any. #Australia