nice article from Guardio on AI prompt injection with lots of pictures and clear examples.

#threatintel #ai #malware #phishing #cybercrime #cybersecurity #infosec

https://guard.io/labs/prompt-inception-when-ai-becomes-the-single-source-of-truth-whose-truth-will-it-be

Fucking scammers.

Earlier this week i figured out that my mother-in-laws attempted scammer was running in azure. 8thoctioserror3[.]z13[.]web[.]core[.]windows[.]net

Then her brother-in-law showed me text messages this afternoon from scammers trying to get his Bitcoin at Coinbase. lovely.

Then our kiddo gets this lovely pop up trying to read restaurant reviews just now.

redinstantnews[.]shop

is yet again some #tds hiding in cloudflare likely running a ton of fraud.

#threatintel #scam #cybercrime #cybersecurity #infosec

Designed with deniability in mind.

#threatintel #scam #cybercrime #cybersecurity #infosec #adtech

https://www.qurium.org/doppelganger/catfish-incorporated/

The most controversial topic in Seattle might be outdoor cats, so a No Kings protest is like a city-wide block party drawing 90k people and lots of silliness.

At the April protests, white middle age women were way overrepresented ... this was not the case yesterday. I saw all ages, all colors,... all kinds of diversity.

Super proud of #seattle #nokings #protest ... and fuck the furlough.

for the record, i have no position on outdoor cats. too dicey.

A year ago, i could get scammed on any device, any browser, from my home network. Now this has become quite challenging. Which: yay! boo!

It's great that there are more protections from malicious traffic distribution systems (TDS) but it makes me work for my research. lol.

Part of this change is a mystery to me. Maybe you have an idea?

There's interference happening at the network level in the ISP. Now, regardless of the browser or the device, i'll get an SSL protocol error -- so i'm just dead in the water.

At first i thought it was a DNS RPZ, but the DNS is passing through fine. The mucking is happening on the connection.

i've even had a few cases where i was able to get the scam content and then less than a minute later, on the same browser, it was blocked. and then the system remembers - that domain is dead for me afterwards.

I can still use a res proxy or go to a local cafe on the same device and get content. so yeah, it's my ISP. and a colleague reported the same in South America. so a network security appliance, i think. .Zscaler?

if you have thoughts, feel free to privately respond. bad guys watch my linkedin, so i'm sure they found my mastodon too. i'm sure they find my political posts riveting .maybe i should post more knitting.

#dns #threatintel #scam #cybersecurity #infosec #tds