Lea 'LadyBug' Viljanen

@[email protected]
126 Followers
74 Following
67 Posts
Full stack cybersecurity pro: from hacking to management. Consultant, #bugbounty business owner. Finland. She/her/they. Occasional medievalist.
Co-Founderhttps://www.hackr.fi
Ownerhttps://www.lavsecurity.fi
Lea 'LadyBug' ViljanenOct 14, 2024
Jashas, taas on yksi sovellus paskennettu. Ampparit-appi vaatii nykyään Alma-tunnuksen. Onneksi webbisivut vielä toimivat ilman.
Lea 'LadyBug' ViljanenNov 3, 2023
#Opsec is hard and in this case it was #opsex. The Vastaamo hacker, who leaked psychotherapy records of thousands was caught for example by using the same IP address for Onlyfans. https://www.iltalehti.fi/digiuutiset/a/54fd8352-3a57-4fef-9581-9b61cf77c2b3
Onlyfans-osto yhdisti Aleksanteri Kivimäen Vastaamo-tietomurtoon

Keskusrikospoliisin esitutkinnasta käy ilmi, että poliisi yhdisti tietomurtoon ”digitaalisen sormenjäljen” avulla.

Lea 'LadyBug' ViljanenOct 17, 2023
Have a Cisco IOS XE device with http access from the internet? Congratulations, it’s emergency review time. https://arstechnica.com/security/2023/10/actively-exploited-cisco-0-day-with-maximum-10-severity-gives-full-network-control/
“Cisco buried the lede.” >10,000 network devices backdoored through unpatched 0-day

An unknown threat actor is exploiting the vulnerability to create admin accounts.

Ars Technica
Lea 'LadyBug' ViljanenOct 16, 2023
web3 is going just greatOct 16, 2023

Hackers host malicious code on Binance chain to circumvent takedowns

October 13, 2023
https://web3isgoinggreat.com/?id=hackers-host-malicious-code-on-binance-chain-to-circumvent-takedowns

Hackers host malicious code on Binance chain to circumvent takedowns

An otherwise very "web2" hack has taken on a web3 twist as hackers have started to store malicious code on the blockchain. Attackers first compromise WordPress websites, then show a screen to visitors telling them they need to update their browser to view the website. When the visitor does so, the site downloads malware which then harvests information like login credentials.Attackers previously stored the malicious code on typical webhosting services, but those services began to take it down. Now, some have started using Binance's blockchain to store these payloads, taking advantage of the immutable nature of blockchains to prevent anyone from taking it down.

Web3 is Going Just Great
Lea 'LadyBug' ViljanenOct 11, 2023
mhoyeOct 11, 2023
A slide from a presentation I just finished.
Lea 'LadyBug' ViljanenOct 6, 2023
"#Ylilauta on rekisteröity Maltalle yritysnimellä Lauta Media. Se on tehnyt viime aikoina yritysjärjestelyitä, joiden myötä tuntemattomaan maahan rekisteröity holdingyhtiö on ostanut siitä lisää osuuksia." Tuoksahtaako hybridioperaatio vai veronkierto? https://www.hs.fi/nyt/art-2000009902380.html
Ylilauta siirtyi osin maksu­muurin taakse

Suomi-internetin pimeä nurkka muuttui osin maksulliseksi.

Helsingin Sanomat
Lea 'LadyBug' ViljanenAug 27, 2023
Toivon että maanantainne ei ala näin. #kahvi #pissa #partiolainen
Lea 'LadyBug' ViljanenAug 1, 2023
Tim DierksJul 31, 2023
Advanced password security tip: write it on the BACK of the Post-It
Lea 'LadyBug' ViljanenJul 27, 2023
Lauren WeinsteinJul 27, 2023
There once was a man name of Musk,
Who from #Twitter to X did disgust.
One day he did find,
When he checked his ...
[No, I can't say it even as a limerick.]
Lea 'LadyBug' ViljanenMar 22, 2023
isaacsMar 7, 2023

It's amusing to me that star trek imagined a world where an AI faces social rejection because he's rational, fact based, literal, fiercely/dogmatically moral, and struggles with social nuance. But here in reality we invented AIs that have no concept of truth, give zero fucks about accuracy, have no rationality, and can't do math, but match vibes and tone nearly perfectly.

The first artificial person will not be an autistic science officer. It'll be an extremely allistic salesbro or politician.