Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈ

@[email protected]
596 Followers
731 Following
796 Posts

Senior information security engineer specializing in incident response for a large company in healthcare. Creator of yaramail, checkdmarc, and parsedmarc. #Progressive political junkie. #Democracy, #LGBT, and #disability advocate.

The views and opinions expressed here are my own, and not represent those of my past, current, and post-apocalyptic employers.

Location: #Cincinnati, #Ohio, #USA

Pronouns: he/him

Topics: #Python #programming, #SoftwareDevelopment #OpenSource #OpenSourceSoftware #FLOSS #SystemAdministration #SysAdmin #IncidentResponse #ThreatIntel #ThreatIntelligence #OSINT #InfoSec #CyberSecurity #NationalSecurity #NatSec #DFIR #BlueTeam #Healthcare #ADHD #Neurodiversity #CerebralPalsy #Politics #Geopolitics #USPolitics

Bloghttps://seanthegeek.net
GitHubhttps://github.com/seanthegeek
Keybasehttps://keybase.io/seanthegeek
LinkedInhttps://www.linkedin.com/in/seanwhalen
PGPFA79559B4D44CF1
Twitterhttps://twitter.com/seanthegeek
Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈMar 9, 2025
#Politics #USPolitics #Resist #Protest
Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈDec 21, 2024

In this post I take a deep dive into a fake CAPTCHA on a compromised website, and the multistage fileless loader that delivered the Lumma Stealer malware if visitors followed its instructions.

#Google #reCAPTCHA #WordPress #PowerShell #Malware #Emmenhtal #Infostealer #LummaStealer

https://seanthegeek.net/posts/compromized-store-spread-lumma-stealer-using-fake-captcha/

Compromised store spread Lumma Stealer using a fake CAPTCHA

In a shift in tactics the fake CAPTCHA was added to an existing site, instead of using malvertizing or SEO poisoning

seanthegeek.net
Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈNov 18, 2024
Chris πŸ‡©πŸ‡ͺ πŸ‡ΊπŸ‡¦ πŸ‡ͺπŸ‡Ί | πŸŽ— | πŸ’‰βΆNov 18, 2024
BlueSky is a relief. Healthy, comforting and reminding me what #twitter was. And what it has become. But, please: donΒ΄t leave #Ukraine over at twitter/X. They already fear - and feel - it. This is the moment when I decided to help πŸ‡ΊπŸ‡¦ with everything I can, with all the strength I have.
Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈNov 17, 2024

There is an American tradition of attributing the state of the economy – good or bad to whoever is in the White House. Democrats made a mistake by focusing more on Donald Trump than Kamala's plans to address food prices and housing.

https://seanthegeek.net/posts/my-conversation-with-a-shy-trump-voter-taught-me-why-harris-lost/

#politics #USPolitics #Harris #Trump #election2024 #economics #economy

My conversation with a shy Trump voter taught me why Harris lost

Democrats did not or could not do enough to counter misconceptions about economics amplified by Trump allies

seanthegeek.net
Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈNov 3, 2024
GeriAQuinNov 3, 2024
#dog #dogs #dogsofmastodon
Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈOct 18, 2024

 Hava Laudon and conservatives like her want an education system that conforms to their religious and racial views. Their religion and politics demand that children must never know about the existence of LGBT people or dark parts of US history.

Please pay attention to your local education races.

https://seanthegeek.net/posts/hava-laudon-spouts-false-anti-lgbt-conspiracy-theory-to-justify-evangelical-control-of-public-education/

#Education #Election2024 #LGBT #Disinformation #Misinformation #Facism #Christofascism #Politics #USpolitics

Hava Laudon spouts a false anti-LGBT conspiracy theory to justify evangelical christian control of public education

A candidate for Ohio Board of Education District 5 cites an unspecified β€œLGBT agenda” while discussing child abuse in a video interview posted to her campaign website

seanthegeek.net
Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈOct 11, 2024

In past elections I have skipped over education elections on the ballot because education is not my specialty, and I don't have kids. This year, I'm so glad I took a few minutes to Google the candidates for Ohio's State Board of Education in southwest Ohio (5th district).

Mary E. Bineger is an education professional with a master's degree and many years of experience to back it up.

Hava Laudon's credentials are endorsements from GOP groups and a BS in Ministry Leadership from Moody Bible Institute. She supports sending taxpayer funds for education to private religious schools and has spread lies about LGBT people.

The choice is clear. Please don't skip over these races.

https://seanthegeek.net/posts/hava-laudon-spouts-false-anti-lgbt-conspiracy-theory-to-justify-evangelical-control-of-public-education/

#Education #Election2024 #LGBT #Disinformation #Misinformation

Hava Laudon spouts a false anti-LGBT conspiracy theory to justify evangelical christian control of public education

A candidate for Ohio Board of Education District 5 cites an unspecified β€œLGBT agenda” while discussing child abuse in a video interview posted to her campaign website

seanthegeek.net
Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈOct 5, 2024

If anyone wonders why weakened encryption that the government can break is a bad idea, this is why.

https://www.wsj.com/tech/cybersecurity/u-s-wiretap-systems-targeted-in-china-linked-hack-327fc63b

Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈOct 3, 2024
Opinion | The Guardian USOct 2, 2024
JD Vance’s debate lines were so polished you could forget they made no sense | Moira Donegan https://www.theguardian.com/commentisfree/2024/oct/02/jd-vance-debate-performance #USelections2024 #KamalaHarris #Republicans #DonaldTrump #USpolitics #Democrats #Abortion #JDVance #TimWalz #USnews
JD Vance’s debate lines were so polished you could forget they made no sense

Trump’s running mate had the greasy self-assurance of someone used to lying to people he thinks are stupid

The Guardian
Sean Whalen πŸ‘¨πŸΌβ€πŸ¦ΌπŸ³οΈβ€πŸŒˆπŸ‡ΊπŸ‡¦πŸ•ŠοΈOct 2, 2024

The Russian cybercrime group FIN7 ran a network of fake AI undressing sites that delivered credential stealing malware to those who uploaded pictures. I gotta say, this is one group of cybercrime victims that I don't feel sorry for.

https://www.silentpush.com/blog/fin7-malware-deepfake-ai-honeypot/

#FIN7 #Russia #Cybercrime #NetSupport #NetSupportRAT #RAT #Malware #CredentialTheft #AI #Deepfake #Deepfakes #DeepNude #DeepNueds #SilentPush

FIN7 hosting honeypot domains with malicious AI DeepNude Generators – New Silent Push research - Silent Push

Table of contentsKey findingsExecutive summaryBackgroundInitial findingsNetSupport RATFIN7 malware: NetSupport RAT analysisFIN7 AI deepfake honeypotsFIN7 β€œfree download” honeypotsFIN7 β€œfree trial” honeypotsFIN7 using SEO tactics to spread honeypotsFIN7 AI Deepfake malware analysisAdditional informationMitigating FIN7 activityRegister for Community Edition Key findings Silent Push research indicates FIN7 threat actors are using a new artificial intelligence (AI) β€œDeepNude Generator,” on

Silent Push - We Know First