Mastodawn

Taco 🌮

42 Followers

20 Following

74 Posts

Software developer for 15+ years interested in infosec.

When I'm not hanging out with the family or at my day job I enjoy writing and contributing code. I like to create and break software.

#Golang entertains me.
#C++/C feeds and shelters me and my family.
#Python is my ongoing one night stand apparently.

I used to break web base chat rooms in the mid 90's and keep that passion going keeping up with infosec type things and #CTF like activities.

I'm here to learn more and get more engaged with the #infosec community. I'm willing to entertain a career shift as well.

My Github Profile

https://github.com/steampoweredtaco

Taco 🌮Jan 31, 2023

Just got this email from Google Fi of a breach, doesn't indicate which third party had the breach.

Indicates they have my sim card serial and activation dates, sound like a purchase order.. I think the important info is that my phone number may be included.

Given an attacker may have the sim serial and my number how exposed am I to them socially engineering an attack calling up the telecom with that info? Is this serious or a nothing burger?

Please boost if you know someone that may have a good answer. #GoogleFi #Security #Leak #3rdParty

Taco 🌮Nov 29, 2022

Stay safe out there... Just got this in an email. The email is PayPal's and it almost looks legit. Scammers trying to get you to pay them now with a misleading PayPal payment request. #scam #psa

Anyone else gotten these lately?

Taco 🌮Nov 23, 2022

https://www.theverge.com/2022/11/22/23471842/facebook-hr-block-taxact-taxslayer-info-sharing

Facebook has been receiving users’ financial info from tax preparers

The Markup found that tax preparation services including TaxAct, TaxSlayer, and H&R Block have sent users’ personal financial information to Facebook through the Meta Pixel.

The Verge

Taco 🌮Nov 17, 2022

#DoNotBeMe and forget john likes equal signs when specifying the wordlist parameter but too polite to criticize you if ya forget.

It actually claims it is reading the list with an ambiguous message. I think that is from it parsing as a hash list, see image for the output when ya forget the equal sign. I feel adequately trolled. I just wasted so much time on a #CTF. I won't make that mistake again...maybe...pretty sure I have many times and never realized it.

Thinking about it that's probably why hashcat seems to work all the time when John doesn't for me....grrrrr!

Taco 🌮Nov 16, 2022

We're having an ugly Christmas sweater party at work. Just ordered mine...hope it comes in time!

Taco 🌮Nov 14, 2022

🖼

Taco 🌮Nov 13, 2022

Grandpa brought this old word processor for the kids.

25 year old ribbon broke on first use... ✅
Realize we need a 3.5 floppy disk after writing a couple pages before saving... ✅

A replacement ink costs over 120 use... Likely we are going to try to find it another home, maybe a classic repair shop that needs parts?

Still, my 9 year old was really into it for a bit. So cool to see the love for certain technologies transcending generations.

Taco 🌮Nov 11, 2022

Anytime I have time to update my wife is also home with the kids using the data storage. I much rather risk a security breach than their wrath

No, I do not trust these updates will restart my NAS in a good state if I am not looking and let these run unattended.

Yes I find it ironic that when I'm missing sleep while they are asleep I'm busy with #CTF boxes learning how scared I should be instead of updating.