@GossiTheDog@cyberplace.social
@GossiTheDog@cyberplace.social avatar

GossiTheDog

@GossiTheDog@cyberplace.social

Cybersecurity weather person and award winning shitposter. Shitposting is an anagram of Top Insights. You may be surprised to know I am not representing my employer here and these are not their opinions.

I have Direct Messages disabled - you can send them, but I will never receive them.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

You haven't lived 'til your infosec vendor takes one of your documents which they detect as suspicious, and then uploads it to VirusTotal publicly.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

@expertenkommision_cyberunfall it did, in fact, happen.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

@Seruko yeah they took it down same day

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

@ryanrester

video/mp4

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

Burn the planet for shareholder value! Woo!!

Microsoft released its 2024 Sustainability Report. Last year, Microsoft's emissions went up 29%, and it used 23% more water, primarily due to "new technologies, including generative AI."

https://blogs.microsoft.com/on-the-issues/2024/05/15/microsoft-environmental-sustainability-report-2024/

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

Companies monetising all your cloud data for their own benefit

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

Slack have decided to start training AI on enterprise customer data, including DMs, private workspaces and files. You have to have admin opt out via email. HT @Quinnypig

https://slack.com/intl/en-gb/trust/data-management/privacy-principles

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

Qakbot, commonly used by ransomware groups, has been dropping a Windows zero day exploit allowing non-admin -> SYSTEM elevation since at least over a month ago.

The vulns are again in DWM, and they’re again trivial variances which Microsoft haven’t allocated engineering resources to fix. https://www.bleepingcomputer.com/news/microsoft/microsoft-may-2024-patch-tuesday-fixes-3-zero-days-61-flaws/

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

If this sounds eerily familiar look at prior CVEs for DWM. Microsoft 100% know the code needs fixing - but nobody is willing to resource fixing it. So now we all rely on Kaspersky to find exploitation, and get owned in the process.

My prior posts on it: https://cyberplace.social/@GossiTheDog/111519357076446107

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

I thought the FBI were about evidence? Maybe the evidence was stolen on the made up USB airport devices they keep warning about.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

If you ever receive intelligence on somebody called ‘IntelBroker’, know a couple of things:

  • multiple people use that alias
  • they’re not as credible as the CTI industry thinks
  • they overplay their hand all the time

tarleton state horse GIF

GossiTheDog, (edited ) to random
@GossiTheDog@cyberplace.social avatar

Like @Quinnypig, I’d love if Google went on the record about what happened with this one.

https://www.unisuper.com.au/contact-us/outage-update

Tl;dr is an entire org got wiped, and they’re trying to suggest it’s some kind of Google Cloud issue as the cause.

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

Google Cloud (GCP) CEO has gone on the record now and said directly they accidentally deleted a $125bn business cloud estate in error. https://qz.com/google-cloud-pension-fund-unisuper-1851472990

A config mistake at Google’s end led to their VMs being deleted.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

LockBit victims currently running incidents with Citrix Netscaler initial entry, by sector: finance, freight, legal, defence

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

The Boeing incident led to a $200m ransom demand: https://cyberscoop.com/boeing-confirms-attempted-200-million-ransomware-extortion-attempt/

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

Prior recaps on and LockBit by me: https://doublepulsar.com/lockbit-ransomware-group-assemble-strike-team-to-breach-banks-law-firms-and-governments-4220580bfcee

https://doublepulsar.com/mass-exploitation-of-citrixbleed-vulnerability-including-a-ransomware-group-1405cbb9de18

https://doublepulsar.com/what-it-means-citrixbleed-ransom-group-woes-grow-as-over-60-credit-unions-hospitals-47766a091d4f

GossiTheDog,
@GossiTheDog@cyberplace.social avatar

I got in loads of trouble for writing those blogs, but looking back I think they stand up, were important and helped defuse a situation where people weren’t paying enough attention.

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

deleted_by_author

    •
    GossiTheDog,
    @GossiTheDog@cyberplace.social avatar

    Now 250 hours into Starfield, level 122. Playing in survival mode, 45% XP boost in exchange for the game being tougher in theory - although in practice, since enemies are no longer bullet sponges I'm finding combat easier.

    Spent the last two days pirating ships, stealing them, selling their goods, raiding settlements and selling contraband. 2.6 million credits in that time. Not long until I'm the Hero of Canton!

    GossiTheDog,
    @GossiTheDog@cyberplace.social avatar

    That screenshot on my gaming PC with the crazy monitor.

    GossiTheDog,
    @GossiTheDog@cyberplace.social avatar

    Grand Theft Spaceship from a space station.

    GossiTheDog,
    @GossiTheDog@cyberplace.social avatar

    I've got a whole fleet of ships in this game, but this one - the worst looking one - that I made is my favourite. It has a cargo hold 400k deep, like 21 landing gears otherwise it won't take off, and it makes no sense... Also loads of space for smuggling.

    GossiTheDog,
    @GossiTheDog@cyberplace.social avatar

    As Morbius once said , It's Lootin' Time

    GossiTheDog,
    @GossiTheDog@cyberplace.social avatar

    After several hundred hours in Starfield, I just discovered there are mech factories on Mars.

    GossiTheDog,
    @GossiTheDog@cyberplace.social avatar

    Right, signing off for now, leaving my crew on Mars. Yes, I mounted an alien's head inside the ship on the wall.

    GossiTheDog, (edited )
    @GossiTheDog@cyberplace.social avatar

    Venus according to . (Protip: if in survival mode, bring a suit that survives 350 degrees C heat or you melt after 20 seconds).

    GossiTheDog,
    @GossiTheDog@cyberplace.social avatar

    I said "hello" to the locals here and gave them a surprise security test.

    GossiTheDog, to random
    @GossiTheDog@cyberplace.social avatar

    Microsoft quietly snuck out a blog yesterday to say that Office 365 got compromised by China and used to steal emails. Thread follows. https://msrc.microsoft.com/blog/2023/07/microsoft-mitigates-china-based-threat-actor-storm-0558-targeting-of-customer-email/

    GossiTheDog,
    @GossiTheDog@cyberplace.social avatar

    The German security services are suing Microsoft over failure to disclose information about one of the Microsoft 365 security breaches: https://www.heise.de/en/news/BSI-verklagt-Microsoft-auf-Herausgabe-von-Informationen-zu-Security-Desaster-9722507.html

    I doubt they will get very far as Microsoft takes steps to avoid legal disclosure in security incidents.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • tacticalgear
  • DreamBathrooms
  • osvaldo12
  • mdbf
  • everett
  • magazineikmin
  • khanakhh
  • Youngstown
  • rosin
  • slotface
  • modclub
  • kavyap
  • anitta
  • normalnudes
  • ngwrru68w68
  • thenastyranch
  • cisconetworking
  • Durango
  • ethstaker
  • InstantRegret
  • Leos
  • provamag3
  • GTA5RPClips
  • tester
  • cubers
  • megavids
  • lostlight
  • All magazines
    •