chetwisniewski

chetwisniewski, 1 day ago to random

Moved some stuff today to my storage locker. Got me thinking of @spike @threatresearch and his work at the Media Archaeology Lab. My original Amiga 1000 serial number 700. Price tag shows original $1295 USD price from 1985, $3775 today. 256 KB RAM if I recall. Amazing system at the time.

Amiga 1000 price tag at $1295.00 USD from 1985

chetwisniewski, 4 days ago to random

@coffeegeek Are your guides still in progress with the site makeover? I was trying to read this one and it seems to only partly be there? https://coffeegeek.com/guides/howtos/americano-how-to/

chetwisniewski, 12 days ago to random

Before my Canadian followers watch the Vancouver Canucks take it to the Edmonton Oilers at Rogers Arena, you can tune into CTV News and Global BC to hear my thoughts on the British Columbia PSC breach and where it might likely lead us. Expect to be on at 5 and 6 on both networks.

chetwisniewski, 18 days ago to random

OK, I think we are close to final on the new logo for my podcast with @0xBennyV

chetwisniewski, 22 days ago to random

My piece from Global BC on the London Drugs cyber attack is now on their site: https://globalnews.ca/news/10459821/london-drugs-closed-tuesday-western-canada-cybersecurity-breach/

chetwisniewski, 23 days ago to random

For my followers in Western Canada I will be on CBC Radio's The Calgary Eyeopener Apr 30 at 8:10AM MDT (7:10 PDT) and on Global BC Morning News (TV) at 6:10AM PDT talking about the London Drugs cybersecurity incident.

chetwisniewski, 24 days ago to random

Hey hockey fans! It's not just Stanley Cup fever season, don't forget the Professional Women's Hockey League (PWHL) is still playing as well. TOR vs. NYC on now on CBC, SportsNet, and YouTube

chetwisniewski, 29 days ago to random

I said something yesterday at the Vancouver Cloud Summit that I will repeat here:

"Logs are cheaper than lawyers".

When deploying to the cloud, especially "cloud native" applications you must ensure you are collecting logs for analysis, threat hunting, and forensics. Platforms have logging off and often charge for it. Turn them on, protect them and USE THEM.

chetwisniewski, 1 month ago to random

COVID for the second time. I'm starting to think I can no longer travel to speak at InfoSec events. Masked flying, masked on transit, etc. Only unmasked for a while at the event itself and this is my reward.

chetwisniewski, 2 months ago to random

Public service ads are hard. Congratulations to the BC Securities Commission on incredibly smart and impactful awareness of crypto scams. HTTPS://cryptoscams.ca

chetwisniewski, 2 months ago to roadtrip

Off on a road trip. Went thru Kamloops BC ("Tournament Capital of Canada"?), Revelstoke, Golden, Banff, Lake Louise, Canmore, Calgary, Medicine Hat, Moose Jaw, Regina, and Winnipeg so far. First long distance trip in our EV. So far, (mostly, f u Moose Jaw charger repair guy) so good. Shocking how windy the prairies can get in winter and how much it affects efficiency. #RoadTrip #ElectricVehicles #Canada

chetwisniewski, 3 months ago to infosec

My "big picture" take on the LockBit disruption this week is now live. We are seeing more frequent law enforcement action against all sorts of cybercrime groups and I think we need to step back and take stock of what is working and what isn't so we put our energies where they are likely to achieve the best outcomes.

Come for my .02 cents and stay for the snark. #InfoSec #LockBit https://news.sophos.com/en-us/2024/02/21/lockbit-lessons-learned-on-winning-the-war-on-cybercrime/

chetwisniewski, 3 months ago to random

I was delighted to see my talk "Building defensive playbooks from others misfortune" from RootCon 2022 was just surprise posted to YewTube. Check it out, still relevant after 18 months. https://yewtu.be/watch?v=V_UrmsnOBbg

chetwisniewski, 3 months ago to infosec

I know many of you are #InfoSec experts, but I think I have a slightly different take than most on this whole Lockbit affair. Odds are I am wrong, but that hasn't dissuaded me from expressing my thoughts before, so I hope to publish a blog in the next day or so with my thoughts. Things are never quite what they seem, and I wonder if this is a genuine step change for law enforcement's approach to this intractable dilemma.

chetwisniewski, 3 months ago to infosec

I feel like such an underachiever. I have had a Flipper Zero since it launched and I still have the same number of cars I started with. #InfoSec #Canada

chetwisniewski, 3 months ago to random

I ordered a beautiful new leather desk mat on Etsy from a small shop in Ukraine (Mureli https://www.etsy.com/ca/listing/917432262/large-leather-mouse-pad-personalized). It's great and they even sent me a video of them making it. Best part is the postage. Slava Ukraini! #SlavaUkraini

chetwisniewski, 3 months ago to infosec

I'm excited to see my BSides London talk "Breaking Bad Multifactor" is now posted on YouTube. Originally scheduled for PasswordsCon at BSides Vegas (COVID cancellation).https://yewtu.be/watch?v=s7l6Ump6eqQ #BSides #InfoSec @boblord @thorsheim

chetwisniewski, 3 months ago to infosec

Security advocates need to communicate risks more clearly and ensure the messages reach the right audience, not create more complicated, sophisticated defences. #InfoSec #ChangeMyMind

chetwisniewski, 3 months ago to random

Well folks, especially those who used to like to listen to the Sophos Security Chet Chat podcast will be pleased to hear that @0xBennyV and I are starting a new podcast soon. We've decided to call it "Security Take 2" and will be doing more in-depth analysis of security topics that have made it into the headlines.

Headlines are misleading and often designed for clickbait, we will go deeper on these stories and try to take some lessons from the facts. Our goal is to make each episode 25-30 mins.

chetwisniewski, 3 months ago to infosec

So the "takedown" of Volt Typhoon routers is interesting, but I am curious why it was done.. . To what end? They are all still vulnerable and instantly reinfectable and no patches were supplied (as far as I've heard). So... Sending a signal? #InfoSec #AmIDumb

chetwisniewski, 3 months ago to random

Looks like Lush Cosmetics were victims of Akira as they have appeared on their leak site. Akira has exploited unpatched Cisco ASA VPNs in the past, wondering if the same here? They use them according to Shodan data.

chetwisniewski, 4 months ago to random

It's getting harder and harder to not publicly say critical things about the competition...

chetwisniewski, 4 months ago to rant

Can someone explain to me why I have to repeatedly reapply for my US permanent overseas voter ballot (not sure which sea, I live in Canada). They literally lecture you on the page saying you should add yourself to the permanent list to reduce admin burden. Which part of permanent suggests I want to fill it out every 2 years and pay international postage to "renew" my permanentness? #rant

chetwisniewski, 4 months ago to random

For those of you who wish to monitor the weather situation in Vancouver my skycam and street cams are available:
Sky: https://mym7.com/I9NMI85pZox/Patio-skycam

Street: https://mym7.com/Qds5kJU1MAJ/Hamilton-Street-Yaletown-Vancouver-Canada

#BCStorm

chetwisniewski, 4 months ago to random

Reminder for folks in the lower mainland of British Columbia. Roads are a mess. Stay home. If you must go out SLOW DOWN. #BCStorm