simplenomad, 2 months ago to infosec

This xz backdoor thing reminds me of a story I heard from friends that worked at a tech company that made cell phones. They had a great coder that worked on the project, he had put in work as a contractor for a few months, and due to the quality of his work he was hired in full time. After two months he simply stopped showing up to the office.

An investigation turned up the following interesting items. His account had accessed all files including source code to all cellular projects - in that he had apparently downloaded a copy of everything. He had committed a large amount of contributions to the project he was assigned to. None of his paychecks were ever cashed. A wellness check to the house he had rented was performed and the house was completely empty. Per the landlord he'd paid for 6 months rent in advance in cash. Apparently he never physically moved in. No record for him nor his social security number seemed to check out. The guy was a ghost.

I was asked about recommendations on future prevention by friends who worked there - no idea how far they got in their investigation, if backdoors were ever found or even existed, or if the Feds were ever involved. The punch line? This was probably a couple of decades ago.

This shit is real, and it has been going on for a long time.

#infosec

simplenomad, 3 months ago to fediverse

Hmmm, every server I'm getting spam from has a new user in their public directory named yqqwe, and each one of these users is following mastodon_admin_yggwe on a single-user instance mastodon.tinynews.org. One can look at the 924 followers of this admin and they all are named yqqwe and they are all on servers I've been getting #spam from. #fediverse #moderation #administration

simplenomad, 5 months ago to blogging

GitLab is hiring for a #redteam position, the position is somewhat unique in that #cicd experience, #blogging, and even #conference speaking would help land this job. Feel free to boost to get many #infosec eyes on it. And if we know each other I could put in a good word for you.

https://boards.greenhouse.io/gitlab/jobs/7056513002

simplenomad, 6 months ago to infosec

A non-techy friend asked for my best “hacker advice” on securing their laptop and online accounts. When I said turn on patching, decent password manager, use MFA, etc (you know, the basics) they acted like I had punched them.

Them: “But that’s what everyone says!”

Me: “So have you?”

Them: “…”

#infosec

simplenomad, 2 months ago to solar

So. That was impressive. Here’s a quick sample from the backyard. Of note: temperature drop from 79.3 to 74.8, #solar production from the panels dropped to 0 and the house draw from the grid was the usual constant 420 watts, once the sun started coming back out the panels ramped back up, the temperature continued to drop for a few minutes to 74.5 but finally started edging up, and the dog could give a shit and just wandered around sniffing like usual.

Wow. The pictures don’t do it justice. Jupiter was visible to the left and Venus to the right (not in picture).

#eclipse #totality #texas #eclipse2024

Solar eclipse under way, minor experimenting with lens selection from iPhone 15 Pro Max. Held an ISO 12302-12 eclipse glasses lens in front of the camera.
Solar eclipse under way, minor experimenting with lens selection from iPhone 15 Pro Max. No eclipse glasses lens this time.

simplenomad, 9 months ago to infosec

My happiness of leaving the bird site last year continues. Things continue to erode in ways I did not think possible. I'd hope anyone in #infosec left makes it over here.

https://thehackernews.com/2023/09/x-twitter-to-collect-biometric-data.html

#twittermigration

simplenomad, 6 months ago to random

I don’t miss Twitter.

simplenomad, 1 month ago to security

My employer #GitLab is hiring, specifically in the Security division. Security Identity Management is the area, so if you're into #Security and #IAM and you're qualified, apply. If not, a few other positions are available, feel free to poke around. Fully remote. I'm not shopping for a referral, I'm shopping for a work colleague, so apply!

#FediHire #infosec

https://boards.greenhouse.io/gitlab/jobs/7294564002

simplenomad, 1 year ago to random

I have a new car that’s electric. I’m a month in, and I’m hooked. Never going back to gasoline cars, particularly when I can charge at home using the solar panels so the energy is, well, free.

https://www.markloveless.net/blog/2023/5/16/the-new-car

#ev #ElectricCar #green #solarpunk

simplenomad, 2 months ago to earthquake

I'm going to guess I was not the only person who thought it was cool that I heard all about the east coast #earthquake from Mastodon instead of some other social media outlet. I mean, I hope there was no damage and everyone is okay, but other than that, cool! Heard it here first.

FYI, I did NOT feel it here in Texas, and if I had I would have assumed it was fracking....

simplenomad, 11 months ago (edited 11 months ago) to homelab

If you’re wanting to run something in, let’s say a #homelab then #Ubuntu #Debian or what? Curious, especially from the #infosec crowd.

simplenomad, 2 months ago to infosec

Hmm. People are speculating on the nation state that’s behind the #xzbackdoor and seem to be taking a decidedly Western perspective on this. The suspected threat actors they’re naming are typically Russia, China, Iran, and North Korea.

Folks, I just want to point out that you shouldn’t exclude UK, Israel, France, USA, and many others who are more than capable of this as well. And yes, this could have also been some black hat or even a commercial spyware shop doing this to later sell to the highest bidder.

#infosec #xz #HackerLife #threatintel

simplenomad, 11 months ago to internet

I find it interesting people posting a screenshot of Threads’ access to your data and talk about how awful it is, but then these same people have Instagram and Facebook accounts, which is ever-so-slightly worse. #Meta #Threads #privacy

simplenomad, 4 months ago to infosec

It is satisfying when a non-tech friend who says I am an overly paranoid nut at times sends me a link with a note that says "OMG you were right!" Then I realize that I really wish I was wrong.

https://mastodon.social/@zackwhittaker/111823443263138284

#paranoid #nsa #infosec #HackerLife #OldManYellsIntoVoid

simplenomad, 17 days ago to infosec

Hey #infosec and various old school #hacker types out there. Ages ago I read a tale about a print server that was the source of an intrusion into some system that the author of this tale was trying to secure. In other words, the print server (at some ISP in Australia) had been popped and from there the attacker was getting into other systems. If you were around in the last century and involved in tech and security you might have read this in some zine or blog. A pointer to a copy of this tale would be appreciated, and you will be rewarded in a large quantity of Zorkmids. And if you get the Zorkmids reference, surely you might recall this tale. Boosts appreciated.

simplenomad, 4 days ago to infosec

Sounds like a very cool project. The only problem with it is that there is no reference to Kuato (IYKYK).

https://github.com/xaitax/TotalRecall

#infosec #security

simplenomad, 2 months ago to random

I live in Texas, and you're not going to believe this, but Texas is so big that Texas fits inside of it. Yes. It's that big.

Fine, I may have had too much caffeine.

simplenomad, 2 months ago to infosec

I think one of the problems with Twitter was that I had to follow a TON of accounts to get to the information I wanted. I was dealing with the algorithm or whatever, so to get a relevant post or thread a chunk of something had to float by, so I had to cast a wide net. Here on Mastodon I’m following less than half the number of accounts, I have a quarter of the followers, but a high level of signal and way more engagement.

I’m glad I deleted the bird site account, and while it is possible that some time in the future Mastodon might evolve into something less useful (thinking the equivalent of The September That Never Ended for you old school folks), for now I am enjoying the hell out of it and hope this lasts a long time.

#infosec #nerds

simplenomad, 3 months ago to solar

Just watched the latest video from @mattferrell which is extremely timely for me. I posted a blog post earlier today where I mentioned I was wanting to get a heat pump water heater, and a few hours later Matt posted this: https://youtu.be/abGiNL9IT54?si=w_GyCuD47w4Yn-H4

My blog post from earlier: https://www.markloveless.net/blog/2024/2/27/solar-adventures-continue

#solar #solarenergy #greenenergy #heatpump

simplenomad, 2 months ago to security

I remember when buffer overflows became a thing, and how since it was being discussed on the open Internet in #security circles that it got a lot of attention. Seemed so bleeding edge and exciting back then, now it's just a thing we deal with.

I wonder if this whole #xz thing is similar - in that an attacker has embedded a payload that triggers via a specific key pair. It's so clever and exciting, I mean all the calls are already inside of ssh for the key pair processing, I mean what a perfect way to implement it. Yes it is scary, but from an attacker perspective I think every #hacker on the planet is slightly envious and wishes they had thought of it first.

Now imagine a day when this is the new normal. What a time to be alive.

#infosec #backdoor

simplenomad, 1 month ago to random

A sad day yes. Not because it is #Monday but because it is #taxday here in the USA.

simplenomad, 1 month ago to random

The good news about AI is the attention to its potential, which BTW has been there for years if not really decades. The bad news is that everyone assumes the LLM approach is the universal way to go. LLMs can serve a purpose in specific use cases quite well but certainly in not all the ways the people hyping it are.

I think once we get back to specific models for specific tasks, like we were doing previously before LLMs came along and began being “startup funded”, we will truly start seeing the real benefits.

And yes, we’ve all been using those limited AI/ML setups in tech for ages, we should just set up better models for those use cases and things could get REALLY cool.

simplenomad, 1 month ago to tech

If you're looking for a way to irritate other #nerds, particularly #tech nerds, just say "What's the big deal about Al? Always in the headlines, who's Al anyway?" And don't say #AI as in "ai" say Al like "Al Capone".

simplenomad, 1 month ago to infosec

I sort of have opinions about TikTok and the ban, but not like everyone else...

https://www.markloveless.net/blog/2024/4/25/the-tiktok-implications

#infosec #apt #TinFoilHat #privacy

simplenomad, 25 days ago to infosec

I recently deployed Wireguard, and have a blog post about it. It's more of a "real world" blog post than instructional, but I do enclose details about what I did and how I did it.

https://www.markloveless.net/blog/2024/5/14/installing-wireguard

#infosec #HackerLife #hacker #security #OldManYellsAtCloudflare