triciakickssaas

@triciakickssaas@infosec.exchange

Hi, i'm Tricia. She/Her. I like to say I'm a marketer who identifies as infosec. Work life: I'm a technical writer in security research. I work with security research all day, every day. Any and everything from malware analysis to IPv6 and in between. Can confirm it is in fact, always DNS. I work with security researchers to help tell their story in an effective way without degrading their technical acumen. It's a lot harder than it sounds, trust me. Real life: I have a theatre degree and am pretty much always singing. I have a Pomsky named Darth who i love to take pictures and videos of and put online. I am obsessed with true crime and jigsaw puzzles and occasionally do standup comedy. Cross between real and work life: I occasionally write, record, and produce infosec parody songs. Be kind, love yourself, and keep kicking ass.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

triciakickssaas, to random

ben shapiro’s wife

triciakickssaas, to random

new episode of The Monthly Threat Brief: The SIG Download is gonna be live at 9 AM ET

i’m ready to gobble it up

https://www.brighttalk.com/webcast/13169/599008?utm_source=brighttalk-portal&utm_medium=web&utm_campaign=topic&utm_content=upcoming

triciakickssaas, to random

hi hope you've smiled today :underheart:​

triciakickssaas, to random

you're welcome

https://www.youtube.com/watch?v=_fhDVVfELsM

triciakickssaas, to random

how is it possible to miss human interaction and also not want anyone around you at the same time

triciakickssaas, to random

oh, hey y'all
if you're interested, Akamai gave me my own show which is kinda sick
it's live, once a month, where myself and a cohost of my choosing chat about what has happened in security the past month. this is freaking wild, but my face is at the top of our security solutions page now bc of it :blobaww:​

next wednesday is the november epsiode.. if you're around I'd love to see you there (either live or on demand, whatever floats your boat!)

you can register here:https://www.brighttalk.com/webcast/13169/599008?channel_id=13169

triciakickssaas,

like look at this shit lol wild

triciakickssaas, to random

came to montrèal for america day for the lulz, find out the international jazz festival is happening. incredible

triciakickssaas, to random

ice is just extended release water

triciakickssaas, to random

do you have any idea how difficult it is not to make jokes about the number of CVEs in today's patch tuesday bc i'm running a corporate account (on the platform which shall not be named)

here are the highlights for PT June:
🔵 69 CVEs in total
🟠 6 critical
🔵 4 with 9.8 CVSS
🟠 3 RCEs

There were four areas we focused on in the analysis:

🔵 Windows Pragmatic Multicast (PGM)
🟠 Sharepoint
🔵 Remote Desktop
🟠 Exchange

PGM had 4 of the critical RCE vulns, all with a 9.8 CVSS.

The attack complexity of some of the patched vulnerabilities addressed is low, so we recommend patching as soon as possible. Some of the vulns can lead to lateral movement, so segmentation is also strongly recommended as an additional mitigation strategy.

We have specific recommendations and details per component covered in the patch in our full write-up: https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-june-2023

triciakickssaas, to gaming

Y’all ready for some research? Game on. 🎮​

Allen West from Akamai SIRT identified a new botnet targeting the gaming industry which we have dubbed “Dark Frost.”

Through reverse engineering and other analysis, it became clear that it was a hodgepodge of other known malware families such as Mirai, Gafgyt, and Qbot.

Dark Frost showcases an example of a surprisingly common threat profile to be wary of: relatively unsophisticated, yet able to orchestrate successful attacks.

We like to focus on the “big baddies” but in truth, this cobbled-together botnet was able to amass over 400 devices to do its bidding, successfully attacking multiple aspects of the gaming industry.

The blog dives deeply into the botnet and the author, who is a stellar example of the threat profile outlined above.

Blog link: https://www.akamai.com/blog/security-research/dark-frost-botnet-unexpected-author-profile

GossiTheDog, (edited ) to random
@GossiTheDog@cyberplace.social avatar

deleted_by_author

    •
    triciakickssaas,

    @GossiTheDog oh boy

    triciakickssaas, to random

    NO
    NO
    NOT TINA TURNER
    😭😭😭😭😭😭

    triciakickssaas, to random

    I have been dying to talk about this and finally can.

    Remember that 0-click Outlook vulnerability with a custom sound leading to NTLM theft? The one that MSFT themselves stated it originated and was being actively used by Russian actors?

    @nachoskrnl found a way to bypass the patch to it. By adding one singular slash.

    Write-up 👇​

    https://www.akamai.com/blog/security-research/important-outlook-vulnerability-bypass-windows-api

    triciakickssaas, to random

    greed should have no place in healthcare.

    triciakickssaas, to random

    man, i used to be so active on social media professionally. every once in a while i get the "ugh i should get back into that again" and open linkedin.

    the exhuastion onset is IMMEDIATE after the page loads lol

    triciakickssaas,

    @gsuberland i used to love linkedin. was on it alllll the time. now it's just... tragic

    triciakickssaas,

    @gsuberland yepppppp and tbh you're essentially summarizing my SEVERAL talks on this subject lmao

    and admittedly i was part of the problem, i got to a point where i only went on there when i'd made a new video and wanted to share it. will likely continue doing so lol.

    it certainly feels much more like a self-promotional billboard marketplace now

    triciakickssaas, to random

    hope today is your perfect day, all you need is a light jacket.

    0xamit, to random

    Now might be a good time to share that @triciakickssaas and I used to run a Tucker Carlson on Cyber parody account on Twitter. We got over 1000 followers in 48h, it was pretty great. It was banned right after Elon took over during his crusade against parody accounts (ours was clearly labeled as such). Anyways, Tucker Carlson got cancelled by fox "news" today and it's a good enough reason to celebrate

    triciakickssaas,

    @0xamit @gsuberland well, we’ll see. everything is saying they “parted ways” so likely he’ll have his own shit soon

    but until or if we hear otherwise, i blissfully choose to believe yes, in fact, his actions had consequences

    triciakickssaas,

    @gsuberland @0xamit yep. he’s awful, but silver lining there

    triciakickssaas, to workersrights

    hey, you.

    stop checking work emails on vacation.

    stop telling people “you can still reach me” when you’ve taken time off.

    stop cleaning up emails the night before you go back to work (weekend or PTO.)

    stop taking responsibility for the company taking advantage of you. if you truly are the only person who can solve a problem, that is on the COMPANY. not you.

    being buried with work doesn’t mean you have to finish it all right now. you need the time to rest and recuperate. take it. don’t blur those lines. we are working most of our lives, so take the break when you get one.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • kavyap
  • DreamBathrooms
  • thenastyranch
  • magazineikmin
  • InstantRegret
  • GTA5RPClips
  • Youngstown
  • everett
  • slotface
  • rosin
  • osvaldo12
  • mdbf
  • ngwrru68w68
  • JUstTest
  • cubers
  • modclub
  • normalnudes
  • tester
  • khanakhh
  • Durango
  • ethstaker
  • tacticalgear
  • Leos
  • provamag3
  • anitta
  • cisconetworking
  • lostlight
  • All magazines
    •