Alex Delamotte
@alex.leetnoob.com
I’m just a girl who lives in Vegas & likes cloud malware, idk anymore.
It’s conference & festival season—♪ the most wonderful time of the year ♪
…bc I get to send my most ludicrous graphic design requests to local print shops and see which are brave enough to deliver
…bc I get to send my most ludicrous graphic design requests to local print shops and see which are brave enough to deliver
May 15, 2025 at 6:07 PM
It’s conference & festival season—♪ the most wonderful time of the year ♪
…bc I get to send my most ludicrous graphic design requests to local print shops and see which are brave enough to deliver
…bc I get to send my most ludicrous graphic design requests to local print shops and see which are brave enough to deliver
Very excited to share that I’ll be presenting at @sleuthcon.bsky.social in June!
Jim & I will share the backstory behind AkiraBot that didn’t make it into the blog—and what they’ve been up to since.
Jim & I will share the backstory behind AkiraBot that didn’t make it into the blog—and what they’ve been up to since.
April 25, 2025 at 7:13 PM
Very excited to share that I’ll be presenting at @sleuthcon.bsky.social in June!
Jim & I will share the backstory behind AkiraBot that didn’t make it into the blog—and what they’ve been up to since.
Jim & I will share the backstory behind AkiraBot that didn’t make it into the blog—and what they’ve been up to since.
Mood board while drafting my @sleuthcon.bsky.social CFP submission (thanks for the sweet challenge coin, Sleuthy Sleuthington!) 🐍
April 15, 2025 at 6:45 PM
Mood board while drafting my @sleuthcon.bsky.social CFP submission (thanks for the sweet challenge coin, Sleuthy Sleuthington!) 🐍
I finally feel like the stars are aligning!
And if they aren’t, I’ll move them myself. Someone’s gotta do it.
And if they aren’t, I’ll move them myself. Someone’s gotta do it.
January 18, 2025 at 2:42 PM
I finally feel like the stars are aligning!
And if they aren’t, I’ll move them myself. Someone’s gotta do it.
And if they aren’t, I’ll move them myself. Someone’s gotta do it.
Lately, the call of the void is increasingly loud.
And today, the void says to install Xiaohongshu for research purposes
And today, the void says to install Xiaohongshu for research purposes
January 17, 2025 at 7:55 PM
Lately, the call of the void is increasingly loud.
And today, the void says to install Xiaohongshu for research purposes
And today, the void says to install Xiaohongshu for research purposes
Reposted by Alex Delamotte
our network has raised hundreds of dollars to give firefighters the zyn they need to keep protecting LA from the fires. Thank you!!
January 14, 2025 at 9:59 PM
our network has raised hundreds of dollars to give firefighters the zyn they need to keep protecting LA from the fires. Thank you!!
Apparently I’ll be last minute lobbyconning at Shmoo. Say hi if we should hang!
January 11, 2025 at 8:18 PM
Apparently I’ll be last minute lobbyconning at Shmoo. Say hi if we should hang!
I would like to take a moment to reflect on how awful the updates to the iOS Apple Mail client have been.
It’s practically unusable now and everything sent to junk is legitimate mail. Huge downgrade.
Is it just me?
It’s practically unusable now and everything sent to junk is legitimate mail. Huge downgrade.
Is it just me?
December 20, 2024 at 4:28 AM
I would like to take a moment to reflect on how awful the updates to the iOS Apple Mail client have been.
It’s practically unusable now and everything sent to junk is legitimate mail. Huge downgrade.
Is it just me?
It’s practically unusable now and everything sent to junk is legitimate mail. Huge downgrade.
Is it just me?
Reposted by Alex Delamotte
CTI is the cause of my brainrot but I really cooked on this #salttyphoon #telecomhack
November 26, 2024 at 10:18 PM
CTI is the cause of my brainrot but I really cooked on this #salttyphoon #telecomhack
Reposted by Alex Delamotte
super simple bluesky firehose with references
gist.github.com/aaronsdevera...
gist.github.com/aaronsdevera...
Very very very simplified Bsky go brrr
Very very very simplified Bsky go brrr. GitHub Gist: instantly share code, notes, and snippets.
gist.github.com
November 26, 2024 at 5:04 PM
super simple bluesky firehose with references
gist.github.com/aaronsdevera...
gist.github.com/aaronsdevera...
The Aircrafts Comments signal
sticker pack is having a moment
sticker pack is having a moment
November 25, 2024 at 8:42 PM
The Aircrafts Comments signal
sticker pack is having a moment
sticker pack is having a moment
Good times in DC. WAG drag was a success!
For our unofficial post @cyberwarcon.bsky.social WAGINT party, I LARPed as Pavel Durov’s WAG, Juli Vavilova.
nypost.com/2024/08/26/w...
For our unofficial post @cyberwarcon.bsky.social WAGINT party, I LARPed as Pavel Durov’s WAG, Juli Vavilova.
nypost.com/2024/08/26/w...
November 23, 2024 at 5:20 PM
Good times in DC. WAG drag was a success!
For our unofficial post @cyberwarcon.bsky.social WAGINT party, I LARPed as Pavel Durov’s WAG, Juli Vavilova.
nypost.com/2024/08/26/w...
For our unofficial post @cyberwarcon.bsky.social WAGINT party, I LARPed as Pavel Durov’s WAG, Juli Vavilova.
nypost.com/2024/08/26/w...
The In-N-Out Info-Ops patch from @cyberwarcon.bsky.social goes so hard!!!
Kudos to whoever designed that—love to see West Coast representation at a DC con 😎
Kudos to whoever designed that—love to see West Coast representation at a DC con 😎
November 22, 2024 at 7:04 PM
The In-N-Out Info-Ops patch from @cyberwarcon.bsky.social goes so hard!!!
Kudos to whoever designed that—love to see West Coast representation at a DC con 😎
Kudos to whoever designed that—love to see West Coast representation at a DC con 😎
Who else is blowing off F1 for Cyberwarcon?
F 👏 THEM 👏 CARS
See all you real WAGs there!
F 👏 THEM 👏 CARS
See all you real WAGs there!
our annual-ish @cyberwarcon.bsky.social unofficial afterparty is upon us
experts in Wife And Girlfriend INTelligence know where it is
"fuck them cars!" -- @hultquist.bsky.social
experts in Wife And Girlfriend INTelligence know where it is
"fuck them cars!" -- @hultquist.bsky.social
November 22, 2024 at 1:11 PM
Who else is blowing off F1 for Cyberwarcon?
F 👏 THEM 👏 CARS
See all you real WAGs there!
F 👏 THEM 👏 CARS
See all you real WAGs there!
Reposted by Alex Delamotte
🚨 New Research Drop:
🇰🇵 DPRK IT Workers | A Network of Active Front Companies and Their Links to China
Summary:
⚪ Newly Disrupted Front Companies by USG
⚪ Impersonating US based software and tech orgs
⚪ Links to still-active front orgs, CN association
Report:
www.sentinelone.com/labs/dprk-it...
🇰🇵 DPRK IT Workers | A Network of Active Front Companies and Their Links to China
Summary:
⚪ Newly Disrupted Front Companies by USG
⚪ Impersonating US based software and tech orgs
⚪ Links to still-active front orgs, CN association
Report:
www.sentinelone.com/labs/dprk-it...
DPRK IT Workers | A Network of Active Front Companies and Their Links to China
SentinelLabs has identified multiple deceptive websites linked to businesses in China fronting for North Korea's fake IT workers scheme.
www.sentinelone.com
November 21, 2024 at 3:00 PM
🚨 New Research Drop:
🇰🇵 DPRK IT Workers | A Network of Active Front Companies and Their Links to China
Summary:
⚪ Newly Disrupted Front Companies by USG
⚪ Impersonating US based software and tech orgs
⚪ Links to still-active front orgs, CN association
Report:
www.sentinelone.com/labs/dprk-it...
🇰🇵 DPRK IT Workers | A Network of Active Front Companies and Their Links to China
Summary:
⚪ Newly Disrupted Front Companies by USG
⚪ Impersonating US based software and tech orgs
⚪ Links to still-active front orgs, CN association
Report:
www.sentinelone.com/labs/dprk-it...
They say a new Bluesky follower is born every minute 🦋
November 18, 2024 at 9:58 PM
They say a new Bluesky follower is born every minute 🦋
Love to see that a Spanish language site covered my recent cloud ransomware post & made a distracted boyfriend meme for the preview image
espanol.news/cloud-ransom...
espanol.news/cloud-ransom...
Cloud Ransomware adapta nuevos scripts a aplicaciones web - Espanol News
En lugar de apoyarse únicamente en depósitos con fugas y vulnerabilidades de proveedores de servicios en la nube (CSP) para filtrar datos confidenciales, una nueva cosecha de ransomware dirigido a…
espanol.news
November 18, 2024 at 8:39 PM
Love to see that a Spanish language site covered my recent cloud ransomware post & made a distracted boyfriend meme for the preview image
espanol.news/cloud-ransom...
espanol.news/cloud-ransom...
Reposted by Alex Delamotte
How does the new iOS inactivity reboot work? What does it protect from?
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
Reverse Engineering iOS 18 Inactivity Reboot
Wireless and firmware hacking, PhD life, Technology
naehrdine.blogspot.com
November 17, 2024 at 9:42 PM
How does the new iOS inactivity reboot work? What does it protect from?
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
Reposted by Alex Delamotte
My team at $DAY_JOB did some great work this week and published a blog about some interesting malware we saw. It's a downloader that is abusing free Cloudflare Argo Tunnels and using it as a C2 server:
labs.beazley.security/articles/hun...
labs.beazley.security/articles/hun...
BSL - Hunting Mice In Tunnels
labs.beazley.security
November 16, 2024 at 9:44 PM
My team at $DAY_JOB did some great work this week and published a blog about some interesting malware we saw. It's a downloader that is abusing free Cloudflare Argo Tunnels and using it as a C2 server:
labs.beazley.security/articles/hun...
labs.beazley.security/articles/hun...
Trying to function at the club but
November 16, 2024 at 7:32 AM
Trying to function at the club but
FBot still circulating almost a year later. Only changes in the diff are new API keys & email addresses in the config.
www.sentinelone.com/labs/explori...
www.sentinelone.com/labs/explori...
November 15, 2024 at 6:47 PM
FBot still circulating almost a year later. Only changes in the diff are new API keys & email addresses in the config.
www.sentinelone.com/labs/explori...
www.sentinelone.com/labs/explori...
Reposted by Alex Delamotte
See the latest iOS inactivity reboot in action!
iOS 18 comes with improved anti-theft measures. Three days w/o unlock, the iPhone will reboot, preventing thieves from getting your data. (1/4)
iOS 18 comes with improved anti-theft measures. Three days w/o unlock, the iPhone will reboot, preventing thieves from getting your data. (1/4)
November 15, 2024 at 8:10 AM
See the latest iOS inactivity reboot in action!
iOS 18 comes with improved anti-theft measures. Three days w/o unlock, the iPhone will reboot, preventing thieves from getting your data. (1/4)
iOS 18 comes with improved anti-theft measures. Three days w/o unlock, the iPhone will reboot, preventing thieves from getting your data. (1/4)
I wrote a post on the realities of cloud & webserver ransomware. Check it out to see some of the toolsets & frameworks that can be used for these attacks.
🔥 In a report on the state of cloud ransomware,
@alex.leetnoob.com has identified several tools designed to target web servers with ransomware or to leverage cloud services to upload files before encrypting local files on an endpoint.
s1.ai/cloud-rw
@alex.leetnoob.com has identified several tools designed to target web servers with ransomware or to leverage cloud services to upload files before encrypting local files on an endpoint.
s1.ai/cloud-rw
The State of Cloud Ransomware in 2024
In this new report, learn how threat actors are leveraging cloud services to target web services with ransomware attackers.
s1.ai
November 14, 2024 at 9:30 PM
I wrote a post on the realities of cloud & webserver ransomware. Check it out to see some of the toolsets & frameworks that can be used for these attacks.