@huntfortheprecious.bsky.social
Relentlessly pursuing the unseen and uncovering what’s hidden, I’m a cyber threat hunter with a flair for the navigating threats like a ranger hunting for the Precious in the dark corners of Middle-earth.
Not me preordering a @hak5.bsky.social wifi pineapple pager simply because I’ve had the Kim Possible theme stuck in my head since I first saw it.
And because I am indeed your basic, average girl and I’m here to hack the world.
🎶🍍📟🎶
And because I am indeed your basic, average girl and I’m here to hack the world.
🎶🍍📟🎶
a cartoon of a boy and a girl with the girl saying " you can call me "
ALT: a cartoon of a boy and a girl with the girl saying " you can call me "
media.tenor.com
November 17, 2025 at 7:35 PM
Not me preordering a @hak5.bsky.social wifi pineapple pager simply because I’ve had the Kim Possible theme stuck in my head since I first saw it.
And because I am indeed your basic, average girl and I’m here to hack the world.
🎶🍍📟🎶
And because I am indeed your basic, average girl and I’m here to hack the world.
🎶🍍📟🎶
Thank goodness we made it to October. All the other months where we can’t be cyber aware is really taxing on my colleagues and I.
October 1, 2025 at 11:47 AM
Thank goodness we made it to October. All the other months where we can’t be cyber aware is really taxing on my colleagues and I.
My toxic CTF trait is saying “I’m pausing for now. I need a break.” to my team, and then proceeding to say the same thing 30 minutes later after finding 5 more flags (and repeat).
September 22, 2025 at 11:30 PM
My toxic CTF trait is saying “I’m pausing for now. I need a break.” to my team, and then proceeding to say the same thing 30 minutes later after finding 5 more flags (and repeat).
So this morning for the hell of it, I decided to make a fake repo mimicking the Shai-Hulud npm worm post compromise. I put a honeytoken data in and less than 5 minutes after got a hit for trufflehog from this IP address: 139.162.5.241
A Linode server set up about a week ago. Go honey things Go!
A Linode server set up about a week ago. Go honey things Go!
September 18, 2025 at 6:27 PM
So this morning for the hell of it, I decided to make a fake repo mimicking the Shai-Hulud npm worm post compromise. I put a honeytoken data in and less than 5 minutes after got a hit for trufflehog from this IP address: 139.162.5.241
A Linode server set up about a week ago. Go honey things Go!
A Linode server set up about a week ago. Go honey things Go!
Oh look. More Citrix vulnerabilities:
support.citrix.com/support-home...
support.citrix.com/support-home...
August 26, 2025 at 2:31 PM
Oh look. More Citrix vulnerabilities:
support.citrix.com/support-home...
support.citrix.com/support-home...
Reposted
What else should we add to our SOC screens? #cybersecurity #hackerspace
August 13, 2025 at 12:34 PM
What else should we add to our SOC screens? #cybersecurity #hackerspace
Reposted
NOW IT CAN BE TOLD!!!1!!
In honor of cDcDay 2025, let it be known that we have deposited a Big Box o' cDc Booty (not that kind, y'filthy bastards!)... somewhere.
Where could it be? Who can say! Mebbe there'll be hints later, if we don't smoke too much nutmeg and forget.
BOW TO THE COW.
In honor of cDcDay 2025, let it be known that we have deposited a Big Box o' cDc Booty (not that kind, y'filthy bastards!)... somewhere.
Where could it be? Who can say! Mebbe there'll be hints later, if we don't smoke too much nutmeg and forget.
BOW TO THE COW.
July 11, 2025 at 7:17 PM
NOW IT CAN BE TOLD!!!1!!
In honor of cDcDay 2025, let it be known that we have deposited a Big Box o' cDc Booty (not that kind, y'filthy bastards!)... somewhere.
Where could it be? Who can say! Mebbe there'll be hints later, if we don't smoke too much nutmeg and forget.
BOW TO THE COW.
In honor of cDcDay 2025, let it be known that we have deposited a Big Box o' cDc Booty (not that kind, y'filthy bastards!)... somewhere.
Where could it be? Who can say! Mebbe there'll be hints later, if we don't smoke too much nutmeg and forget.
BOW TO THE COW.
Reposted
We’ve got a couple cool events coming up in June if you’ve wanted to check us out!
May 31, 2025 at 7:39 PM
We’ve got a couple cool events coming up in June if you’ve wanted to check us out!
Reposted
Reposted
🚨Soft Opening Alert🚨
We are definitely still in the early days-messy, ambitious, and full of potential; so now is the perfect time to call in the “morally aligned, slightly misconfigured” cyber/tech 🦬 area community to come check us out!
Fri April 25th starting at 3pm, come and see the space!
We are definitely still in the early days-messy, ambitious, and full of potential; so now is the perfect time to call in the “morally aligned, slightly misconfigured” cyber/tech 🦬 area community to come check us out!
Fri April 25th starting at 3pm, come and see the space!
April 20, 2025 at 1:03 AM
🚨Soft Opening Alert🚨
We are definitely still in the early days-messy, ambitious, and full of potential; so now is the perfect time to call in the “morally aligned, slightly misconfigured” cyber/tech 🦬 area community to come check us out!
Fri April 25th starting at 3pm, come and see the space!
We are definitely still in the early days-messy, ambitious, and full of potential; so now is the perfect time to call in the “morally aligned, slightly misconfigured” cyber/tech 🦬 area community to come check us out!
Fri April 25th starting at 3pm, come and see the space!
Sometimes I can’t wrap my brain around the fact that it is literally my job to hunt and write in executive reports on the status and impact of -checks notes- DOGE “BIG BALLS” ransomware.
www.broadcom.com/support/secu...
www.broadcom.com/support/secu...
DOGE BIG BALLS Ransomware
DOGE BIG BALLS Ransomware
www.broadcom.com
April 17, 2025 at 2:10 PM
Sometimes I can’t wrap my brain around the fact that it is literally my job to hunt and write in executive reports on the status and impact of -checks notes- DOGE “BIG BALLS” ransomware.
www.broadcom.com/support/secu...
www.broadcom.com/support/secu...
"...targeting a former government employee for doing their job and broadening it to their current employer half a decade later will have a chilling effect that makes us all less safe."
A memo last week targeted Krebs and his employer by suspending all clearances held by SO employees.
A memo last week targeted Krebs and his employer by suspending all clearances held by SO employees.
In Support of Chris Krebs and SentinelOne
Chris Krebs and his current employer are under investigation. If the infosec community unites to speak up for our friends and colleagues and leaves politics out of it, we can help strengthen our share...
www.lutasecurity.com
April 17, 2025 at 10:58 AM
"...targeting a former government employee for doing their job and broadening it to their current employer half a decade later will have a chilling effect that makes us all less safe."
A memo last week targeted Krebs and his employer by suspending all clearances held by SO employees.
A memo last week targeted Krebs and his employer by suspending all clearances held by SO employees.
Couple weeks old but… waiting for the influx of Windows Sandbox breakout techniques in malware families. Jokes on threat actors though: most windows 11 corporate environment machines don’t have the specs to even run that feature… if they’re even on windows 11.
www.welivesecurity.com/en/eset-rese...
www.welivesecurity.com/en/eset-rese...
Operation AkaiRyū: MirrorFace invites Europe to Expo 2025 and revives ANEL backdoor
ESET researchers uncovered MirrorFace activity that expanded beyond its usual focus on Japan and targeted a Central European diplomatic institute with the ANEL backdoor.
www.welivesecurity.com
April 17, 2025 at 2:01 AM
Couple weeks old but… waiting for the influx of Windows Sandbox breakout techniques in malware families. Jokes on threat actors though: most windows 11 corporate environment machines don’t have the specs to even run that feature… if they’re even on windows 11.
www.welivesecurity.com/en/eset-rese...
www.welivesecurity.com/en/eset-rese...
Reposted
If you’re at Trimainia, so are we!
#HackingIsArt
#HackingIsArt
March 29, 2025 at 10:45 PM
If you’re at Trimainia, so are we!
#HackingIsArt
#HackingIsArt
Reposted
Hello World!
March 28, 2025 at 8:20 PM
Hello World!
To be fair. . we're only three months into 2025. Also can we talk about how rude this guy is? Dropping this on a Friday.
Social Media mgrs. receiving a follow from rose87168: 🤩
Cyber professionals seeing a follow from rose87168: 🤬
Social Media mgrs. receiving a follow from rose87168: 🤩
Cyber professionals seeing a follow from rose87168: 🤬
The Biggest Supply Chain Hack Of 2025: 6M Records For Sale Exfiltrated from Oracle Cloud Affecting over 140k Tenants | CloudSEK
CloudSEK uncovers a major breach targeting Oracle Cloud, with 6 million records exfiltrated via a suspected undisclosed vulnerability. Over 140,000 tenants are impacted, as the attacker demands ransom...
www.cloudsek.com
March 21, 2025 at 6:01 PM
To be fair. . we're only three months into 2025. Also can we talk about how rude this guy is? Dropping this on a Friday.
Social Media mgrs. receiving a follow from rose87168: 🤩
Cyber professionals seeing a follow from rose87168: 🤬
Social Media mgrs. receiving a follow from rose87168: 🤩
Cyber professionals seeing a follow from rose87168: 🤬
When you think of a physical hacker space, what do you imagine in it? Besides Jolt cola.
a cat laying on top of a laptop with the words " out of 5 cats are actually computer hackers " at the top
ALT: a cat laying on top of a laptop with the words " out of 5 cats are actually computer hackers " at the top
media.tenor.com
March 13, 2025 at 5:52 PM
When you think of a physical hacker space, what do you imagine in it? Besides Jolt cola.
Reposted
Treasury InfoSec watching SanDisk USB drives being plugged into the EveryAmerican server
February 2, 2025 at 7:50 PM
Treasury InfoSec watching SanDisk USB drives being plugged into the EveryAmerican server
Every cybersecurity professional in the USA’s reaction to this www.finance.senate.gov/chairmans-ne...:
a cartoon toad with his mouth wide open
ALT: a cartoon toad with his mouth wide open
media.tenor.com
February 2, 2025 at 9:43 PM
Every cybersecurity professional in the USA’s reaction to this www.finance.senate.gov/chairmans-ne...:
Reposted
January 2, 2025 at 3:18 PM
github.com/dotnet/core/...
TLDR: Microsoft was forced to move some domains around after the Edg.io CDN suddenly announced it was ceasing operations due to bankruptcy, leaving the domains without hosting:
devblogs.microsoft.com/dotnet/criti...
TLDR: Microsoft was forced to move some domains around after the Edg.io CDN suddenly announced it was ceasing operations due to bankruptcy, leaving the domains without hosting:
devblogs.microsoft.com/dotnet/criti...
a man is jumping on a couch with parkour written on the bottom
ALT: a man is jumping on a couch with parkour written on the bottom
media.tenor.com
January 2, 2025 at 2:55 PM
github.com/dotnet/core/...
TLDR: Microsoft was forced to move some domains around after the Edg.io CDN suddenly announced it was ceasing operations due to bankruptcy, leaving the domains without hosting:
devblogs.microsoft.com/dotnet/criti...
TLDR: Microsoft was forced to move some domains around after the Edg.io CDN suddenly announced it was ceasing operations due to bankruptcy, leaving the domains without hosting:
devblogs.microsoft.com/dotnet/criti...
Anyone else in the cyber field come back from holiday PTO in a weird, dissociative, "I'd rather be designing drone light shows or rescuing puppies"/"none of this matters" mood rather than feeling refreshed/recharged?
January 2, 2025 at 12:36 PM
Anyone else in the cyber field come back from holiday PTO in a weird, dissociative, "I'd rather be designing drone light shows or rescuing puppies"/"none of this matters" mood rather than feeling refreshed/recharged?