Brian Clark
@deepthoughts10.infosec.exchange.ap.brid.gy
#InfoSec #Cybersecurity #threatintel and Politics. I try my best.
Also @deepthoughts10@twitter.com
Searchable
[bridged from https://infosec.exchange/@deepthoughts10 on the fediverse by https://fed.brid.gy/ ]
Also @deepthoughts10@twitter.com
Searchable
[bridged from https://infosec.exchange/@deepthoughts10 on the fediverse by https://fed.brid.gy/ ]
RE: https://infosec.exchange/@netresec/115667037971483700
This brings a really interesting prevention opportunity for businesses with web security proxies in place (Zscaler, Netskope, NGFW's, etc.) Enforce the use of TLS 1.2 or higher. This might be a big lift for some organizations, but for […]
This brings a really interesting prevention opportunity for businesses with web security proxies in place (Zscaler, Netskope, NGFW's, etc.) Enforce the use of TLS 1.2 or higher. This might be a big lift for some organizations, but for […]
December 6, 2025 at 10:57 PM
RE: https://infosec.exchange/@netresec/115667037971483700
This brings a really interesting prevention opportunity for businesses with web security proxies in place (Zscaler, Netskope, NGFW's, etc.) Enforce the use of TLS 1.2 or higher. This might be a big lift for some organizations, but for […]
This brings a really interesting prevention opportunity for businesses with web security proxies in place (Zscaler, Netskope, NGFW's, etc.) Enforce the use of TLS 1.2 or higher. This might be a big lift for some organizations, but for […]
December 6, 2025 at 10:19 PM
I met a new #dog yesterday named Tucker. He’s a bit shy but decided to risk it and say hello in exchange for pats. #dogsofmastodon
November 29, 2025 at 7:38 PM
I met a new #dog yesterday named Tucker. He’s a bit shy but decided to risk it and say hello in exchange for pats. #dogsofmastodon
November 29, 2025 at 7:35 PM
Happy Thanksgiving to my American friends. To everyone else, I hope you have a great Thursday!
November 26, 2025 at 11:06 PM
Happy Thanksgiving to my American friends. To everyone else, I hope you have a great Thursday!
RE: https://infosec.exchange/@worldwatch_ocd/115605281408605932
Unless your org uses Bubble.io and their low-code developer platform, you can likely block their app-hosting domain bubbleapps.io. Put in an allow list for vetted BubbleApps URLs if you need to.
Also, I think this one is already […]
Unless your org uses Bubble.io and their low-code developer platform, you can likely block their app-hosting domain bubbleapps.io. Put in an allow list for vetted BubbleApps URLs if you need to.
Also, I think this one is already […]
Original post on infosec.exchange
infosec.exchange
November 24, 2025 at 4:55 PM
RE: https://infosec.exchange/@worldwatch_ocd/115605281408605932
Unless your org uses Bubble.io and their low-code developer platform, you can likely block their app-hosting domain bubbleapps.io. Put in an allow list for vetted BubbleApps URLs if you need to.
Also, I think this one is already […]
Unless your org uses Bubble.io and their low-code developer platform, you can likely block their app-hosting domain bubbleapps.io. Put in an allow list for vetted BubbleApps URLs if you need to.
Also, I think this one is already […]
RE: https://mastodon.social/@eff/115601485570143504
Please submit your comments on this proposed change, which takes away an important method for challenging patents. This seems like a clear give-away to big business and patent troll firms. Let’s not let them slip this change in easily or quietly.
Please submit your comments on this proposed change, which takes away an important method for challenging patents. This seems like a clear give-away to big business and patent troll firms. Let’s not let them slip this change in easily or quietly.
mastodon.social
November 23, 2025 at 11:26 PM
RE: https://mastodon.social/@eff/115601485570143504
Please submit your comments on this proposed change, which takes away an important method for challenging patents. This seems like a clear give-away to big business and patent troll firms. Let’s not let them slip this change in easily or quietly.
Please submit your comments on this proposed change, which takes away an important method for challenging patents. This seems like a clear give-away to big business and patent troll firms. Let’s not let them slip this change in easily or quietly.
RE: https://infosec.exchange/@lerg/115600897099332714
The Google post that Andrew shared notes the updates made re: Gainsight & Salesforce:
Update (Nov. 21): In response to the Salesforce advisory related to Gainsight applications, this blog post has been updated to include comprehensive […]
The Google post that Andrew shared notes the updates made re: Gainsight & Salesforce:
Update (Nov. 21): In response to the Salesforce advisory related to Gainsight applications, this blog post has been updated to include comprehensive […]
Original post on infosec.exchange
infosec.exchange
November 23, 2025 at 8:59 PM
RE: https://infosec.exchange/@lerg/115600897099332714
The Google post that Andrew shared notes the updates made re: Gainsight & Salesforce:
Update (Nov. 21): In response to the Salesforce advisory related to Gainsight applications, this blog post has been updated to include comprehensive […]
The Google post that Andrew shared notes the updates made re: Gainsight & Salesforce:
Update (Nov. 21): In response to the Salesforce advisory related to Gainsight applications, this blog post has been updated to include comprehensive […]
RE: https://mastodon.social/@scalzi/115594438646260803
New day, new scam — and AI makes these scammers more efficient. As Scalzi says, if someone sends you an unsolicited email asking for money, don’t send any.
New day, new scam — and AI makes these scammers more efficient. As Scalzi says, if someone sends you an unsolicited email asking for money, don’t send any.
mastodon.social
November 22, 2025 at 6:07 PM
RE: https://mastodon.social/@scalzi/115594438646260803
New day, new scam — and AI makes these scammers more efficient. As Scalzi says, if someone sends you an unsolicited email asking for money, don’t send any.
New day, new scam — and AI makes these scammers more efficient. As Scalzi says, if someone sends you an unsolicited email asking for money, don’t send any.
RE: https://mastodon.social/@arstechnica/115593241698803428
Really cool. Hopefully this starts showing up at other conferences like @BSidesLV and @defcon
Really cool. Hopefully this starts showing up at other conferences like @BSidesLV and @defcon
mastodon.social
November 22, 2025 at 5:29 PM
RE: https://mastodon.social/@arstechnica/115593241698803428
Really cool. Hopefully this starts showing up at other conferences like @BSidesLV and @defcon
Really cool. Hopefully this starts showing up at other conferences like @BSidesLV and @defcon
RE: https://infosec.exchange/@merill/115558028222133212
Free #microsoft Identity training! #cybersecurity
Free #microsoft Identity training! #cybersecurity
infosec.exchange
November 17, 2025 at 3:22 AM
RE: https://infosec.exchange/@merill/115558028222133212
Free #microsoft Identity training! #cybersecurity
Free #microsoft Identity training! #cybersecurity
These two #cats are very happy to have their heated beds available for the season #catsofmastodon #caturday
November 15, 2025 at 8:49 PM
These two #cats are very happy to have their heated beds available for the season #catsofmastodon #caturday
Reposted by Brian Clark
With respect to the gales of November
November 11, 2025 at 1:15 AM
With respect to the gales of November
November 5, 2025 at 5:39 PM
Happy Halloween! 🎃This #cat is SPOOKY but hopes you aren’t scared of him. #catsofmastodon
November 1, 2025 at 2:12 AM
Happy Halloween! 🎃This #cat is SPOOKY but hopes you aren’t scared of him. #catsofmastodon
Happy day-after #caturday from this guy, enjoying a walk on this fine Fall afternoon #catsofmastodon #cats
October 26, 2025 at 5:48 PM
Happy day-after #caturday from this guy, enjoying a walk on this fine Fall afternoon #catsofmastodon #cats
RE: https://infosec.exchange/@BleepingComputer/115424302019287682
This is a good #cybersecurity change in Windows 11. Coerced authentication is a scourge to small and mid-sized businesses who don’t have the wherewithal to implement proper network egress filtering.
This is a good #cybersecurity change in Windows 11. Coerced authentication is a scourge to small and mid-sized businesses who don’t have the wherewithal to implement proper network egress filtering.
infosec.exchange
October 23, 2025 at 10:24 PM
RE: https://infosec.exchange/@BleepingComputer/115424302019287682
This is a good #cybersecurity change in Windows 11. Coerced authentication is a scourge to small and mid-sized businesses who don’t have the wherewithal to implement proper network egress filtering.
This is a good #cybersecurity change in Windows 11. Coerced authentication is a scourge to small and mid-sized businesses who don’t have the wherewithal to implement proper network egress filtering.
RE: https://infosec.exchange/@ScumBots/115417315230356694
The web host Portmap.host is another one to block. Lots of bad stuff hosted there. #cybersecurity
The web host Portmap.host is another one to block. Lots of bad stuff hosted there. #cybersecurity
infosec.exchange
October 22, 2025 at 12:54 PM
RE: https://infosec.exchange/@ScumBots/115417315230356694
The web host Portmap.host is another one to block. Lots of bad stuff hosted there. #cybersecurity
The web host Portmap.host is another one to block. Lots of bad stuff hosted there. #cybersecurity
RE: https://infosec.exchange/@urldna/115417468814743079
I see tons of #phishing sites hosted on Weebly.com I highly recommend blocking that site. It’ll save you from trouble in the future. #cybersecurity
I see tons of #phishing sites hosted on Weebly.com I highly recommend blocking that site. It’ll save you from trouble in the future. #cybersecurity
infosec.exchange
October 22, 2025 at 12:48 PM
RE: https://infosec.exchange/@urldna/115417468814743079
I see tons of #phishing sites hosted on Weebly.com I highly recommend blocking that site. It’ll save you from trouble in the future. #cybersecurity
I see tons of #phishing sites hosted on Weebly.com I highly recommend blocking that site. It’ll save you from trouble in the future. #cybersecurity
Reposted by Brian Clark
Even if you don't run Telnet, you should strongly consider blocking these ASNs from hitting remote access systems on your perimeter. They are the worst of the worst for this campaign, and will 100% be used for other attacks (b/c they always are).
AS4837, AS4134, AS23969, AS3462, AS4713, AS8151 […]
AS4837, AS4134, AS23969, AS3462, AS4713, AS8151 […]
Original post on mastodon.social
mastodon.social
October 22, 2025 at 11:47 AM
Even if you don't run Telnet, you should strongly consider blocking these ASNs from hitting remote access systems on your perimeter. They are the worst of the worst for this campaign, and will 100% be used for other attacks (b/c they always are).
AS4837, AS4134, AS23969, AS3462, AS4713, AS8151 […]
AS4837, AS4134, AS23969, AS3462, AS4713, AS8151 […]
So I’ve been away for the day. Anything unusual happen on the Internet today? 😉
October 21, 2025 at 12:09 AM
So I’ve been away for the day. Anything unusual happen on the Internet today? 😉
Even though it is a day of protest in the US, it is still #caturday This #cat is ready for Halloween (and treats) #catsofmastodon
October 18, 2025 at 7:12 PM
Even though it is a day of protest in the US, it is still #caturday This #cat is ready for Halloween (and treats) #catsofmastodon