SteveD3 (Steve Ragan)
LightNews LightNews
banner
steved3.io
SteveD3 (Steve Ragan)
@steved3.io
6.4K followers 1.1K following 200 posts
Father. Grandpa. Geek. Hacker. Former journalist. Security researcher. CMO @BSidesLV.org Member: Curated Intel
Posts Replies Media Videos
Pinned
steved3.io
SteveD3 (Steve Ragan) @steved3.io · Sep 17
Bluesky now has over 10 million users, and I was #52,068!
Image showing that Bluesky has more than 10 million users, and highlighting that I was user 52,068.
Reposted by SteveD3 (Steve Ragan)
angiemckeown.bsky.social
It's 2025 and I am still emailing files to myself, and I still have three laptops, and three security logins, and three yubikeys, because identity segregation and security is still a complex mess, and I am tired
August 28, 2025 at 8:42 PM
Reposted by SteveD3 (Steve Ragan)
zackwhittaker.com
I wrote some mid-week words for my newsletter (and now blog!) ~this week in security~ on Google today sounding the alarm over a new "widespread" wave of Salesforce data thefts targeting customers of Salesloft Drift.

Excited to share this with premium tier subscribers. ❤️
Salesforce instances targeted in new 'widespread' wave of data thefts
Salesloft confirmed a security incident affecting customers who integrate its Drift product with Salesforce. It's the latest wave of data thefts targeting Salesforce's instances.
this.weekinsecurity.com
August 26, 2025 at 11:10 PM
steved3.io
I'm amused. Just finished moving 11k archives (~20GB). Went to do another backup.

rsync -avzP --delete

The script did what it was asked to do... now I get to move all 11k archives a second time b/c of --delete. Lesson? You can't copy and paste your way out of everything.
August 19, 2025 at 4:34 AM
steved3.io
*about them

Posting from my phone is hard.
bsideslv.org BSides Las Vegas @bsideslv.org · Aug 7
Thank you @autorabit for being a Pool Party Sponsor!! 🤿🩱🩳

The party is so good, we are at capacity w/ a 45 minute wait.

Interested in learning more them?

Visit www.autorabit.com/ca...
August 7, 2025 at 6:34 AM
steved3.io
Got tickets to go see Tom Felton in Harry Potter and the Cursed Child at the Lyric Theatre in November.

Should be a fun little pre-holiday trip.
June 10, 2025 at 8:34 PM
Reposted by SteveD3 (Steve Ragan)
jperlow.bsky.social
May 23, 2025 at 9:46 PM
Reposted by SteveD3 (Steve Ragan)
thepacketrat.net
Dear New York Times:
Delete your account.

The New York Times Really Asked Ms. Rachel If She’s Paid By Hamas - defector.com/the-new-york...
The New York Times Really Asked Ms. Rachel If She's Paid By Hamas | Defector
The house style of the New York Times is severely outdated. Depending on the topic, the newspaper’s purportedly impartial tone instead reads as smug, self-amused, and deeply lazy. The results are disa...
defector.com
May 17, 2025 at 6:20 PM
steved3.io
Obfuscated JavaScript in Phishing Kits technicaloutcast.com...
Obfuscated JavaScript in Phishing Kits
While sorting phishing kits this morning, I discovered a clever use of JavaScript to hide an infostealer.
technicaloutcast.com
May 16, 2025 at 5:09 PM
Reposted by SteveD3 (Steve Ragan)
defcon.bsky.social
DEF CON legal update: Truth is a complete defense against defamation.

The Hadnagy lawsuit against us is over. Summary judgement. Dismissed, with prejudice.

You can read the judgment here storage.courtlistener.com/recap/gov.us... . Stay tuned for a more detailed report.

#defcon #legalupdate
Screen cap from the final page of the summary judgement document
May 13, 2025 at 9:36 PM
steved3.io
The moving walkway is coming to an end. Please watch your step. #RSAC
April 27, 2025 at 9:02 AM
steved3.io
Not mine, seen this in another part of the web. Caption was Chuck GPT lol
Joke image showing Chat GPT asking Chuck Norris if it can ask him a question.
April 21, 2025 at 6:57 PM
Reposted by SteveD3 (Steve Ragan)
josh.bressers.name
I've had a bunch of people ask me why I wasn't at #VulnCon, so I wrote a blog post about it

TL;DR - I don't think VulnCon should exist

Follow me for more security hot takes

opensourcesecurity.io/2025/04-why-...
Why I didn't go to VulnCon
VulnCon 2025 is over. I didn’t go. A bunch of people have asked me why, and rather than keep my answer to a small group, I thought it would make sense to write something public about it all. The TL;DR...
opensourcesecurity.io
April 11, 2025 at 3:36 PM
steved3.io
ChatGPT is generating some dark phishing images.
AI generated image to represent phishing.
April 2, 2025 at 7:37 AM
steved3.io
meme... tide bottles for hands... he would help but his hands are ... ... tide
March 27, 2025 at 8:06 AM
steved3.io
Pretty much me all the time these days.
A text-driven meme. When ur about to make a bad situation worse by injecting some ill-timed humor.
March 27, 2025 at 8:01 AM
steved3.io
I got blocked by someone for posting this. Guess they don't like Star Wars. Oh well, can't please everyone.
March 27, 2025 at 7:58 AM
steved3.io
When I posted this, I forgot to add. While I laughed and was amused (still am, it's a funny image), my first thought was... how did it turn it on? Ole Chuck be a strong force user to maintain this.
March 27, 2025 at 3:08 AM
steved3.io
Check Norris as a Jedi, holding the saber upside down.
March 26, 2025 at 8:17 AM
steved3.io
When you get invited to the NatSec group chat....
March 25, 2025 at 1:59 AM
steved3.io
Text Messages: (a) you up? (b) we're bombing Yemen tomorrow.
March 25, 2025 at 12:48 AM
steved3.io
Lol

The reporters who were invited to witness the planning behind a serious of anti-piracy raids reported the exact date and times the raids were to happen.

torrentfreak.com/sec...
The big football match between Paris Saint-Germain and Marseille should've been extremely difficult to pirate in France on Sunday. With rare direct assistance from French telecoms regulator Arcom, DAZN promised to "pull out all the stops" to block pirate sites. Journalists invited in to witness planning for the "secret commando raids" openly reported the exact times they were scheduled for.
March 23, 2025 at 6:01 AM
steved3.io
My milk man is better than your milk man....
A notice that the dozen eggs found with this week's milk delivery were free.
March 19, 2025 at 11:17 PM
Reposted by SteveD3 (Steve Ragan)
bishopfox.bsky.social
🚨 The 2025 Ultimate Red Team Tool Showdown is here! 🚨

We’re putting the top offensive security tools head-to-head, but only ONE will take the crown. And it’s all up to YOU!

Check out the full bracket & cast your votes:

bishopfox.com/redteam-tool...
March 12, 2025 at 2:23 PM
steved3.io
Toll phishing attacks spike technicaloutcast.com...
Toll phishing attacks spike
The number of phishing attacks related to toll payments has spiked.
technicaloutcast.com
March 5, 2025 at 4:13 PM
steved3.io
@zackwhittaker.bsky.social @lorenzofb.bsky.social

You two see this?

www.courtlistener.com/docket/68094...

700+ pages of transcripts and reports.
Hadnagy v. Moss, 2:23-cv-01932 - CourtListener.com
Docket for Hadnagy v. Moss, 2:23-cv-01932 — Brought to you by Free Law Project, a non-profit dedicated to creating high quality open legal information.
www.courtlistener.com
February 22, 2025 at 11:27 PM