Reposted by Zach Trexler
I updated my story again. DoD denied reports that an order was issued to CyberCom, but Washington Post stands by story that order occurred Feb 24. But a Post reporter says the ops impacted were low-level, since US has not been conducting anything against Russia that rises to level of "use of force"
Two stories published Friday reporting that Trump admin had ordered US Cyber Command and CISA to "stand down" on their work to detect/counter Russian cyber threats. But new info has come out to contradict them. I dug into what we know and don't know. www.zetter-zeroday.com/did-trump-ad...
Did Trump Admin Order U.S. Cyber Command and CISA to Stand Down on Russia?
Two blockbuster stories published on Friday that appear to confirm what many Americans suspected would occur under the Trump administration – that the new regime is going to be softer on Russia than p...
www.zetter-zeroday.com
March 5, 2025 at 5:30 PM
I updated my story again. DoD denied reports that an order was issued to CyberCom, but Washington Post stands by story that order occurred Feb 24. But a Post reporter says the ops impacted were low-level, since US has not been conducting anything against Russia that rises to level of "use of force"
Reposted by Zach Trexler
Stop calling it polarisation. The world may be divided, but it’s not a “shame” when it’s a reflection of values.
When some think lying is okay and others don’t, that’s not just a divide; it’s a moral line. Certain truths should be universal. Let’s start there.
When some think lying is okay and others don’t, that’s not just a divide; it’s a moral line. Certain truths should be universal. Let’s start there.
February 6, 2025 at 10:38 AM
Stop calling it polarisation. The world may be divided, but it’s not a “shame” when it’s a reflection of values.
When some think lying is okay and others don’t, that’s not just a divide; it’s a moral line. Certain truths should be universal. Let’s start there.
When some think lying is okay and others don’t, that’s not just a divide; it’s a moral line. Certain truths should be universal. Let’s start there.
Reposted by Zach Trexler
Check out my latest project, "DECEIVE", an open-source SSH honeypot that uses an LLM to simulate the backend system. What's more, at the end of the session, the AI summarizes what it saw and a judgement about whether the session might have been benign, suspicious, or malicious.
Introducing DECEIVE: A Proof-of-Concept Honeypot Powered by AI | Splunk
Explore DECEIVE: an AI-powered proof-of-concept honeypot by SURGe. Learn how AI simplifies cybersecurity with dynamic simulations and session summaries, paving the way for innovative security…
buff.ly
February 5, 2025 at 10:18 PM
Check out my latest project, "DECEIVE", an open-source SSH honeypot that uses an LLM to simulate the backend system. What's more, at the end of the session, the AI summarizes what it saw and a judgement about whether the session might have been benign, suspicious, or malicious.
Reposted by Zach Trexler
Podcast: risky.biz/RBNEWS384/
Newsletter: risky.biz/risky-bullet...
-CISA & FDA warn of backdoor in patient monitor
-Meta exposes Paragon spyware attacks
-CISA employees exempt from Trump's resignation program
-Poland arrests ex-minister in Pegasus probe
-Turkiye arrests state DB hackers
Newsletter: risky.biz/risky-bullet...
-CISA & FDA warn of backdoor in patient monitor
-Meta exposes Paragon spyware attacks
-CISA employees exempt from Trump's resignation program
-Poland arrests ex-minister in Pegasus probe
-Turkiye arrests state DB hackers
February 3, 2025 at 9:34 AM
Podcast: risky.biz/RBNEWS384/
Newsletter: risky.biz/risky-bullet...
-CISA & FDA warn of backdoor in patient monitor
-Meta exposes Paragon spyware attacks
-CISA employees exempt from Trump's resignation program
-Poland arrests ex-minister in Pegasus probe
-Turkiye arrests state DB hackers
Newsletter: risky.biz/risky-bullet...
-CISA & FDA warn of backdoor in patient monitor
-Meta exposes Paragon spyware attacks
-CISA employees exempt from Trump's resignation program
-Poland arrests ex-minister in Pegasus probe
-Turkiye arrests state DB hackers
Reposted by Zach Trexler
So this PoC for CVE-2024-49113 is indeed a thing.
https://www.safebreach.com/blog/ldapnightmare-safebreach-labs-publishes-first-proof-of-concept-exploit-for-cve-2024-49113/
Their writeup is confusingly worded in that it uses both the phrases "victim DC" […]
[Original post on infosec.exchange]
https://www.safebreach.com/blog/ldapnightmare-safebreach-labs-publishes-first-proof-of-concept-exploit-for-cve-2024-49113/
Their writeup is confusingly worded in that it uses both the phrases "victim DC" […]
[Original post on infosec.exchange]
January 2, 2025 at 8:19 PM
So this PoC for CVE-2024-49113 is indeed a thing.
https://www.safebreach.com/blog/ldapnightmare-safebreach-labs-publishes-first-proof-of-concept-exploit-for-cve-2024-49113/
Their writeup is confusingly worded in that it uses both the phrases "victim DC" […]
[Original post on infosec.exchange]
https://www.safebreach.com/blog/ldapnightmare-safebreach-labs-publishes-first-proof-of-concept-exploit-for-cve-2024-49113/
Their writeup is confusingly worded in that it uses both the phrases "victim DC" […]
[Original post on infosec.exchange]
Reposted by Zach Trexler
Additionally, if someone tells you that using a VPN is going to solve your digital privacy/security problem, you should consult the flowchart here: techcrunch.com/2024/11/15/t...
Think you need a VPN? Start here. | TechCrunch
Not everyone actually needs to use a VPN. This simple guide will help you decide if you need a VPN for your situation.
techcrunch.com
December 11, 2024 at 3:51 AM
Additionally, if someone tells you that using a VPN is going to solve your digital privacy/security problem, you should consult the flowchart here: techcrunch.com/2024/11/15/t...
Reposted by Zach Trexler
If you work with #EntraID #AzureAD SignInLogs you may encountered the ResultDescription "Other" quite often.
In my latest blog post I show you how to easily resolve those messages to a meaningful error message and without leaving the KQL query windows. #Sentinel #KQL
In my latest blog post I show you how to easily resolve those messages to a meaningful error message and without leaving the KQL query windows. #Sentinel #KQL
Other Entra ID / Azure AD SignIn errors
The challenge Most of us analyzing Azure AD SignIn logs have been there. You come across a failed sign-in, but the ResultDescription is not really helpful, but only shows “Other”.
Other? But what ...
cloudbrothers.info
August 6, 2023 at 11:48 AM
If you work with #EntraID #AzureAD SignInLogs you may encountered the ResultDescription "Other" quite often.
In my latest blog post I show you how to easily resolve those messages to a meaningful error message and without leaving the KQL query windows. #Sentinel #KQL
In my latest blog post I show you how to easily resolve those messages to a meaningful error message and without leaving the KQL query windows. #Sentinel #KQL