fyi for the new followers iβm not really using this thing. find me on LinkedIn if you want to chat. bye!
22.11.2024 15:49
π 1
π 0
π¬ 0
π 0
fyi for the new followers iβm not really using this thing. find me on LinkedIn if you want to chat. bye!
the environments and art direction is really good
thought about making one but i think you have to manage a database, so i noped out
when vendors give me a new feature to test
itβs ORD for me
somehow after 4 hours i still donβt have a shirt / tunic? my link is running around more than half naked. π€£
tbh that sounds a-ok
ended up needing to drop off early but solid conf overall, would be great to be there in person sometime
demo / walkthrough of the redline builder was π₯ but then the stream cut out π§
this talk is dropping hot IOCs, especially those github dorks
deep dive on redline stealer backend, this stuff really highlights the nuances between cybercrime and nation state actors
unfortunately missed most of the venom spider talk but love seeing the OSINT, that was some of the most interesting stuff from when i was at CrowdStrike
missed half the lightning talks due to work work π
TA444 using AppleScript and shell commands to drop payloads on macOS
TI at COIN talking about approval farming campaign that leveraged cloudflare, trojaned open source wallet apps, distributed on github and can be tracked by signer
phat panda is my rap name
didnβt realize this is lightning talks till just now β‘οΈ
authenticode signatures, this talk is focused on solar marker (not familiar with this one!)
Itβs alive! Joe Wise and I have been working on answering the question: What the heck is going on in the ecrime threat landscape post macros? Spoiler: chaotic vibes
https://www.proofpoint.com/us/blog/threat-insight/crime-finds-way-evolution-and-experimentation-cybercrime-ecosystem
LB.SB might be the successor to Breached, but seems like itβs still too early to tell
data on actual sale price v list price seems inconclusive, probably due to lack of visibility and lack of trustworthiness (of sellers)
fin, gov, and tech were most popular content sold π¬
wow, prices by sector for sold data β top 3 are aerospace, health, and entertainment
sounds like there was a correlation in forum chatter by language to leaked data affecting specific countries, otherwise EN was predominant language
some low-level data analysis on forum data, this is worth watching later π
CrowdStrike crew talking about Breached
affiliates will straight up give intel to extortion targets (or in this case, extortion negotiators)
used to have heavy vetting for affiliates, but less so now. speaker describing how they had to βask for the managerβ when dealing with an affiliate, who turned out to be scamming the RaaS leader (avaddon).
