|
flosofl posted:From the Grey Thread. this is loving gross and makes me mad - malwaretech repeatedly asked to be anonymous and although right now this malware looks to be hacked together and vaguely skiddish it could just have easily have been a serious gang with nothing against causing this guy damage
|
# ? May 15, 2017 20:25 |
|
|
# ? May 18, 2024 19:48 |
|
funny Star Wars parody posted:Oh hey i work tangentially on things similar to that Please, do. I'm kind of interested in what can be done in car context that's surprising coming from the phone world.
|
# ? May 15, 2017 20:26 |
|
Volmarias posted:Please, do. I'm kind of interested in what can be done in car context that's surprising coming from the phone world. You can control Navigation, HVAC, audio sources, and access a bunch of logs remotely. I havent dug very deep but with a CAN/Cocoa box simulator you can get at a lot more depending on the make and model
|
# ? May 15, 2017 20:38 |
|
flosofl posted:From the Grey Thread. For the tabloid press this is completely standard behaviour. There's nothing they won't stoop to.
|
# ? May 15, 2017 20:57 |
|
bicycle posted:this is loving gross and makes me mad TBH, I'm almost as outraged that Flipboard is still a thing.
|
# ? May 15, 2017 21:27 |
|
Doom Mathematic posted:For the tabloid press this is completely standard behaviour. There's nothing they won't stoop to. it's not like they're worse than any other brand of journalist. the days of trustworthy reporters are long behind us
|
# ? May 15, 2017 21:37 |
|
more sophos lol https://twitter.com/SophosSupport/status/864211021359194112
|
# ? May 15, 2017 23:31 |
|
lol
|
# ? May 15, 2017 23:39 |
|
this is cause they're using samba. I found another bug in that same component that was supposed to be patched this week.
|
# ? May 16, 2017 00:13 |
|
bicycle posted:this is loving gross and makes me mad - malwaretech repeatedly asked to be anonymous and although right now this malware looks to be hacked together and vaguely skiddish it could just have easily have been a serious gang with nothing against causing this guy damage if he didn't know his handle was doxxable he's an idiot practicing bad opsec. if some poo poo journalist can do it, anyone can. good thing he was made aware of it? so he can gently caress with malware gangs on an alias that won't get him assassinated. or take the full Brian Krebs route
|
# ? May 16, 2017 00:41 |
|
Shaggar posted:this is cause they're using samba. I found another bug in that same component that was supposed to be patched this week. what old broken or otherwise misconfigured samba implimentation doesn't support smb2
|
# ? May 16, 2017 01:36 |
|
Daman posted:if he didn't know his handle was doxxable he's an idiot practicing bad opsec. if some poo poo journalist can do it, anyone can. I'm curious, how do you get around registering a site and getting whois'd?
|
# ? May 16, 2017 01:54 |
|
funny Star Wars parody posted:I'm curious, how do you get around registering a site and getting whois'd? you ask a third party legal fiction personality to do so on your behalf so pay a company to do it for you and transfer ownership
|
# ? May 16, 2017 01:59 |
|
funny Star Wars parody posted:I'm curious, how do you get around registering a site and getting whois'd?
|
# ? May 16, 2017 02:04 |
|
anthonypants posted:what registrar these days won't let you register a site anonymously I've never registered a site, only used whois
|
# ? May 16, 2017 02:17 |
|
every registrar i've used lets you hide your info from whois, though it usually costs a bit extra. 'course, you can always fill out fake info, because nobody verifies it.
|
# ? May 16, 2017 02:32 |
|
The guy got lucky. He didn't know what registering the domain would do in the end. He could have made poo poo worse.
|
# ? May 16, 2017 02:35 |
|
OSI bean dip posted:The guy got lucky. He didn't know what registering the domain would do in the end. He could have made poo poo worse. Apparently it's SOP where he works? Seems reckless to me. I think if he sandboxed it and saw that it killed itself every time it reached out to <bogus domain> and got a response from the sandbox, he might have ended up at the same action, but confident it was the right action.
|
# ? May 16, 2017 03:24 |
|
i think this is UTM only, you should be running XG if you have the capability
|
# ? May 16, 2017 03:31 |
|
anthonypants posted:what registrar these days won't let you register a site anonymously gandi though they let you hide everything but your name, and you can give them a fake name
|
# ? May 16, 2017 03:34 |
|
anthonypants posted:what registrar these days won't let you register a site anonymously there are a few tlds that some registrars decline to allow anonymous registration for
|
# ? May 16, 2017 03:37 |
|
does anyone know of a good security appliance i could use as a vpn/firewall i have a colocated server and wanna put vsphere and some other stuff on private IPs (currently it's just software firewalled), going with hardware since i currently pay for 2U and i'm only using 1 keep in mind this is hobbyist budget, so i'm not looking to spend a whole lot, probably less than $300 at most secondhand/refurb is fine as long as there's a warranty of some sort i just wish i could get the massive discount my company gets on cisco products, i'd get myself a nice ASA
|
# ? May 16, 2017 03:47 |
You could play around with pfsense. Buy a prebuilt one or roll your own on a spare server or even some cheap micro pc laying around.
|
|
# ? May 16, 2017 03:50 |
|
well obviously if you can get a refurb asa from work do it but putting pfsense on an old box is pretty hobbyist-level
|
# ? May 16, 2017 03:51 |
|
rafikki posted:You could play around with pfsense. Buy a prebuilt one or roll your own on a spare server or even some cheap micro pc laying around. i love pfsense but the prebuilt stuff is pretty expensive, and i don't want to roll my own because i suck at it i need at least 3xGbE (DRAC, management NIC, and vmnet NIC)
|
# ? May 16, 2017 03:52 |
|
anthonypants posted:well obviously if you can get a refurb asa from work do it but putting pfsense on an old box is pretty hobbyist-level like i said, i wish i could since we're internal we pay 10% of MSRP on cisco gear but doing that for my own use would leave me out of work lmao, so there's no way
|
# ? May 16, 2017 03:53 |
|
RISCy Business posted:i love pfsense but the prebuilt stuff is pretty expensive, and i don't want to roll my own because i suck at it
|
# ? May 16, 2017 03:53 |
|
anthonypants posted:so your options are spend a bunch of money or learn how to plug a pcie card into a motherboard and click the Next button a bunch, hmmmmmm i've built PCs but never a firewall/router, is $300 overkill or?
|
# ? May 16, 2017 03:54 |
|
RISCy Business posted:i've built PCs but never a firewall/router, is $300 overkill or?
|
# ? May 16, 2017 03:56 |
|
RISCy Business posted:i need at least 3xGbE (DRAC, management NIC, and vmnet NIC) For less than $300?
|
# ? May 16, 2017 03:56 |
|
anthonypants posted:do you have a computer from ~5 years ago lying around and does it have enough pcie lanes for a network card unfortunately i don't flosofl posted:For less than $300? hence looking for used/refurb stuff, i thought maybe it'd be doable in that price range
|
# ? May 16, 2017 03:58 |
|
a buddy of mine is selling an edgerouter-x, i suppose i could pick that up and get a rackmount kit?
|
# ? May 16, 2017 04:00 |
|
if you really want a separate machine there's a lot of old-ish servers on ebay (or even newegg sometimes) that go for like $100-$200 that have two gig-e ports built right in, generally they were leased out to a company for a few years and are still in good working order, just not bleeding edge keep in mind they're loud as gently caress though
|
# ? May 16, 2017 04:00 |
|
ate all the Oreos posted:if you really want a separate machine there's a lot of old-ish servers on ebay (or even newegg sometimes) that go for like $100-$200 that have two gig-e ports built right in, generally they were leased out to a company for a few years and are still in good working order, just not bleeding edge eh, it's a colocated box so noise isn't a concern at all, just needs to fit in 1U
|
# ? May 16, 2017 04:01 |
|
flosofl posted:Apparently it's SOP where he works? Seems reckless to me. it was an absurdly reckless move that everyone's applauding and copying in the hopes of similar pr
|
# ? May 16, 2017 04:01 |
|
RISCy Business posted:eh, it's a colocated box so noise isn't a concern at all, just needs to fit in 1U Wiggly Wayne DDS posted:the domain was bought and sinkholed before any analysis happened beyond 'hey this malware contacts x at startup'
|
# ? May 16, 2017 04:06 |
|
RISCy Business posted:hence looking for used/refurb stuff, i thought maybe it'd be doable in that price range Fortigate 60D's on ebay. They typically go for $150 or so. It's "half-width" but you can buy full width mounting plates for them. Make sure they include the power adapter or you'll have to snag one of those as well.
|
# ? May 16, 2017 04:06 |
|
anthonypants posted:if it needs to be 1u then you probably should've mentioned that "going with hardware since i currently pay for 2U and i'm only using 1"
|
# ? May 16, 2017 04:07 |
|
mikrotik. latvia strong
|
# ? May 16, 2017 04:10 |
|
|
# ? May 18, 2024 19:48 |
|
Wiggly Wayne DDS posted:the domain was bought and sinkholed before any analysis happened beyond 'hey this malware contacts x at startup' just wait until next time when the next wave of ransomware triggers in the opposite direction
|
# ? May 16, 2017 04:19 |