Anyone feel like we should collectively forbid use of wordings like this in any #databreach notification within the industry?
“There is no evidence that any unencrypted credit card data was accessed……”
Almost sounds like we did not look or dont have logs to say if it was accessed…
#infosec #sectoot

Anyone feel like we should collectively forbid use of wordings like this in any #databreach notification within the industry?
“There is no evidence that any unencrypted credit card data was accessed……”
Almost sounds like we did not look or dont have logs to say if it was accessed…
#infosec #sectoot

Ok i am officially blown away by #chatgpt #openai #aws #dfir #sectoot #glacier #restore

looks like all the malicious shenanigans are nuked..#patched 😆​

#openai #chatgpt #infosec #redteam #malware #dfir #sectoot

Remember when people say always take approval for #pentesting

This is what happens when you dont.

While this #alberta MLA may have been acting in good faith and for public good, He clearly failed on lesson 101 of being a security researcher.

He was being investigated for hacking in to Covid19 vaccine portal.

https://edmonton.ctvnews.ca/mla-dang-ordered-to-pay-7-200-for-breaching-alberta-vaccine-portal-1.6173255

#bugbounty #canada #sectoot #infosec

Enhancing our automated #phishing triage workflow, I am planning to unsubscribe the end users automatically by having #SOAR click the unsubscribe link, if the email is triaged as marketing/graymail.

Thinking here is if end users report emails as suspicious they do not want this marketing email. What do you think?

Some may say, arnt you worried by being phished by unsubscribe link - so far I have only every seen 2 emails like that in several years in #infosec
tags: #sectoot #phish

So lets assume you are the #dfir #soc #infosec team/person who decided to stay for whatever reason at #twiter rn. 
What would you monitor for #insiderthreat ? 
#tabletop #incidentresponse #detectionengineering #detection #sectoot #infosec #twittermigration

As we gear up to #welcome another #twittermigration wave, here is a #weekend reminder for new #mastodon infosec #tweeps
1) We have a #wiki to get you started: https://wiki.infosec.exchange
2) Setup #mfa : in #ios mastodon app or web app, just go to Account settings⚙️ >> continue>> 3 line on top right>> Under Account >> Two Factor auth.
3) There is a team that works hard to maintain this instance for us, so consider donating:
https://liberapay.com/Infosec.exchange/
4) #boost 🔃to expand reach, ⭐️ to like/fav it.
5) Use these hashtags for #infosec content while posting and then follow the hashtags:
#sectoot #threatintel #iocs
6) Use content warning as needed and alt text for images
Above all, share your best #pooptoots 🤜🏻
:heart_cybre:

If you're new here, welcome to infosec.exchange. I've had at least one moderator and one other person refer to my account as being a good steward to the community on this account.

I write snort/suricata rules.
I talk about the NSM rules I write and interesting campaigns
I shitpost a lot. I try to do the image captions, because everyone deserves memes. or suffering. Maybe both.

Using hashtags is extremely important to getting information you want here.

Search for the hashtags #threatintel #iocs #sectoot for starters, and look for some of your favorite researchers and create a list to follow. That will get you most of the way towards rebuilding threat intel lists.

I'm somewhat high volume, very off-topic, but welcome to my feed, and the infosec.exchange server all the same.

So lets assume you are the #dfir team/person who decided to stay for whatever reason at #twiter rn.
What would you monitor for #insiderthreat ?
#tabletop #incidentresponse #detectionengineering #detection #sectoot #infosec #twittermigration

@pixelnull agreed. Use #iocs #threatintel #sectoot and then go follow these tags to stay updated.

@themineraria @graham @gattaca @SwiftOnSecurity @gossithedog @DFIRDiva @stark4n6 @azuleonyx @shortstack @eric_capuano @4n6matt @b1n2h3x @DFIRScience @joshua_hickman1 @dwmetz @stu @jerry great list to get started on #sectoot

Shall we collectively agree to use #sectoot for key updates and #infosec for generic here