cR0w@cR0w@infosec.exchange
cR0w@cR0w@infosec.exchange
cR0w@cR0w@infosec.exchange
cR0w@cR0w@infosec.exchange
I'm still mad that firewall vendors have their heads up their AI's asses and won't enable blocking by ASN. So here is the ASN-DROP list from @spamhaus@infosec.exchange but I pulled the advertised prefixes for them all so you can block the networks in your firewalls. Or at least look into it.
Fuck you, vendors. 🖕
https://cascadiacrow.com/spamhausAsnDropNetworks.txt
#GAYINT #FURINT #threatIntel
cR0w@cR0w@infosec.exchange
Truth in advertising.
https://github.com/external-secrets/external-secrets/security/advisories/GHSA-fcxq-v2r3-cc8h
cR0w@cR0w@infosec.exchange
Huh. That's more commercial than residential, it appears. 🧐
cR0w@cR0w@infosec.exchange
Fuck it. Go nuts. Hackity hack hack. Blockity block block.
https://cascadiacrow.com/20250813jerks.txt
#GAYINT #FURINT #threatIntel
cR0w@cR0w@infosec.exchange
Holy residential botnet passwords sprays, Batman. That's a lot of compromised American devices.
cR0w@cR0w@infosec.exchange
Huh. That's more commercial than residential, it appears. 🧐
cR0w@cR0w@infosec.exchange
Holy residential botnet passwords sprays, Batman. That's a lot of compromised American devices.
cR0w@cR0w@infosec.exchange
I am NOT sharing IOCs for something called smishing I just can't I won't.
cR0w@cR0w@infosec.exchange
Go nuts.
https://github.com/actuator/cve
cc: @Dio9sys@haunted.computer @da_667@infosec.exchange
#internetOfShit
cR0w@cR0w@infosec.exchange
Teams allowing open inbound calls / messages, workers dot dev, and Brave? That's a trifecta of easy mitigation for most orgs. Anyway, have some EncryptHub analysis.
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/when-hackers-call-social-engineering-abusing-brave-support-and-encrypthubs-expanding-arsenal/
#threatIntel
cR0w@cR0w@infosec.exchange
Hey everyone, Snopes is back. Don't be a dick.