Olivia
Online
Rob Gasior
@RobGasior
Husband, Dad, geek, IT Security Researcher, Ethical Hacker, DFIR / Blue Team, Runner, Pessimistic Villa supporter. Trying to do the right thing
Oxfordshire
Joined April 2010
4.2K Following
831 Followers
4.9K Posts
The voice and wisdom of Sir Alex Younger 🇬🇧 will most certainly be missed. RIP
TeamPCP said they hacked(?) / will hack @Dynatrace 👀
And I wonder - is there anyone from the Dynatrace security team knowing about this and monitoring/ rotating keys?
Also, did anyone find clear indicators for this? My monitoring tools and research didn't come up with anything
Security budget unlocker service:
You Venmo me and give me credentials of a random employee, and I cause a relatively minor yet threatening incident that gets leadership to immediately approve the extra headcount you’ve been begging for
international cyber digest yet again, asking for ins and then planning to post with 0 validation, thats not how journalism works. #Teampcp #teampcp credit: @intelkink we should work as a community to expose fraud in journalism >:(
Who to follow
@xploitrsturtle2 @intelkink 100% agree Cyber Digest is everything wrong with Cyber Journalism, someone should do a talk on all
They bad stuff they have done
@ExploitforgeLTD @cyber_rekk Do you still use capital one, Louis Vuitton, Christian Dior, and Marks & Spencer, reputational damage is a fallacy, people forget and move on fast and it has little impact on people’s buying decisions, also regulatory are yet to have any real impact - did JLR get a fine?
@cyber_rekk @ExploitforgeLTD Prevention is not always cheaper than recovery, It’s just not how the real world works sometimes it’s literally built into contracts, I know for a fact that a lot of Fortune 500 never go over there cyber insurance deductible during an incident and that’s by design
Chompie of IBM X-Force Offensive Research (XOR) used a race condition to escalate privileges on Red Hat Enterprise Linux for Workstations, earning $20,000 and 2 Master of Pwn points. The 🐐
Boring IT/cybersecurity skills that give you a huge advantage…
Active Directory Administrstion
RTing for visibility...
So i think i just had the worst cyber sales call for a while, i wont name and shame, but the guy said he was from the only cyber security firm in the UK, and was trying to shill some SIEM validation too, really didn’t seam needed when you have a Threat Hunting Team,
Some entity within the cyber world has the authority, access, or ability to perform any action an attacker desires to perform. The attacker’s goal is to assume the identity of that entity in some fashion.
Parks, Raymond C., David P. Duggan. “Principles of Cyberwarfare.”
"History made in the Dark".... This is absolute FUD farming and a stain on the cybersecurity community. I use to this this had value, but now its just clickbait slop.
do you understand what just happened to your computer..
Google Chrome secretly downloaded a 4GB AI model onto your device. Without asking.. Without telling you..
It's called weights.bin. It lives deep in your system folders. It powers Gemini Nano - Google's on-device AI.
And if you delete it? Chrome re-downloads it automatically. Like nothing happened.
Just Google deciding your hard drive is their storage unit.
At 1 billion Chrome users - that's 4 BILLION gigabytes of data pushed silently across the internet.
The carbon footprint alone equals tens of thousands of cars running for a year.
Check your disk right now:
📁 %LOCALAPPDATA%\Google\Chrome\User Data\OptGuideOnDeviceModel
To stop it: chrome://flags → disable Optimization Guide On Device Model → restart Chrome → delete the folder.
Reshare so people know what's sitting on their computers.
These IDM records pushed the limits of studio-based experimentation. https://t.co/zwRZhdNZ4g
we live in a world of hype, grift, nonsense and insanity. I am a massive fan of technology. I am not a fan of overhyping things.
See my response. This is correct. It is 💯 a compliance issue.
Most orgs have a lot of incidents. Its not about detection only. You need to be able to respond and govern too.
There's a lot of people in infosec who need experience in business to better understand other reasons you need logs.
In business, you have contractual obligations, regulatory obligations for records keeping and digital ledgers, compliance policies from frameworks that govern the organanizatiin to make regulatory obligations easier, regulatory audits, compliance audits, other types of audit.
>99% percent of the logs are not used detection, they are used for response. If you cannot show your incident RESPONSE plan to auditors, you will not pass audits.
I heard SH RRR unit is actively working on releasing a decryptor for ShitForce
Last Seen Users on Sotwe
Bisexual Porn🏳️🌈
Seen from Brazil
Aidil
Seen from France
فحل محرومات صنعاء
Seen from Saudi Arabia
Memek lover
Seen from Indonesia
John Foreman CBE
Seen from United Kingdom
آلُِعٍسڪري ْٰ⁽⭐️₎🇮🇶
An@ya💖H@®°°N
Seen from Pakistan
AMA 2K AMAHLE
Seen from South Africa
KATE 
Seen from France
3DHentai
Seen from Indonesia
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers