Pinned toot
Pinned toot
Pinned toot
Pinned toot
Pinned toot

A classic case of misaligned incentives. VPN providers race to the bottom on fees and just churn out cheap VPS' globally when they need to. Host integrity control & IDS is almost unheard of in the industry. And good luck getting a competent 3rd party audit result public.

这就是为什么我不使用像Nord或Express或PIA这样得到广泛赞助的VPN公司的原因。在他们看来,一分钟的曝光使他们变得不那么可靠。去年我停止使用Nord,很高兴我换了另一个
via @vidyaplusmangos

This is why I don’t use VPN companies that are widely sponsored like Nord or Express or PIA. The minute they get a bunch of exposure that makes them less reliable in my opinion.

I stopped using Nord last year and I’m glad I switched to another.

---------------------------------------
A story of the entire VPN industry, in 4 acts. Starring NordVPN.

twitter.com/kennwhite/status/1

Graboid:在Docker Hub的映像中​​发现了史无前例的Cryptojacking蠕虫
Graboid: First-Ever Cryptojacking Worm Found in Images on Docker Hub

unit42.paloaltonetworks.com/gr

Let me clarify. I was referring to an old incident as disclosed by TV before. There have been a few instances where malware was deployed through TV accounts, but nothing that wasn't in our earlier report. My goal wasn't to imply a current software or infrastructure compromise.

via @cglyer

twitter.com/cglyer/status/1183

New Burp extension to make use of Tor and rotate your IP. Great when you have to fight with source IP based rate limits.

github.com/starhackerz/toripro

Considering the
@MITREattack
framework? This new ATT&CK lays out four primary use cases for how an organization could get started with ATT&CK based on available resources and overall maturity.

mitre.org/sites/default/files/

幽灵行动:公爵没有回来–他们从未离开.
Operation Ghost: The Dukes aren’t back – they never left

-------------------------------------------

The Dukes (aka APT29 and Cozy Bear) have been in the spotlight after their suspected involvement in the breach of the Democratic National Committee in the run-up to the 2016 US elections.
公爵(又名APT29和舒适熊)在涉嫌参与2016年美国大选前违反民主党全国委员会的事件后,一直备受关注

---------------------------------------

welivesecurity.com/2019/10/17/

github.com/eset/malware-ioc/tr

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.