• 8 Posts
  • 919 Comments
Joined 2 years ago
cake
Cake day: June 7th, 2023

help-circle
  • We’ve been seeing these types attacks for a couple of months, mostly not from telegram links. The way they work is pretty ingenious, in that is leverages the fact that everyone has gotten used to the various “do this thing to prove you’re human”. In this case the attack works like:

    • User is directed to a link controlled by the attacker. The link will claim to be something the user wants.
      • In my experience, this has been movie or software downloads.
    • This site presents a page which basically says “prove you are human to get the thing”.
    • In the background, the attack site uses javascript to pre-load the user’s clipboard with a malicious PowerShell command.
    • The site’s instructions to “prove you are human” looks like:
      1. Press the key combination Win+R
      2. Press the key combination Ctrl+V
      3. Press Enter
    • The user being trained to “prove they are human” follows these instructions, resulting in a PowerShell command being run which downloads the malicious payload and executes it.

    The payloads we’ve seen have been info stealers (RedLine, Lumma Stealer, etc.). They also drop some type of Remote Access Tool (e.g. AnyDesk) which the attacker could come back to later, move laterally and try to deploy ransomware.


  • foreign intelligence partners … will curtail what they share with the US

    Wouldn’t be surprised if domestic intelligence agencies start curtailing what they share. The fact is that a TS/SCI isn’t that hard to get, if you aren’t a complete fuck up. And even folks who have been a complete fuck up in the past can still get one, if they stopped being a fuck up long enough ago. That many of the folks in Trump’s cabinet would be denied a clearance speaks to the level of fuck uppery that they have been up to recently. Gonna be an interesting four years with the Felon in Chief.



  • My friends know, and we usually get together and play games on a day designated as my birthday. It’s usually on the weekend before or after the actual day. As for remembering, if you know someone well enough to be present at their birthday, just write it down. You all have phones, don’t you? Honestly though, the older I get, the less it has mattered. It’s really just an excuse for us to get together. My wife gets me something sweet (usually a cinnamon roll), everyone sings “happy birthday” and we go back to whatever game is on the table. It’s nice to be thought of, but mostly I just want to be with friends and family.


  • Your graph is missing the more important factor: demand.
    I’m guessing you weren’t born into money, which is what most ultra wealthy people do. So failing that, you need to cultivate a skillset which includes doing something that other people want and are willing to pay for. And yes, that often means learning specialized, or dangerous skills. Take something like a high voltage electrician, they can make good moeny but they need a specific skillset, certifications, and fucking up can mean dying very quickly. Construction divers or underwater welders can earn good money as well. Though again, specific skillsets, certifications, and risks. On the less risky side, programmers can make good money, though that usually does require a lot of learning. IT and cybersecurity also fit this bill, though they do tend to follow your graph.

    In short, businesses pay for people because they have a need for something to get done. No need, no money. You can be the most knowledgeable person in the world about flaking stone tools, and you are going to be struggling. Another route to income is starting your own business, but this has similar pitfalls. Start a business which people aren’t interested in and you’re going to flounder. Also, running a business does take it’s own skillset, beyond the skillset involved in whatever the business’s focus area is. Though, done right, you can focus on running the business and hire people to do the other stuff.

    You are falling into a trap a lot of young, smart people do. You are assuming that knowledge and intelligence is what you need to succeed. It’s not your fault, you’ve been fed that line for the last 12-ish years of your life by schools and society. It’s bullshit. They do help, but knowing the right people, luck and the ability to socialize are more important. In short, go to business school and go into management. If that doesn’t appeal to you (and that is perfectly valid) then you need to find and learn skills that businesses are willing to pay for. At the moment, that probably means a trade, like electrician or welder; or, a technical role such as engineering, IT or programming. If your interest is in the Humanities, sorry you’re probably fucked.






  • Along with the things others have said (Backups, Linux, Docker, Networking) I’d also recommend getting comfortable with server and network security. A lot of this is wrapped up in the simple mantra “install your goddamn updates!” But, there is more to it than that. For example, if you go with Nextcloud, read through their hardening guide and seriously consider implementing all of the recommendation. Also think through how you intend to manage both the server and instance. If this is all local, then it is easier as you can keep SSH access to the server firewalled off from the internet. If you host part of your stuff “in the cloud”, you’ll want to start looking at limiting down access and using keys to login (which is good practice for all situations). Also, never use default credentials. You may also want to familiarize yourself with the logs provided by the applications and maybe setup some monitoring around them. I personally run Nextcloud and I feed all my logs into Splunk (you can run a free instance in a docker container). I have a number of dashboards I look at every morning to keep an eye on things. E.g. Failed/successful logins, traffic sources, URI requests, file access, etc. If your server is attached to the internet it will be under attack constantly. Fail2Ban on my wireguard container banned 112 IP addresses over the last 24 hours, for 3 failed attempts to login via SSH. Less commonly, attackers try to log in to my Nextcloud instance. And my WordPress site is under constant attack. If you choose to run Wordpress, be very careful about the plugins you choose to install, and then keep them up to date. Wordpress itself is reasonably secure, the plugins are a shit-show and worse when they aren’t kept up to date.









  • arch-based distros are more noob-friendly

    I’ll take some of whatever you are smoking. And I am typing this on an Arch Linux system.
    Sure, I love that I have a high degree of control; but, if I were planning to ask a new user to install Linux, I would not be handing them Arch. The Install Page may look nice; but, it’s a minefield of “oh go chose something” and you come back three hours later having read way too much detail about bootloaders.

    Arch is fantastic for choice, but the KISS principal is not available via pacman. It may be available in AUR. So, go learn what AUR is, spend way too long picking an AUR package manager only to learn it’s not available their either and you need to build it from source.

    Joking aside, I do need to try the SteamOS install. That might actually be a noob-friendly Arch distro.