ICS DFIR @dragosinc, martial artist, marksman, humanist, Lvl14 Neutral Good rogue, USAF Ret. Tweet *very serious* things about infosec. Thoughts mine. They/them

Chicago, IL
Joined October 2010
Me when there’s a CFP: “I have no ideas and I’ve given every talk on infosec ever” Me when someone asks me to explain one of 50,000 infosec topics:
14
21
3
371
GIF
Lesley Carhart retweeted
"Twitter has banned @wordlinator, a bot that replied to people’s Wordle posts with rude messages that include spoilers for the next day’s game. The account’s spoilers appeared to be accurate (the key is easily accessible in the game’s code)" theverge.com/2022/1/24/22899…
4
25
15
101
Lesley Carhart retweeted
Amnesty International released the Mobile Verification Toolkit in July 2021 to help people determine whether their devices had been infected with Pegasus spyware. Here's what happened next. citizenlab.ca/2022/01/projec…
1
16
2
22
Show this thread
Quick blog about finding malware by brute forcing uncommon string mutations, includes examples of Nobelium's FLIPFLOP, Meterpreter style "stack push" strings, a handful of scripts, sample yara rules and string lists to get you started. #100DaysofYARA stairwell.com/news/hunting-w…
3
22
6
63
Show this thread
Lesley Carhart retweeted
Data such as call recordings and screenshots connected to South Carolina hunting and fishing licenses was exposed in a security breach last year
8
11
Lesley Carhart retweeted
Replying to @hacks4pancakes
This is what happens when the authorities say "the worst is over". That's when the people who barely follow the guidelines throw it all out the window and help spread it again. I'm so sick of this pandemic.
2
8
35
WTAF did y’all *do* last week, Chicagoland?
19
3
40
Lesley Carhart retweeted
We had the opportunity to sit down with one of our members, @beard_sec, learn about his role in Cyber, and his experience with VetSec. Read more about USMC veteran Michael Maben! veteransec.org/meet-a-member… #meetaveteran #cybersecurity #veteran #military #infosec
4
13
Lesley Carhart retweeted
“We assess w/ medium confidence that stolen credentials were used in the attack based on our investigation thus far….and high confidence that actors had access to some victim networks in advance of attacks, potentially for a few months or longer.” -@TalosSecurity @CiscoSecure
Researchers break down WhisperGate wiper malware used in Ukraine website defacement zdnet.com/article/researcher…
7
1
16
Lesley Carhart retweeted
The group responsible for the Belarusian Railway infrastructure ransomware attack have released photographs of their work.
2
103
13
297
Lesley Carhart retweeted
Ahahahahaaaa OMG peak surveillance capitalism
Replying to @AlinaUtrata
We encourage not including personally identifiable information over social media. If you’d like to delete your Tweet, click the "v" or "..." icon at the top of the tweet and select "Delete Tweet." . -Renee
7
95
1
368
Show this thread
Lesley Carhart retweeted
I downloaded all the data Amazon has on me, and honestly the creepiest thing about it is that they sent me the *actual audio files* of every time I spoke* to Amazon Alexa *years ago when I was young and foolish about surveillance
338
8,217
1,268
30,317
Show this thread
Lesley Carhart retweeted
#ESETresearch discovered a new campaign distributing the G3ll3rt Grind3lwald RAT using compromised #GitHub repositories. This malware is advertised in underground forums. @0xE9FBFFFFFF 1/6
1
29
2
59
Show this thread
Lesley Carhart retweeted
We're fuggin doomed. The GOP is announcing out loud their unwillingness to ever again abide by election results, while @CNN just ran a story and discussion about inflation hitting those buying Peloton exercise bikes.
133
835
51
4,483
Lesley Carhart retweeted
We have encryption keys, and we are ready to return Belarusian Railroad's systems to normal mode. Our conditions: 🔺 Release of the 50 political prisoners who are most in need of medical assistance. 🔺Preventing the presence of Russian troops on the territory of #Belarus.
At the command of the terrorist Lukashenka, #Belarusian Railway allows the occupying troops to enter our land. We encrypted some of BR's servers, databases and workstations to disrupt its operations.❗️Automation and security systems were NOT affected to avoid emergency situations
15
186
92
385
Lesley Carhart retweeted
My 13yo granddaughter was diagnosed with Stage-4 Hodgkins Lymphoma in December. She's now undergoing six months of chemotherapy. Many folks have asked "how can I help?" or simply "what can I do?" Here is one thing for consideration. #TIA #fuckcancer gofund.me/05322e2e
1
39
3
49
Lesley Carhart retweeted
Scoop --> DHS assesses that Russia would consider conducting a cyberattack on US if Moscow perceived that a US/NATO response to a potential Russian invasion of Ukraine "threatened [Russia's] long-term national security." cnn.com/2022/01/24/politics/…
45
205
24
271
Show this thread
Lesley Carhart retweeted
Cyber-Partisans attacked the network of Belarusian Railways. They encrypted the servers, databases, & workstations to slow down the arrival of 🇷🇺 troops to Belarus. They demand the release of 50 polit. prisoners with hard health conditions, & stop the deployment of 🇷🇺 army.
16
302
51
686
Lesley Carhart retweeted
Ya sure.....#DoneWithCovid That's like saying, "#DoneWithSnow." What are you going to do? Wish it away? 🤡🤡🤡🤡
34
47
6
297
Lesley Carhart retweeted
BREAKING: My office is suing Google for deceiving users and invading their privacy. Google claims that changing your device and account settings protects your data. The truth is, since 2014, Google has systematically surveilled users no matter what settings they choose.
54
1,241
84
3,688
Show this thread