Social Media

Categories

  • Zeek Spicy IPSec Protocol Analyzer Update – v0.2.17

    An update in the protocol analyzer now makes it Zeek v5.2 ready. You can view more here: https://github.com/corelight/zeek-spicy-ipsec You can install the latest version with the following command:


  • Two Men Charged For Breaching Federal Law Enforcement Database And Posing As Police Officers

    In pursuit of victims’ personal information, Singh and Ceraolo unlawfully used a police officer’s stolen password to access a restricted database maintained by a federal law enforcement agency that contains (among other data) detailed, nonpublic records of narcotics and currency seizures, as well as law enforcement intelligence reports. Ceraolo (with…


  • eCrimeBytes S 1, Ep 6: An ID Theft Gang In Florida

    Ya wanna make some money? – Latonia Verdell to Starling Willis … isn’t this how every great criminal business enterprise starts out? It’s the ladies’ episode!  This week we look at an identity theft crime spree involving three Florida ladies who authorities say made thousands of dollars filing fraudulent tax…


  • My Zeek How-To Video Playlist

    Here is a playlist I put together of just my Zeek How-To videos:


  • Zeek Spicy OSPF Packet Analyzer Update – v0.1.4

    An update in the packet analyzer now makes it Zeek v5.2 ready. You can view more here: https://github.com/corelight/zeek-spicy-ospf You can install the latest version with the following command:


  • Vastaamo Compromise Suspect Caught In France

    An update to my blog yesterday: Most notable was the method in which he was caught: But as documented by KrebsOnSecurity in November 2022, security experts soon discovered Ransom Man had mistakenly included an entire copy of their home folder, where investigators found many clues pointing to Kivimäki’s involvement. From that…


  • Animal Hospital Ex-Employee Arrested For Extortion, Cyberstalking

    The ex-employee also left messages on the animal hospital’s work phone, police said. In the messages, Figueroa allegedly said “I vow to tear her kingdom down to rubble,” “She made herself an international target,” “Meet the beast,” and “I’ve got something in motion that can’t be undone.” Text messages left…


  • Detecting A SIM Swapping Attack

    It appears that the perpetrator of the SIM swap abused not only internal knowledge of T-Mobile’s systems, but also a lax password reset process at Instagram. The social network allows users to enable notifications on their mobile phone when password resets or other changes are requested on the account. https://krebsonsecurity.com/2018/05/t-mobile-employee-made-unauthorized-sim-swap-to-steal-instagram-account/ This…


  • My Favorite Free Court Document Resource

    When PACER charges $0.10 per page for everything viewed on their site, including queries, it makes sites like CourtListener worth their weight in gold: https://www.courtlistener.com/ It’s like taking a penny and leaving a penny, but with court documents. – Dr. Jones after saving bank; 2023 CourtListener is a public repository…


  • Extorting Patients of Vastaamo, An Online Psychotherapy Service

    It’s unfortunate the details are scarce on this case, as it would make a good eCrimeBytes episode. A Finnish man was blamed for an attack at an online psychotherapy service named Vastaamo: https://www.databreaches.net/young-finnish-man-detained-in-absentia-over-data-breach-at-vastaamo/ As far as high value targets go, a psychotherapy service holding the deepest darkest secrets of thousands…