@ariadne Discord for rapid-fire; GitHub for broader and more measured feedback / iteration. We (hashcat) often start a GitHub issue/discussion after something that's been flying around fast on Discord starts to solidify.
La nuova BBS Γ¨ in fase Alpha. I post precedenti al 22 luglio 2024 potrebbero non essere trasferibili, ma rimarranno disponibili per la lettura su /old/.
tychotithonus@infosec.exchange
@tychotithonus@infosec.exchange
Just doing my undue diligence.
ISP vet, password cracker (Team Hashcat), security demi-boffin, YubiKey stan, public-interest technologist, AK license plate geek. Husband to a philosopher, father to a llama fanatic. Views his.
Day job: Enterprise Security Architect for an Alaskan ISP.
Obsessed with security keys:
techsolvency.com/mfa/security-keys
My 2017 #BSidesLV talk "Password Cracking 201: Beyond the Basics":
youtube.com/watch?v=-uiMQGICeQY&t=20260s
Followed you out of the blue = probably stole you from follows of someone I respect.
Blocked inadvertently? Ask!
Am I following a dirtbag? Tell me!
Photo: White 50-ish man w/big forehead, short beard, & glasses, grinning in front of a display of Alaskan license plates.
Boosts not about security ... usually are.
Banner: 5 rows of security keys in a wall case.
#hashcat #Alaska #YubiKeys #LicensePlates
P.S. I hate advance-fee scammers with the heat of 400B suns
β€οΈ:βπ¨βπ©βπ§π‘ππ»π½π»βπ₯π¦πΆπ«!
Ultimi post creati da tychotithonus@infosec.exchange
-
RE: preferred open source project discussion tool?postato in Uncategorized
-
Kiddo: why do you put the full year with "20" at the front when you sign the school forms?postato in Uncategorized
Kiddo: why do you put the full year with "20" at the front when you sign the school forms?
Me: thousand-yard Y2K stare
-
Did you know that there's a thing called the "Automatic Billing Update" program (ABU), that enables merchants to get notified of your replacement payment card number before it even shows up in your mailbox?postato in Uncategorized
Did you know that there's a thing called the "Automatic Billing Update" program (ABU), that enables merchants to get notified of your replacement payment card number before it even shows up in your mailbox?
https://globalnews.ca/news/9763295/little-known-credit-card-program-companies-information/
Yep, you can guess what the bad guys are doing. They're registering as a merchant and then involuntarily signing people up for nonexistent "subscriptions" ... that their support path mysteriously refuses to let you unsubscribe from:
https://malwaretips.com/blogs/vigor-vita-cbd-gummies/
But if you naively report these to your issuer as simply 'fraud', they will just ... issue you a new card. And then the "subscription" will be charged again.
Many issuer support teams seem be totally unaware of this fraud type. You have to explicitly tell them it's a subscription scam, and ask them block that merchant from using ABU to get your new card number. (That card is lost, but at least the evil merchant won't get the next one).
(I found this out the hard way, helping some elderly friends, whose cards kept getting mysteriously "compromised". When I realized that an unexpected charge happened before they had even received the new card ... I knew it wasn't just ordinary skimming or phishing.)
tl;dr When you detect unauthorized charges, ask your issuer to check for ABU and block the entire merchant. Otherwise, you'll be caught in an unending cycle of useless reissuance!