Presentations

I realized that I have a few presentations but don’t have them linked on my site. I’m a bad webmaster.

Live Fire data breach incident drill – Constance Snelling and Bryan Murphy
Lansing ISSA Chapter
November 19, 2020

This session walked through the actions taken by various parties throughout a company during a ‘Live Fire’ data breach incident drill. In this drill, a threat intelligence vendor notified the Company’s Threat Intelligence department, through established communication lines, that customer data was for sale on the Dark Web.


Account Take Over (ATO) Threat Actor: Tactics, Techniques, Communications, and Underground Culture
January 9, 2019

Account Take Over (ATO) has become a large attack vector and many infosec professionals find themselves plunged into this unfamiliar world. One day you are working malware, IDS alerts, and employee misuse, as you always have. Suddenly you are in a world of financial fraud, tracking digital transactions, listening to phone calls and model threat actor TTPs. This presentation talks about the problem of ATO, how an organization can prepare themselves to deal with the issue, and most importantly, how the underground works. This will include how fraudsters communicate, tools of their trade and, how they monetize and launder their money. A good time will be had by all. No punch or pie will be provided.


The Semi-Coherent Ramblings of an Over-the-hill Incident Response and Forensics Guy
February 14, 2018

An InfoSec/IR veteran passes on valuable lessons, learned over the course of long and exciting career. The diversity of my work has lead to some interesting situations. From universities to defense; financial services to web hosting. Chances are I have seen it and learned something worth passing on about it. I will try to keep the ramblings as coherent as possible, but can’t make any promises on limiting the number of memes.

Unbiased Corona Virus (COVID-19) Resources

Some of my observations have compelled me to make this post. The bottom line is that the American media is failing us on COVID-19 coverage because it can’t get past partisanship.

The right-wing media is trying to tell you that it’s all been blown out of proportion and there is nothing to worry. The left-wing media is fixated on how severely Trump has failed/is failing at his handling of this pandemic. Neither is helpful.

The solution is to arm yourself with as much information as you can and form your own opinions.

I created a bookmark folder called COVID-19 and stuck these links in it. Now I just right-click -> open all in new tabs and read all of the sources.

These are some of the better links.

Real Resources:
https://www.cdc.gov/coronavirus/2019-ncov/index.html
https://www.arcgis.com/apps/opsdashboard/index.html… (Johns Hopkins Multi-Source map)
https://www.who.int/emergen…/diseases/novel-coronavirus-2019
https://www.who.int/…/novel-coronavirus-…/situation-reports/ (W.H.O SITREPs)

National Mainstream Media:
These are biased, but if you remember that when consuming their news you should be okay. Don’t just read the sources with views that politically align with yours. It’s important to know how others are thinking about this to better understand their behavior and prepare yourself.
https://www.cnn.com/…/coronavirus-outbreak-03-16…/index.html
https://www.foxnews.com/…/he…/infectious-disease/coronavirus

Collections:
https://news.google.com/search…
https://www.reddit.com/r/Coronavirus/

Local:
Be sure to bookmark your state’s web site as well as local government and local channels news.

New layout

My friend, Andrew, will be assisting me with the new design and layout.  He was my partner in crime in the creation of metaguard, membrane and metazoa.

He said that he will begin work on during the Thanksgiving break.  Although it just occurred to me that he lives in Canada.  I didn’t realize that people from Canadia [sic] celebrated Thanksgiving. 🙂

Noc

I have been planning on setting up a NOC (Network Operations Center) in my home office for a wile now… but this article pushed my desire over the top.  I don 't plan on following it to a tee as I have better software than a couple of his refferences… but you get the idea.


I will post pics when its done. 🙂

Still alive (barely)

Wow, its been a long time since I last bloged.  I will be sure to post more regularly from now on.


I have War.c and Glamkookie crashing at my place for a wile.  They are both in here Canada.  Every day has been a blast and I am glad they are around. 🙂


GuardianLogic has been incorporated.  Now that all of the nit picky legal crap is out of the way I can officially change the name of my biz from Sigil Studios to GuardianLogic, Inc.  If you are a client you should receive an email shortly explaining it all.


I began studying for my CISSP exam.  I never realized how crazy it is.  Its a 6 hour test and is only offered once this year in MI.  I bought two books and have some practice tests.  I have never been much into the certification classes.  Why pay $2000+ for a class when you can pay $100 for a couple books and still pass?!


I have also been sick for the last couple of weeks.  I have lost my voice on a couple of occasions and constantly hack stuff up.  I wish I could be well again.  Can 't wait till I finally get my health insurance from work.  Its sad that I 'm looking forward to going to the Dr, but I have had a lot of health problems “stacking up” over the time that I was self employed and without insurance.  One of the first things I will have done is getting these damn wisdom teeth yanked.  All four (yes 4) are impacted.  One is cutting into nerves in my jaw and I get Hellaciose headaches from it.  It also causes sinus and inner ear infections.  And I tell ya, if you have ever had an inner ear infection you would be looking forward to having the bastards pulled too. 🙂


As I said earlier, I will be posting with more regularity again and updating the page a bunch.  Keep checking back. 🙂

Feds may turn to bounty hunters to catch spammers

I just read an article that states the Federal Trade Commision is currently involved in a 9 month evaluation of a system that allows for “bounty hunters” to track down spammers and receive 20% of the fines they have to pay if a conviction is achieved.


This to me sounds like the best way to get kill all spam.  Its a hard process to track a spammer down but no one has ever been motivated enough, IMO.  What do you get out of it?  Nothing.  The authorities who you report the spammer to (even with all the homework you did tracking them down) doesnt even get you a “we got the guy, thanks for your help”, it gets you a “We will investigate” and than you never hear back again.  The same goes for hackers.  You will never hear back from an ISP, or Law Enforcement on what they did with the info you suplied.


I feel as if all ruleing orginizations in this country have completly abondoned the people they serve and are all about serving themselvs now.


Im jaded and cynical, but I got that way for a reason.

Technology Spontaneously Combusts In Sicily

“According to MSNBC, ever since mid-January, various electronic devices have been spontaneously combusting in the now evacuated town of Canneto di Caronia, Sicily; at this point, the fires are almost daily. The town has been disconnected from the larger electrical grid and was hooked to a generator, but that, too, caught fire. Even unplugged items have succumbed. Nothing seems to have burst into flame except where there is someone present to witness it, but the police no longer suspect a prankster -- after witnessing wires catch fire without cause. Scientists have yet to explain the phenomenon (although unproven theories abound), leading many people to look to supernatural causes.”

Hockey

I was watching the wings game tonight and thinking “man it would be cool to play hockey”.  But that will never happen with me. reason: I can 't scate.  But then I got to thinking…. you could probably use the stick for stabilization.  If you start to fall just put all of your upper body weight onto the stick and spread your legs… you tri-pod and can 't fall.


Maybe I just had to much wine. 🙂

GMail

Google has taken the last 10 years of systems software research out of university labs, and built their own proprietary, production quality system. What is this platform that Google is building? It 's a distributed computing platform that can manage web-scale datasets on 100,000 node server clusters. It includes a petabyte, distributed, fault tolerant filesystem, distributed RPC code, probably network shared memory and process migration. And a datacenter management system which lets a handful of ops engineers effectively run 100,000 servers. Any of these projects could be the sole focus of a startup.


http://blog.topix.net/archives/000016.html

American Made Cars

The other day I swore I would never purchase another new car because of how quickly they drop in value.  Last night wile playing at The Kelley Blue Book site I made an intereresting discovery… Only american cars values drop like boulders in a lake. 🙂


My hatred for american cars has grown over the years and this only feeds it.


Case in point…


BMW 325i
2004 Retail: 28,495
2000 Retail: 20,735
4 year depreciation : 7,760


Pontiac BONNEVILLE SE
2004 Retail: 27,570
2000 Retail: 11,635
4 year depreciation : 15,935


Toyota SOLARA SLE
2004 Retail: 26,510
2000 Retail: 14,920
4 year depreciation : 11,590


I will let the numbers speak for themselves.