GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE
  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Notices by Viss (viss@mastodon.social)

  1. Embed this notice
    Viss (viss@mastodon.social)'s status on Saturday, 11-Jul-2026 03:21:01 JST Viss Viss

    happy friday, internet

    In conversation about a day ago from mastodon.social permalink
  2. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 07-Jul-2026 05:12:44 JST Viss Viss

    https://m.slashdot.org/story/456046

    looks like claude has been your insider threat for a while now

    In conversation about 5 days ago from mastodon.social permalink

    Attachments


    1. https://files.mastodon.social/media_attachments/files/116/874/627/025/268/979/original/4c9fc33b987ade3a.jpg
    2. No result found on File_thumbnail lookup.
      Slashdot
  3. Embed this notice
    Viss (viss@mastodon.social)'s status on Monday, 06-Jul-2026 11:15:39 JST Viss Viss
    in reply to

    neat!
    #homeassistant

    In conversation about 6 days ago from mastodon.social permalink

    Attachments


    1. https://files.mastodon.social/media_attachments/files/116/868/991/383/290/203/original/4c6e1a78a3d619f0.png
  4. Embed this notice
    Viss (viss@mastodon.social)'s status on Monday, 06-Jul-2026 11:15:39 JST Viss Viss

    i should make a home assistant wet bulb graph

    In conversation about 6 days ago from mastodon.social permalink

    Attachments


    1. https://files.mastodon.social/media_attachments/files/116/868/821/982/037/900/original/402d4a71b5c96248.jpg
  5. Embed this notice
    Viss (viss@mastodon.social)'s status on Monday, 06-Jul-2026 11:15:38 JST Viss Viss
    in reply to

    update: it just tickled the red all day then fell off.
    totally fine if youre a weirdo hermit like me and dont go outside. less good if you do strenuous stuff outside.

    In conversation about 6 days ago from mastodon.social permalink

    Attachments


    1. https://files.mastodon.social/media_attachments/files/116/870/495/095/301/425/original/de8695f84860143e.jpg
  6. Embed this notice
    Viss (viss@mastodon.social)'s status on Monday, 06-Jul-2026 11:15:38 JST Viss Viss
    in reply to

    Here's the howto if you wanna do it

    https://gist.github.com/Viss/04646803ae950a0b0f1300ef5df99733

    #homeassistant

    In conversation about 6 days ago from mastodon.social permalink
  7. Embed this notice
    Viss (viss@mastodon.social)'s status on Thursday, 02-Jul-2026 08:01:44 JST Viss Viss

    https://www.theguardian.com/us-news/2026/jul/01/empire-state-building-banner-proposal

    ill take this over a gender reveal wildfire every day

    In conversation about 10 days ago from mastodon.social permalink

    Attachments


  8. Embed this notice
    Viss (viss@mastodon.social)'s status on Wednesday, 01-Jul-2026 09:34:10 JST Viss Viss
    in reply to
    • Cory Doctorow

    @pluralistic holy shit! congrats man!

    In conversation about 11 days ago from mastodon.social permalink
  9. Embed this notice
    Viss (viss@mastodon.social)'s status on Sunday, 28-Jun-2026 03:29:04 JST Viss Viss

    i made this gif in 2016.
    ten years ago
    its from one of simone giertz' videos from before she got famous.

    seems super relevant today.

    In conversation about 15 days ago from mastodon.social permalink

    Attachments


  10. Embed this notice
    Viss (viss@mastodon.social)'s status on Saturday, 27-Jun-2026 08:31:03 JST Viss Viss

    woo! orbital bugfixes in!

    i have in fact, pushed to prod past 4pm on a friday :D

    In conversation about 15 days ago from mastodon.social permalink
  11. Embed this notice
    Viss (viss@mastodon.social)'s status on Friday, 26-Jun-2026 03:18:16 JST Viss Viss
    in reply to
    • Quinn Norton

    @quinn i miss the days when shit like national burrito day was 'the news'

    In conversation about 17 days ago from mastodon.social permalink
  12. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 23-Jun-2026 09:15:41 JST Viss Viss

    fucking spectacaular

    https://www.theregister.com/personal-tech/2026/06/22/microsoft-accidentally-kills-epic-outlook-email-threads/5259388

    microsoft broke replying to email in outlook

    In conversation about 19 days ago from mastodon.social permalink

    Attachments


    1. https://files.mastodon.social/media_attachments/files/116/796/259/074/515/991/original/57f39f7afe6a720b.png
  13. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 23-Jun-2026 03:49:01 JST Viss Viss
    in reply to

    my entire angle here was simply:

    "if we're not phshing people with what they NORMALLY get hit by, we're doing them a disservice and training them to freak out on false positives, or whatever bogus nonsense got dreamed up by someone who doesnt actually deal with phishing IR all day. we need to be as close to real attackers as possible"

    In conversation about 19 days ago from mastodon.social permalink
  14. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 23-Jun-2026 03:49:01 JST Viss Viss
    in reply to

    my job was to bring all the redteam creativity i'd been fostering before taking the job into reorganizing the internal twitter security aparatus. One thing of concern at the time (because this was the hot thing in 2011) was internal phishing training.

    meaning: running soft, but live-fire phishing campaigns against the staff to measure how they did. *MY* intention was to improve things, but "the market" later ended up just calling this an insurance/compliance checkbox

    my program was different

    In conversation about 19 days ago from mastodon.social permalink
  15. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 23-Jun-2026 03:49:01 JST Viss Viss

    https://www.theregister.com/security/2026/06/22/canadian-health-board-sorry-after-tasteless-phishing-test/5259320

    let me tell you a story about the very first time i did an in-house phishing campaign for twitter, after they hired me in 2011

    In conversation about 19 days ago from mastodon.social permalink

    Attachments


  16. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 23-Jun-2026 03:49:00 JST Viss Viss
    in reply to

    "well, my work gave it to me. i just got hired at twitter and this was one of their onboarding perks"

    so what happened next is super super fucking american. super WEALTHY american, specifically.

    there was no discussion, there was no phonecall, there was no, like, line of questioning

    the steakhouse straight up called their legal team, and had their legal team get in touch with twitters general council

    In conversation about 19 days ago from mastodon.social permalink
  17. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 23-Jun-2026 03:49:00 JST Viss Viss
    in reply to

    fuckin nope.

    one person didnt take the time to click at all, bypassing the entire phishing campaign, they printed out the ticket and walked it to the steakhouse. they presented the qr code to the greeter at the front desk, who went 'uhhh... this isnt real. our gift cards are ... not that.'

    this guy insisted. he pushed. so the front desk person went to talk to the manager. the manager ... was not happy.

    "where did you get this? why do you think its real?"

    In conversation about 19 days ago from mastodon.social permalink
  18. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 23-Jun-2026 03:49:00 JST Viss Viss
    in reply to

    so i looked around town for a nice restaurant that had a good selection of stuff, and was on the low end of the 'pricey' side of things, and dreamed up a phishing lure:

    a QR code for a 20% off coupon at a nice steakhouse in sf that was popular at the time. the place didnt actually use QR codes as their gift cards. they were super fancy, magstripe cards handed out in little envelopes so guests could feel special. I figured a jpeg of a qr code emailed to people would be a dead giveaway

    In conversation about 19 days ago from mastodon.social permalink
  19. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 23-Jun-2026 03:49:00 JST Viss Viss
    in reply to

    and twitter at the time was squirting money all over the place. staff got all sorts of perks.

    so i figured - hey, all these 20somethings fresh out of college are going back home after work and gushing to their friends about how much cool shit they just got from their cool new job - thats 100% a vector, i should take advantage of that.

    In conversation about 19 days ago from mastodon.social permalink
  20. Embed this notice
    Viss (viss@mastodon.social)'s status on Tuesday, 23-Jun-2026 03:49:00 JST Viss Viss
    in reply to

    so i spent a couple weeks noodling on it. That time was my onboarding.

    see, at the time, twitter would fly noobs up to the office in sf for 2 weeks of onsite trainng. part of that, amusingly, was me doing a presentation to the noobs about "welcome to twitter, you now have a target painted on your back, people will try and phish you to either get shells or to get access or to get intel etc. you have to be careful now. just by working here, your risk goes up"

    In conversation about 19 days ago from mastodon.social permalink
  • Before

User actions

    Viss

    Viss

    D̒͂̕ᵈăᵃn̕ᶰ Ť̾̾̓͐͒͠ᵗe͗̑́̋̂́͡ᵉn̅ᶰtᵗl̀̓͘ᶫe̓̒̂̚ᵉrʳ:: Founder, Phobos Group:: Quad Flooper :: Scoville Addict :: Public Speaker :: food pornographer:: Twitter Alum (2011-2012):: security histrionics:: finance histrionics:: tattoo'ed nerd:: security longhairpart george carlin, part bill hicks, part robin williams. I run a tiny security consulting company, make hotsauce, watch cartoons and figured out how to weaponize home assistant. I found 118 dollars of btc in my garage.

    Tags
    • (None)

    Following 0

      Followers 0

        Groups 0

          Statistics

          User ID
          15675
          Member since
          2 Nov 2022
          Notices
          604
          Daily average
          0

          Feeds

          • Atom
          • Help
          • About
          • FAQ
          • TOS
          • Privacy
          • Source
          • Version
          • Contact

          GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

          Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.