Notices by Dr. Christopher Kunz (christopherkunz@chaos.social)

@GossiTheDog I read half a VPN password aloud to a victim on the phone, they completed the other half. They're *definitely* legit. They also seem to be mostly cleartext, even those not looking like cleartext?

@GossiTheDog @lawrenceabrams figures. I'll update my news item later if I get the chance. Why a cable customer in Medellin is running pre-release software is another question though... which I'm not going to ask, given the geographic circumstances. ;-)

@GossiTheDog @lawrenceabrams Yes. It's either a pre-release build or the machine was owned before 7.2.2 was installed. The backdoor user exists in the config, so both could be possible.

@lawrenceabrams @GossiTheDog RE #FortiGate leak: I have found the version string "FWF61E-7.2.2-FW-build1327-220914" on one FortiWifi config from Colombia. I'm not sure which build date the first final version had but maybe a pre-release version?

Yeah, sure, why not dismantle the German Federal government, too. We haven't used up our daily contingent of push notifications yet.

As in: The German Chancellor has apparently asked the Federal President to fire the Minister of Finance, Mr. Lindner (Liberals). This means that the coalition of Greens, Liberals and Social Democrats is effectively over.

@jwildeboer It's only 9:30 pm, and the US wednesday is still mighty young. Let's not...

@ryanc Not my favorite, but Swordfish? 23?

A couple of days ago, LockBit had published an entry on their leaksite titled "telekom.com". I asked the Telekom press corps and they denied any incident.

Yesterday, LB also published the data allegedy from Telekom. I had a look at the files. So far, it seems that nothing in the 1.2GByte directory on their file share has anything to do with Deutsche Telekom. It seems that in fact, they breached a client PC owned by a non-profit in Hamburg.

#lockbit #threatintel

@Sempf So... if I created a user on a web site and called myself X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*
then things would go boom?

@patrickcmiller So now in addition to not knowing they way, my sat nav is going to invent places and hallucinate its position? Yeah…no.

2000 Trecker werden in Hamburg erwartet. Das sind fast genauso viele wie im Cookiebanner einer modernen Webseite.