Recent Posts

Posted in Scams

We have a Security on your Card

More American Express phishing. Clicking the link takes you to a fake login screen hosted on hxxp://www[dot]pilates-fitness-luzern[dot]ch/images/amex/amex/index.php you know, because…

Continue Reading...
Posted in Scams

FW: School-Transcript (1).pdf

Malicious link takes you to a Google drive document. Document was removed before it could be analyzed. From: IT DESK…

Continue Reading...
Posted in Scams

Online Banking Security Update Notice

Link will take you to a fake login page asking for credentials. ——– Original Message ——– Subject: Online Banking Security…

Continue Reading...
Posted in Scams

I am COVID-19 POSITIVE (I need urgent assistance, info)

Message preys on fears, current events, and mentions large sums of money. ——– Original Message ——– Subject: I am COVID-19…

Continue Reading...
Posted in Threat Intel

More Credential Phishing

Today’s phishing expedition involves an email from hkr.glbi@hotmail[dot]com. Subject line reads “IT. Desk shared “Fwd; I shared School-Transcript-April-2020″ with you.”…

Continue Reading...
Posted in INFOSEC Threat Intel

Threat Intelligence

I have been working on a malware investigation for a few weeks. A compromised system was suspected of participating in…

Continue Reading...
Posted in INFOSEC

Reports & Testimony related to Equifax & Marriott Data Breaches

I have added a few pages to archive documents related to large breaches from 2018. You can find links in…

Continue Reading...
Posted in INFOSEC

Threat Hunting Using Newly Registered Domain Lists – Part 1

Author’s Note: This article was inspired by a blog posting over at the SANS Storm Center Infosec Forums. The article,…

Continue Reading...
Posted in INFOSEC

Helpful Splunk Search for Office 365

This is going to be a quick post about using Splunk to look for anomalous activity in your O365 instance….

Continue Reading...
Posted in Life

Falling as an Adult Sucks!

TLDR: Vermont Winter: 3 My Body: -3 This winter has been exceptionally bad for me and getting around. I have…

Continue Reading...