hey folks, you'll find me where the skies are blue, as "kurtisj". more open source and real free speech, much less trash.

x-middleware-subrequest: middleware.

RT @GreyNoiseIO: 🚨 GreyNoise has detected active exploitation of Silk Typhoon-linked CVEs in the past 24 hours. 90 threat IPs actively targ….

RT @MsftSecIntel: Since late February 2025, Microsoft has observed Moonstone Sleet, a North Korean state actor, deploying Qilin ransomware….

ransomware takes down oooooold company.

RT @DOJNatSec: Justice Department Charges 12 Chinese Contract Hackers and Law Enforcement Officers in Global Computer Intrusion Campaigns….

RT @HackingLZ: 😂😂😂😂.

RT @craiu: 🚨 Suspicious French-themed domains spotted in the Prospero OOO (RU) range! 🚨. A cluster of domains mimicking BNP Paribas, Ameli,….

for some reason, the related CISA page notifying on russian misinformation campaigns during the election was removed. but you can still find it:

RT @benbybit: Bybit Hack Forensics Report.As promised, here are the preliminary reports of the hack conducted by @sygnia_labs and @Verichai….

the term "thrunting" isn't great, but this article proposes preparing and visualising prior to your hunts. it's excellent advice, keep focus.

bcrypt might be a better alternative than sha256. maybe.

a fundamental detection engineering challenge is that you can't codify "intent". one environment's "malicious" is another environment's "welp, i got it working and done".

RT @MsftSecIntel: Seashell Blizzard's specialized operations have ranged from espionage to information operations and cyber-enabled disrupt….

RT @MsftSecIntel: Microsoft is publishing research into a subgroup within the Russian state actor Seashell Blizzard and its multiyear initi….