Forwarded from /g/‘s Tech Memes (Gianmarco Gargiulo)
ARE WE BACK??????????????? MOZILLA WORKING ON AN ACTUAL IMPROVEMENT TO FIREFOX?????????????????
This media is not supported in your browser
VIEW IN TELEGRAM
Hacking telegrams mainframe rn
Forwarded from vx-underground
This media is not supported in your browser
VIEW IN TELEGRAM
Today the largest Anonymous social media profile issued a heavily-charged political message regarding recent changes in the United States political ecosystem.
In summary, they assert rapid changes in technology systems, due to actions performed by Elon Musk (or rather the Department of Government Efficiency), has left massive vulnerabilities which can be exploited (and they intend to exploit?).
This has resulted in a lot of attention from non-techies to their social media profiles.
Thoughts:
- Previously Anonymous has promised to perform similar actions, none came to fruition
- Government institutions have been compromised in the past which resulted in very little. Conti, Lockbit, ALPHV (RansomHub), various state-sponsored groups — compromised the United States government (although to various degrees). This includes when the Iran government compromised Trump's campaign via social engineering. It wasn't the end of the world.
- You don't need to exploit anything, just follow Scattered Spider's TTP. Pay some guy $15 to call them and ask for a password reset. Or check stealer logs.
- If in the event a government institution is compromised, what do you intend to do? Deploy ransomware (partially sarcastic)? 99% of United States citizen's PII have been dumped anyway from places like Breached or from previous ransomware attacks.
- Where was this call-to-action speech when other countries had political ideologies present which do not adhere to your belief system?
- Any serious Threat Actor (or Hacktivist) shouldn't announce their intentions to millions of people prior to action. We personally have not witnessed a serious Threat Group release a 3:50 long manifesto prior to performing a compromise.
- Is it a good idea to (metaphorically) declare war on the person who owns this platform? Is it good to (metaphorically) declare war on the United States government on any social media platform without doing due diligence and ensuring your OPSEC isn't cooked?
¯\_(ツ)_/¯
In summary, they assert rapid changes in technology systems, due to actions performed by Elon Musk (or rather the Department of Government Efficiency), has left massive vulnerabilities which can be exploited (and they intend to exploit?).
This has resulted in a lot of attention from non-techies to their social media profiles.
Thoughts:
- Previously Anonymous has promised to perform similar actions, none came to fruition
- Government institutions have been compromised in the past which resulted in very little. Conti, Lockbit, ALPHV (RansomHub), various state-sponsored groups — compromised the United States government (although to various degrees). This includes when the Iran government compromised Trump's campaign via social engineering. It wasn't the end of the world.
- You don't need to exploit anything, just follow Scattered Spider's TTP. Pay some guy $15 to call them and ask for a password reset. Or check stealer logs.
- If in the event a government institution is compromised, what do you intend to do? Deploy ransomware (partially sarcastic)? 99% of United States citizen's PII have been dumped anyway from places like Breached or from previous ransomware attacks.
- Where was this call-to-action speech when other countries had political ideologies present which do not adhere to your belief system?
- Any serious Threat Actor (or Hacktivist) shouldn't announce their intentions to millions of people prior to action. We personally have not witnessed a serious Threat Group release a 3:50 long manifesto prior to performing a compromise.
- Is it a good idea to (metaphorically) declare war on the person who owns this platform? Is it good to (metaphorically) declare war on the United States government on any social media platform without doing due diligence and ensuring your OPSEC isn't cooked?
¯\_(ツ)_/¯
we are anunimus sir, I am sure this account is ran by indian cyb3r scary india force