Bryan got phished (almost) - story time!
https://isc.sans.edu/forums/diary/Do+you+block+new+domain+names/17564/
Through OpenDNS
https://learn-umbrella.cisco.com/product-videos/newly-seen-domains-in-cisco-umbrella
Available January 2017, Umbrella filters newly seen or created domains. By using new domains to host malware and other threats, attackers can outsmart security systems that rely on reputation scores or possibly outdated block lists. Umbrella now stops these domains before they even load.
Also “unknown” category? pros/cons
Good filter time for domains?
Amanda: windows logging issues
well…. FUCKING EVERYTHING CREATES TASKS IN SCHEDULER
https://www.microsoft.com/en-us/windowsforbusiness/windows-atp
Breach news:
https://www.dutchnews.nl/news/2019/05/hackers-steal-key-info-about-home-hunters-from-housing-agency/
FTA: The hackers now have their name, address, contact information and copies of their passport or ID card, which includes their personal identification number, or BSN.
This is sufficient to allow the hackers to open bank accounts or take out loans by using other people’s identity.
https://www.bleepingcomputer.com/news/security/over-757k-fraudulently-obtained-ipv4-addresses-revoked-by-arin/
Mostly colos, data centers, ‘aaS’ providers
Many in the Mid-West
Book Club
Cult of the dead cow - June
Tribe of Hackers - July
The Mastermind - August
The Cuckoo’s Egg - September
https://www.infoseccampout.com
EventBrite Link:https://www.eventbrite.com/e/infosec-campout-tickets-61915087694
