So if you've got something to say (successes, bad tech experiences, contrarian opinions [really, just about anything on this topic]), I'd love to hear from you here or in my DMs.
English
David Pearson
726 posts
David Pearson
@0xDAV1D
At the intersection of Cybersecurity & AI | Building better products for analysts everywhere!
Rochester, NY Katılım Ağustos 2013
122 Takip Edilen297 Takipçiler
I recently joined an early-stage startup at the intersection of #CyberSecurity and AI (more details later), and I am dead set on building the *right capabilities* with the *right controls* for organizations navigating the sea of vendor promises vs. reality.
English
📢 Calling all senior security analysts, security practitioners, and those evaluating #AI's role in defending your organization: I want to hear your *unfiltered* opinions, hot takes, and whatever else you have to offer on the subject!
Backstory:
English
I'm bummed that my profile header (BSOD in a major airport from years ago) is no longer remotely uncommon 😕
English
I've been prototyping pulling certain aspects of @bayse_intel's functionality into Chrome browser extensions recently, and WOW I can't wait to show these features off!
Focusing first on security analyst workflows that will pair extremely well with a sandbox system. Stay tuned.
English
@JCyberSec_ @bayse_intel Also, if you want to pivot and see more sites matching the same Site Fingerprint(s) over time, there's definitely interesting stuff there.
Relevant Structural ID: bayse.io/site_fingerpri…
Relevant Links ID: bayse.io/site_fingerpri…
English
@JCyberSec_ Definitely interesting stuff; looks like @bayse_intel saw them right around the same time.
Some others (based on naming) that might be interesting (you can find these through Advanced Search):
English
Some worrying new domains have been spotted:
🌐betfanatics-sso[.]com
🌐fanatics-sso[.]com
🌐betfanatics-okta[.]com
All sitting on Google NS.
Might be linked to #ScatteredSpider given the domain patterns - Sites still being stood up or prepared at time of posting
#Phishing
English
Guess I pissed someone off with one of my recent fake shop announcements
English
English
@Namecheap @Namecheap (if you're not a bot), I am saying that the site is ALSO hosted on @flydotio's platform, *not* that fly.dev is hosted on Namecheap
English
@Zoom unless you're doing something really weird internally, there's a blatant #phishing attack (registered on @Namecheap a week ago) impersonating you and asking users to login via @X. The authorization page looks *really* shady as well. View in Bayse at bayse.io/interpretation…
English
@ShopPinkLemon1 (sorry, couldn't DM you) unless you have a separate Chinese site, there's a store impersonating you at modishquest[.]com. Screenshot of their products below. Yesterday for a bit it was impersonating @toryburch (see second screenshot)
English
If you don't believe me, take a spin through the 3 scenarios we talked about in this video and then reach out to either Bayse or ThreatConnect!
twitter.com/bayse_intel/st…
Bayse Intelligence@bayse_intel
Threat Hunting Thursdays #15 -- Pivoting from ThreatConnect to Bayse twitter.com/i/broadcasts/1…
English
We just finished up our #threathnting Thursdays, and man was it a blast! Every time I get to use Bayse within @ThreatConnect, it blows my mind how much this is going to help #threatintel folks find, connect, and investigate otherwise unlinked or unknown attacks.
English
We believe in making sure that our information always stays up to date with our discoveries. Here's an important update to our blog. Still though, hunt for those CDNs! twitter.com/bayse_intel/st…
Bayse Intelligence@bayse_intel
Update! Earlier today we found that these CDNs are associated with a Chinese eCommerce template site called SHOPOEM. While we think the whole company is NOT malicious, we do know that the overwhelming majority of use of those templates is malicious. Blog post updated w/ details.
English
I'd recommend taking a quick look at this and searching for the ~14 domain IOCs included at the end of the summary. You just might find a number of fraudulent activities going on against your brands or your customers/users: twitter.com/bayse_intel/st…
Bayse Intelligence@bayse_intel
🚨 Bayse researchers have just discovered a very sneaky fake Chinese CDN that has been used for ~2 years to target hundreds of major retail outlets. Just a quick sampling from our report: @dickssportingss, @Carters, @Macys, @Wayfair, @USPS, @Arcteryx, @brooksrunning, @patagonia.
English