Sabitlenmiş Tweet
Ally Fortis
212 posts
Ally Fortis
@allyfortis
Cyber threat intelligence analyst. OSINT | SOCMINT | HUMINT | CYBINT | CTI | Blockchain analysis. Due diligence. Random posts.
Worldwide Katılım Şubat 2017
0 Takip Edilen197 Takipçiler
Guess whose jobs are coming back 🤫 Humans will soon be needed back in the office
Crypto Rover@cryptorover
🚨 THE AI COST CRISIS HAS STARTED. Microsoft reportedly told engineers to stop using Claude because AI bills were exploding, while Uber says its entire yearly AI budget was already destroyed by April.
English
@404not_utkarsh This lack of originality started happening before AI.
I quit web design after 10 years because people came to me to COPY the design of another website.
You would recognize the industry by the website's design: same colors, elements, themes, etc. and then AI happened 🤦♀️
English
If you lost your job to AI, hang in there. You have to give kids time to see that this toy is not that good or cheap and then you get your job back.
Ally Fortis@allyfortis
An analysis from 2025 shows that AI is wrong more times than it's right. And AI currently costs more than employing humans, as companies are finding that the expenses associated with AI technology, such as compute costs, often exceed the salaries of their employees.
English
An analysis from 2025 shows that AI is wrong more times than it's right.
And AI currently costs more than employing humans, as companies are finding that the expenses associated with AI technology, such as compute costs, often exceed the salaries of their employees.
English
@LefterisJP @zachxbt This feature is old (launched in 2021) and you need Telegram Premium to disable seeing ads as a user. Ads are displayed in public channels with over 1000 subscribers so Zach can't turn this off or have control of what ads are shown to his subscribers.
English
Wait ... since when does Telegram inject advertisements of any kind to announcement channels? And much less ads that are pointing to scams?!
Seen in @zachxbt's investigation channel. It's not his message. Seems injected by Telegram?
English
If I had to hire cybersecurity professionals (including OSINT), I would put them to SHOW me their skills and not RECITE textbooks and courses during the interview.
Ally Fortis@allyfortis
Enough already! A few years ago no one knew what OSINT was and now you need a cert? It's ok to take courses to learn about things, but soon the industry will require a cert for something as easy as OSINT to get an entry-level job while ...
English
cyber criminals don't need any certs to prove they can hack the biggest companies in the world. Not everything in life needs a diploma.
No wonder passionate professionals abandon their dream because they can't compete with the ones who collect certs and 0 real experience.
English
Enough already!
A few years ago no one knew what OSINT was and now you need a cert?
It's ok to take courses to learn about things, but soon the industry will require a cert for something as easy as OSINT to get an entry-level job while ...
English
Using more than 1 tool is not a waste of time. It's called validating data from multiple sources.
CyberSudo@Cyber_Sudo
🔥 Stop Using 10 Tools. Use This Instead for Website Recon Most OSINT investigators waste time juggling 5–10 different tools just to understand a single website… But what if you could get the full picture in one scan? ⚡ When I start a website investigation, I don’t look at content first. I look at infrastructure. Because a single domain can reveal far more than people expect 🔍 That’s where all-in-one recon tools become extremely useful. One of my go-to tools is Web Check. It aggregates multiple OSINT data points into a single structured report. With one scan, you can: 🌐 Extract IP, DNS, and hosting information 🔐 Analyze SSL/TLS configuration and security headers 🧩 Identify technologies, frameworks, and libraries used 📡 Detect redirects, open ports, and server behavior Instead of switching between tools, everything is centralized in one view. And in real investigations, that speed matters. For example, during a recon workflow, a quick scan revealed: • Hosting provider • Underlying tech stack • Misconfigured security headers That alone was enough to map potential weaknesses and guide deeper investigation paths 🔗 This kind of tool is especially useful for: 🕵️ Website footprinting 📡 Attack surface mapping 🔍 Rapid infrastructure reconnaissance It’s not about replacing deep manual analysis. It’s about accelerating the first pass so you know where to dig. For OSINT workflows, that initial clarity is everything 🧠 🔗 Explore it here: web-check.xyz
English
Why would you joke with this?
🚩 No file has been renamed
🚩 The email address is invalid
🚩 Encrypting & "permanently destroying" the PC and expecting the "victim" to pay for what?
🚩 Poor design
🚩 Stupid execution of the imaginary ransom, etc.
Begging for views...
Mololuwa | Cybersecurity - (The God Complex)@cyber_rekk
I think I just got hacked 🥲🥲
English
@CristianRus4 The design is different, but the functionality is the same.
English
They expect a partnership deal with us but they will get a security warning instead and no further communications and deals until they fix the security issues.
English
Doing a risk analysis for work made me question if it's safe to even email a simple Hello to this company, being in so many breaches & infected with infostealer malware so many times.
They are a multi million $ biz, they can afford a cybersecurity team but ...
English
When will people understand that crypto ≠ safe money or your money? The exchanges & banks are the ones in control of "your" money.
The only money that is truly yours is cash 💵💰 Nothing digital is yours.
English
If social media existed when I was a kid I would for sure spend more than 25 hours in 6 months using the apps. Their logic is 🚮
And to avoid the fines, they will ask for user's ID to prove their age because no kid spends just 13 min/day on social media.
Pirat_Nation 🔴@Pirat_Nation
South Carolina passed a law that aims to protect kids from addictive social media use. The law requires large social media companies to estimate a user’s age using information they already collect, such as behavior, activity, account details, or device data. >If someone uses the app for more than 25 hours within six months, the company must be at least 80% confident the person is older than 15. >If the person reaches 50 hours of use, the company must be 90% confident. >If the company cannot reach that confidence level, it must assume the user is a child. The company must also recheck the age estimate every additional 100 hours of use and whenever it uses recommendation systems or analyzes user behavior. If the company wrongly treats a child as an adult, it can face fines up to $10,000 per violation. When a user is treated as a child, the platform must add protections such as parental permission tools, fewer addictive features like infinite scrolling or highly personalized feeds, stronger privacy settings, less data collection, more parental controls, and yearly safety reviews focused on risks to minors. The law applies to major online platforms that operate in South Carolina and are likely to be used by people under 18. Sc: reclaimthenet.org/south-carolina…
English
This will work until 2027, so for 7 more months for Europe because from the next year all phones sold in the EU have to have the battery easily replaced/removed and this is how you can power off the phone, the old school way. Just remove the battery.
Techjunkie Aman@Techjunkie_Aman
Most people don’t realize how dangerous this is until it actually happens. Imagine your phone gets stolen in a crowded metro station. The thief’s FIRST move usually isn’t resetting the phone. It’s turning it off instantly. Why? Because the second your phone powers down: • Find My Device stops updating • live location dies • remote lock becomes useless • tracking gets delayed • recovery chances drop massively That tiny 2 second action changes everything. Evolution X’s “Power Off Verify” blocks that. If the phone is locked, you now need the PIN/password before shutting it down or restarting it. So in a real theft scenario: • the thief grabs your phone • tries to power it off • gets blocked at the lockscreen • your device stays online longer • you still have time to track, ring, or remotely secure it And honestly… that extra time can be the difference between recovering your phone and losing it forever. Simple feature. Very underrated security upgrade.
English
I'm wondering if that page was vibe coded?
tomo (ifb)@tomoparasite
maybe show me the email before asking
English
As I always say, you are never too small to be a target.
This person lost $81 to a classic scam paying for a "trading permit" to sell postcards from Asia to the US.
The scammer faked FBI badge, payment receipts, government emails and other documents.
⭐ soph | ꒰აinsaider໒꒱@42lemonswt
PLEASE SPREAD AWARENESS! I GOT SCAMMED IN THE MOST CREATIVE WAY. (1) I will pictures of the fake receipts, emails and invoices they gave me. Including the manipulation etc- ALL THE RECEIPTS. It only hit when I realized how op changed her username and @.
English
@42lemonswt @NMt7o4ys Call your bank and flag the transaction as fraud and see if you can get your money back.
English
It really only hit me when they changed their username and profile picture.
BUT IT’S THIS PERSON! DON’T GET SCAMMED! Scammers are so creative these days.
@NMt7o4ys
English
PLEASE SPREAD AWARENESS!
I GOT SCAMMED IN THE MOST CREATIVE WAY. (1)
I will pictures of the fake receipts, emails and invoices they gave me. Including the manipulation etc- ALL THE RECEIPTS.
It only hit when I realized how op changed her username and @.
English
If you receive "welcome" or "thank you for joining" emails from survey websites that were created a few months ago, look at the link.
They bought email lists and imported them into an email marketing service and sent everyone from that database the same welcome email.
English