In 2013 I wrote up "Maintaining A Publicly Available Blacklist - Mechanisms And Principles" (also https://bsdly.blogspot.com/2013/04/maintaining-publicly-available.html) . TL;DR: blocklisting is a kind of public shaming, be sure your process is verifiable and transparent.

Minor edits today, links to resources and #eurobsdcon inside. #blocklists #spamtraps #antispam #smtp #spamd #openbsd #freebsd #security #cybercrime

In 2013 I wrote up "Maintaining A Publicly Available Blacklist - Mechanisms And Principles" (also https://bsdly.blogspot.com/2013/04/maintaining-publicly-available.html) . TL;DR: blocklisting is a kind of public shaming, be sure your process is verifiable and transparent.

Minor edits today, links to resources and #eurobsdcon inside. #blocklists #spamtraps #antispam #smtp #spamd #openbsd #freebsd #security #cybercrime

For further notes going back to 2017, see "Twenty-plus years on, SMTP callbacks are still pointless and need to die" https://nxdomain.no/~peter/twenty-plus_years_on_smtp_callbacks_are_still_pointless.html #spam #smtp #smtpcallbacks #callbacks #email #verification #cybercrime #hacking #stupidity

For further notes going back to 2017, see "Twenty-plus years on, SMTP callbacks are still pointless and need to die" https://nxdomain.no/~peter/twenty-plus_years_on_smtp_callbacks_are_still_pointless.html #spam #smtp #smtpcallbacks #callbacks #email #verification #cybercrime #hacking #stupidity

"Oh yes, you signed up for this. You did. Honest." https://nxdomain.no/~peter/oh_yes_you_signed_up_for_this_2009.html A linkedin post (linked within) reminded me of this post, added here, almost pristine
#greytrapping #spam #countermeasures #email #scams #spamd #wellpoisoning #cybercrime #counterprank

"Oh yes, you signed up for this. You did. Honest." https://nxdomain.no/~peter/oh_yes_you_signed_up_for_this_2009.html A linkedin post (linked within) reminded me of this post, added here, almost pristine
#greytrapping #spam #countermeasures #email #scams #spamd #wellpoisoning #cybercrime #counterprank

I've heard of one-LETTER user names before, but trying ' as a user name takes a very special kind of ... something.

Jul 23 07:45:42 skapet sshd-session[12400]: Failed password for invalid user ' from 161.132.40.50 port 41338 ssh2

#sshgropers #cybercrime#cyberfail #passwordgropers #passwordguessing

I've heard of one-LETTER user names before, but trying ' as a user name takes a very special kind of ... something.

Jul 23 07:45:42 skapet sshd-session[12400]: Failed password for invalid user ' from 161.132.40.50 port 41338 ssh2

#sshgropers #cybercrime#cyberfail #passwordgropers #passwordguessing

Hallo Cyber Freunde! Das fantastische Buch 'red team blues' von @pluralistic ist jetzt als deutsches Audiobuch erhältlich. Da alle Werke Cory's ohne DRM verkauft werden, ist es nur ueber kickstarter zu bekommen. (hintergrund hier: https://pluralistic.net/2025/07/21/martin-mensch/#horbuch)

Unterstuetzt DRM freie Werke und Autoren die weiterhin ohne DRM verkaufen. https://www.kickstarter.com/projects/doctorow/red-team-blues-auf-deutsche-drm-freie

#corydoctorow
#cybercrime
#hoerbuch

Hallo Cyber Freunde! Das fantastische Buch 'red team blues' von @pluralistic ist jetzt als deutsches Audiobuch erhältlich. Da alle Werke Cory's ohne DRM verkauft werden, ist es nur ueber kickstarter zu bekommen. (hintergrund hier: https://pluralistic.net/2025/07/21/martin-mensch/#horbuch)

Unterstuetzt DRM freie Werke und Autoren die weiterhin ohne DRM verkaufen. https://www.kickstarter.com/projects/doctorow/red-team-blues-auf-deutsche-drm-freie

#corydoctorow
#cybercrime
#hoerbuch

Thanks to everyone who voted in my "Should I Stop Caring and Let IP Address Reputation Sort Them Out?" https://nxdomain.no/~peter/should_i_stop_caring_and_let_ip_reputation_sort_them_out.html poll.

I have since added the seriously, folks note to the exported files and told anybody who wanted out of the big list that I will remove them on condition that they track down the morons who use that list as anything other than a historical artifact and LART them.

#blocklist #pop3gropers #passwordgropers #cybercrime #ipreputation #security

Thanks to everyone who voted in my "Should I Stop Caring and Let IP Address Reputation Sort Them Out?" https://nxdomain.no/~peter/should_i_stop_caring_and_let_ip_reputation_sort_them_out.html poll.

I have since added the seriously, folks note to the exported files and told anybody who wanted out of the big list that I will remove them on condition that they track down the morons who use that list as anything other than a historical artifact and LART them.

#blocklist #pop3gropers #passwordgropers #cybercrime #ipreputation #security

Happy "Logging in as users -, [ and $ day" to all who celebrate:

Jul 19 02:02:12 portal sshd-session[88959]: Failed password for invalid user - from 152.42.130.79 port 33738 ssh2
Jul 19 03:00:14 portal sshd-session[79691]: Failed password for invalid user [ from 152.42.130.79 port 41708 ssh2
Jul 19 03:58:56 portal sshd-session[6194]: Failed password for invalid user $ from 152.42.130.79 port 55398 ssh2

#ssh #passwordgroping #security #passwords #cybercrime #botnet

Happy "Logging in as users -, [ and $ day" to all who celebrate:

Jul 19 02:02:12 portal sshd-session[88959]: Failed password for invalid user - from 152.42.130.79 port 33738 ssh2
Jul 19 03:00:14 portal sshd-session[79691]: Failed password for invalid user [ from 152.42.130.79 port 41708 ssh2
Jul 19 03:58:56 portal sshd-session[6194]: Failed password for invalid user $ from 152.42.130.79 port 55398 ssh2

#ssh #passwordgroping #security #passwords #cybercrime #botnet

After a ProPublica investigation revealed how Microsoft’s “digital escort” tech support service could expose sensitive government data to cyberattacks, the company says China-based engineers will no longer provide assistance on DOD cloud services.

https://www.propublica.org/article/defense-department-pentagon-microsoft-digital-escort-china?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon-post

#News#Microsoft#Tech #Technology#Defense#Government#DOD#Cybercrime

A ProPublica investigation revealed how a little-known Microsoft program could leave some of the U.S. government’s most sensitive data vulnerable to hacking from its leading cyber adversary.

Here are the biggest takeaways from our reporting.
https://www.propublica.org/article/microsoft-digital-escort-china-government-data-takeaways?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon-post

#News#Tech #Technology#Microsoft#Cybersecurity#Cybercrime#Government

The Golden Triangle Special Economic Zone, an area in Laos meant for gambling and resort life, has become a center for money laundering and trafficking. https://www.japantimes.co.jp/news/2025/07/15/asia-pacific/crime-legal/las-vegas-laos-city-crime/?utm_medium=Social&utm_source=mastodon #asiapacific #crimelegal #cybercrime #goldentriangle #laos #southeastasia #cybersecurity #hacking #organizedcrime #smuggling #moneylaundering #fraud #china

Cybercrime: Lösegeldverhandler zwackte sich wohl Provisionen ab

Ein für das Aushandeln von Lösegeld bei aussichtslosen Ransomware-Vorfällen angestellter Experte hat sich wohl Provisionen zahlen lassen.

https://www.heise.de/news/Cybercrime-Loesegeldverhandler-zwackte-sich-wohl-Provisionen-ab-10474413.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Cybercrime#IT#Ransomware#Security #news

Cybercrime: Lösegeldverhandler zwackte sich wohl Provisionen ab

Ein für das Aushandeln von Lösegeld bei aussichtslosen Ransomware-Vorfällen angestellter Experte hat sich wohl Provisionen zahlen lassen.

https://www.heise.de/news/Cybercrime-Loesegeldverhandler-zwackte-sich-wohl-Provisionen-ab-10474413.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Cybercrime#IT#Ransomware#Security #news

Scam centers are spreading, and so is the human cost https://www.helpnetsecurity.com/2025/07/01/interpol-human-trafficking-scam-centers/ #lawenforcement #cybercrime#INTERPOL #scams#News