Goats grazing in Wyman Park Dell brings out a very specific demographic.
I might be in it.
-
Landscape-tainment -
I’ve done a lot of research into fake “liquidity mining” cryptocurrency scams connected to “pig butchering” rings—enough to be super suspicious of anything having to do do with liquidity mining. Or cryptocurrency, to be honest.
But this latest bit of news is…🧑🍳🤌
As many in the Cosmos community are now aware, it was revealed that a significant portion of the Liquidity Staking Module (LSM), created by Iqlusion for the Cosmos Hub, was developed by North Korean agents.
Hat tip to Molly White of Web3 Is Going Great .
-
They’re back, they’re loud, they’re all starry-bellied and adorable. Also loud. And feisty.
-
There are many times I wake up and feel like I’m living in a Samuel R. Delany novel. America sometimes seems to traverse history as a flat spiral, constantly re-encountering itself without recognizing itself as it passes.
I picked up Dhalgren in a remainders bookstore when I was 16, after moving at the end of my junior year of high school from Long Island to a small city upstate near the Quebec border, a town caught in its own desolate time loop with a SAC base and nightly scrambles of bombers and tankers.
The B-47 bomber outside what was once Plattsburgh Air Force Base. The book was mind bending and the wildest thing I had read up to then, but Bellona felt like a town I knew somehow.
I was already living at something of a remove from the world around me, having moved 375 miles north of my whole life to that date because my father had taken a job as a high school principal. My mother was still going to be teaching on Long Island, commuting to our new home every other weekend-adding to the sense of unbelonging.
Margaret Street in Plattsburgh 
Point Au Roche trail I sometimes feel like I’m walking past that kid with Cold War neuroses when I walk through my neighborhood in Baltimore, where I have family and friends but will never be a native. To always be from someplace else is a hell of a thing.
Wandering the old Jones Falls mills with my son Jonah, 2011. Mill #1 is now luxury apartments. A lot of this came to mind last night as I sat in an auditorium listening to Jeff VanderMeer talk about Absolution , his new Southern Reach book, and the rest of the series. He talked about how his research assistant had to construct a map of all the layers of previous human inhabitance in Florida’s Forgotten Coast — black communities’ burial grounds, indigenous settlements, and failed plantations, etc. — because no one had ever bothered to centralize all that knowledge.
We keep recolonizing our past, not even recognizing it as our past. As we approach the first Tuesday of November, this is…very much apparent.
Maybe we’ll wake up at some point and look around and see ourselves walking the other way as we pass on that footbridge out of this place where we are all visitors.
-
My colleagues in Sophos X-Ops MDR and Incident Response are tracking a series of attacks in the past month leveraging compromised credentials and a known vulnerability in Veeam (CVE-2024-40711) to create an account and attempt to deploy ransomware. We put out a social media thread on this last week that was highlighted in a recent BleepingComputer article on the Veeam vulnerability. As I wrote in our Mastodon post:
In one case, attackers dropped Fog ransomware. Another attack in the same timeframe attempted to deploy Akira ransomware. Indicators in all 4 cases overlap with earlier Akira and Fog ransomware attacks.
In each of the cases, attackers initially accessed targets using compromised VPN gateways without multifactor authentication enabled. Some of these VPNs were running unsupported software versions.
Each time, the attackers exploited VEEAM on the URI /trigger on port 8000, triggering the Veeam.Backup.MountService.exe to spawn net.exe. The exploit creates a local account, “point,” adding it to the local Administrators and Remote Desktop Users groups.
In the Fog ransomware incident, the attacker deployed it to an unprotected Hyper-V server, then used the utility rclone to exfiltrate data. Sophos endpoint protection and MDR prevented ransomware deployments in the other cases.
These cases underline the importance of patching known vulnerabilities, updating/replacing out-of-support VPNs, and using multifactor authentication to control remote access. Sophos X-Ops continues to track this threat behavior.
Sophos X-Ops on infosec.exchangeWe’ve since connected another case to the same threat activity cluster, and are continuing to hunt and research the threat. But this is just another case of weaponized unpatched hardware and software being used against organizations struggling to stay on top of security threats— particularly small and medium businesses without dedicated information security teams.
-
I’ve been running mornings this week with my neighbor’s dog (there’s another story there for later). This morning, we were just passing the local FOP lodge when I saw my favorite Baltimore Raven: an actual Common Raven swooped over us croaking. I turned us around to check the bird out, and the raven landed on a street light and clacked its bill. That’s typically a mating display, so maybe there was a lady raven nearby or maybe he mistook a nearby crow (or me) for a potential partner. Dunno. 🤷 Anyway, hope it’s an omen of a good day.
-
I have a lot to say about how rotten social media is/is becoming/always has been. But an essential part of how bad things have become is the cult of personality around the people who sit atop the engines of our permanently online social interaction, no matter how relatively “humble” they are on the Dennis Ritchie-to-Elon Musk spectrum:
Dennis Ritchie is what I consider to be on the “enlightened technologist” end of the spectrum–actually talented, unknown to the masses, did not launch a start-up and sell out, made great things possible with his work. He is, however, not a product of the Post-Microsoft Tech World.
Dennis Ritchie created the C programming language and is as a result directly responsible for both much of the software revolution and much of the non-memory-safe code that makes the digital world insecure*. Net +, with notes. Full disclosure: a personal hero, and he wrote a great book.
* as Ken Goldsholl pointed out, the memory un-safe-ness was probably not foreseeable at the time, and honestly I cannot hold anything against Ritchie because he was in it for all the right reasons.
Elon Musk is a nerd who had emerald mine money from his apartheid-fan dad and evaded the draft by coming to America…he got involved with PayPal and has been trying to name everything with an X ever since because he’s a fucking neofascist pirate.
Elon is on the other end of the spectrum. As far as I can tell, he can code but in a very unenlightened way–but his main talent is that he has money and rich friends and is part of the Paypaligarchy. He has put money and his weirdness into a lot of things, but he has not made anything of consequence himself–he has just imposed his weird aesthetic and pot-smoke-haze Ayn Randian philosophy on everything he touches and is all about extracting as much value as possible from everything he touches (except Twitter, which he has fucked up beyond all recognition).
And then there’s Matt Mullenweg, who owns the platform I blog on.
Where does he fall on the Dennis to Elon spectrum?
Welp.
WordPress has been part of my online life for almost 20 years. It’s hard to believe. I’ve done Moveable Type and all sorts of other platforms over the years (including a very interesting development project on Community Server .Net that nearly robbed me of my sanity). But most of the words I’ve ever published electronically, including everything at Ars Technica and my current gig, were processed through WordPress.
Matt was a PHP developer at CNET, and he did WordPress on the side. Then he became an open-source hero, and then a hosting hero to everyone who had used Google Domains. But he’s also something of a tech bro asshole. And his recent purge of employees at Automattic is just the latest symptom of a very confrontational, not very open-source kumbaya personality and business approach that has scorched a lot of fucking earth.
But WordPress is still open-source, and I am paying for hosting and patching, not for Matt’s personality. So… somewhere between Dennis and Elon. Am I going to move off a WordPress-hosted blog and take my words to a self-powered domain somewhere? Probably not anytime soon–just like I’m not going to stop using a Mac or an iPhone even though Tim Cook is a jackass.
-
Duck 
Duck 
Goose. #birds.
-
This showed up in my timeline yesterday and I felt compelled to respond. The account reposting this conspiracy meme belonged to a former shipmate. It’s bad enough when you see that relative reposting some crazy conspiracy content. But where do *they* get it from?
Turns out it may be coming from their friends’ compromised accounts. Sometimes it’s not super obvious… but sometimes it is.
A friend’s account on Facebook, obviously compromised as it has an email in the bio to “get the account back” The screenshot at the top of this post appeared at first to be from a former battleship shipmate of mine. I was about to gently correct him when I realized that all of his posts had gone off the deep end…and were not consistent in ideology. Also, there was an email address in his bio to “get the account back”— it had been hacked and turned into a conspiracy spam delivery network node.
Two more conspiracy oriented posts shared by the compromised account. Compromised Facebook accounts are monetized in lots of ways. Some are sold for use by romance scammers (including pig butchering) , or for other sorts of fraud. And some are used to drop spam for drop-ship schemes. But some are clearly being used as part of massive disinformation schemes.
Meta does very little about this.
The Packet Rat 