***: infosecatom has quit IRC (Remote host closed the connection)
infosecatom has joined #arpnetworks
acf_ has joined #arpnetworks acf_: I see you already heard the news
https://www.justice.gov/usao-wdwa/press-release/file/1188626/download
for anyone interested mercutio: wow
yeh it is interesting acf_: I would not be surprised if ARP got a subpoena because of this mercutio: well acf_: I assume up the irons' response would be 'no comment' :P mercutio: tbh it looks like they have all teh evidance they need to contivt
convict acf_: yeah it looks like a pretty clear cut case mercutio: i kind of wonder if they wanted to get caught
like the vet thing
seriously acf_: well there is that screen cap of the chat at the bottom mercutio: yeah there's that too
but i mean before that
cos the vet thing was prior i think?
oh hangon
she posted about her pet the day after acf_: I mean it's not like they made much of a secret of their identity mercutio: the sceren cap was shown after acf_: full name was on the same github the hacked data was posted to afaik mercutio: but its' out of order timeline wise i thikn acf_: definitely on the gitlab mercutio: yeah
lots of hoels
mm
it reminds me of the guy that shot up a mosque here
i wonder if part of it being so obvious is to try and get publicity with her name acf_: I heard about that :/ mercutio: but apparently with mass shootings it's common to try and play it up acf_: tbh I wonder how this case will turn out mercutio: like it's real obvious you've done it
but if they're on court etc they'll do the finger etc
but like that guy made a nazi sign or something
so it's like through the court case they will plead "innocent"
to get a longer trial
even though they're obviously guilty
so that they can kind of publish their belief system or whatever acf_: I mean with the shootings, the culprit has got to know how it's going to end for them. there is no question mercutio: yeah
some want to be shot
some want to be like infamous acf_: here in canada there have been a couple of kids all over the news recently
they ran away from home and are now wanted for three murders mercutio: with the mosque shooting here the media were doing a good job of not showing their face on purpose acf_: yeah I remember there was a big thing with that mercutio: oh
apparently she wrote posts saying she wants to be deported acf_: oh? mercutio: yeah trying to find it now
i just foudn a reference not saying much more acf_: have you been following the malwaretechblog case? mercutio: nope acf_: ahh, well you can look it up if you're interested
pretty high profile cfaa case mercutio: oh twitter apparently
and looks like it may have been suspended acf_: yeah just found a news article referencing it mercutio: oh google page cache still works
wow
she wrote her cv in tex
and she seems pretty smart acf_: that looks really nice for having come out of text :P
*tex mercutio: why has het git got recent changes acf_: > updated 5 hours ago
hm mercutio: yeah it seems odd
her last twitter post on google cache said 1h ago
but who knows when google cached it acf_: usually the twitter UI shows timestamps mercutio: i'll look acf_: if the page made it into the cache it should say
the gitlab thing looks like a bug
if you click on the repo it says 6 months mercutio: oh
. It is a snapshot of the page as it appeared on 5 May 2019 10:33:09 GMT.
text google cahce says date
the normal one didn't for some reason
so yeah not recent acf_: yeah makes sense mercutio: i think what erratic did was stupid and irresponsible, but at the same time, that it could be done suggests the security wasn't nearly tight enough acf_: yeah imo all of these cfaa cases are just sad stories
not good for anyone involved mercutio: i kind of feel like maybe companies like capital one should be fined for such incidents acf_: I think equifax got fined recently mercutio: i realise it's already not good for business having breeches like that
but it kind of lays some responsibility with the company too acf_: oh yeah. the equifax one was the worst
they were running a Struts app with a 6 month old RCE or something
exposed to the public internet
if that's not negligence I don't know what is mercutio: https://techcrunch.com/2019/07/29/capital-one-breach-was-inevitable/
wow
the equifax ceo at the time of breeh collected $90 million pay out acf_: there was some insider trading case too
I think not with the ceo though mercutio: ceos earn enoguh to not need to inside trade ***: acf_ has quit IRC (Ping timeout: 245 seconds) mike-burns: "earn" infosecatom: I don't think that whole reflected CapOne's overall security posture, I think it was an oversight that should have been caught through routine auditing of systems
As for why the Git showed a recent time, apparently anytime a repo is starred it actually updates the timestamp ***: ziyourenxiang has quit IRC (Ping timeout: 245 seconds)
lfam has joined #arpnetworks
acf_ has joined #arpnetworks
mjp2 has quit IRC (Remote host closed the connection)
mjp2 has joined #arpnetworks
lfam has quit IRC (Quit: Leaving)
ziyourenxiang has joined #arpnetworks
r0ni has quit IRC (Ping timeout: 245 seconds)
r0ni has joined #arpnetworks
hive-mind has quit IRC (Ping timeout: 245 seconds)
hive-mind has joined #arpnetworks
acf_ has quit IRC (Ping timeout: 245 seconds)