Fun fact I made a typo in sysmon-config many years ago, when I was working in Helpdesk.

I got my shot and was hired to the big firm with the big fancy expensive tools I would've never dreamed of.

Do you know what I find in that tool, auditing it?

My typo. They pasted it in. They just... copied the whole thing.

I sit at my desk. And I realize I was always enough.

Really good research from Rapid7 here, where they’ve found multiple new versions of BPFdoor which do things like listen and backdoor on extremely uncommon 4G and 5G signaling protocols - it strongly suggests BPFDoor has been placed far inside telcos for surveillance.

They provide a tool to check for the new implant - I would strongly suggest telcos look for this on their Linux systems, including call infrastructure.

https://www.rapid7.com/blog/post/tr-bpfdoor-telecom-networks-sleeper-cells-threat-research-report/

Months of me wanting to scream, “but we’re the audience for this, not you!” Into an internet void.

People just aren’t ready for the conversation about Starfleet Academy and Discovery just not being primarily intended for an audience eye of straight, white, millennial and older dudes. And how much *other* Trekkie fan audiences could relate to the characters, finally.

@SwiftOnSecurity reminds me of the time when Brendan Gregg, who was not working at Sun at the time, got a spiel from a salesperson about new profiling tools.

It was his own dtrace scripts they were demoing to him.

https://www.brendangregg.com/blog/2021-06-04/an-unbelievable-demo.html