Phishing Leaves a DMARC Trail

from blog Brightball Articles, | ↗ original
In May I had the opportunity to present at the Anti-Phishing Working Group (APWG) Conference after spending some time cross referencing the APWG's eCrime Exchange data with dmarcian's historic DMARC reports to see if we could identify consistent patterns among known bad actors, as well as potentially identifying a wider scope to the attacks that...
This is a short summary. ↗ Open original to view full content

Related

Ichthyology: Phishing as a Science
karla.io | original ↗
Analysis of a browser-based DDoS
Marek's idea of the day | original ↗
Mastodon: October 25, 2024 at 9:03:59 PM UTC
Zach Leatherman’s Activity Feed | original ↗
Paper and Slides Available for "Virtuoso: Narrowing the Semantic Gap in Virtual Machine Introspection"
Push the Red Button | original ↗
Visiting an international hackers conference
Willem's Blog | original ↗
More thoughts on vulnerabilities and misaligned incentives
ENOSUCHBLOG | original ↗
Reproducible Malware Analyses for All
Push the Red Button | original ↗
5 talks in 5 weeks
Marek's idea of the day | original ↗
Attack of the week: Airdrop tracing
A Few Thoughts on Cryptographic Engineering | original ↗
What I Did on My Summer Vacation
Push the Red Button | original ↗

More from Brightball Articles

Story Points are Pointless, Measure Queues
15 Jul 2024 | original ↗

Their creator has disavowed them. People cannot agree on what a story point even represents. The measure is different for every team that uses it. They sow confusion, create conflict, unreliable timelines, are easily gamed, demotivate and degrade the performance of your team.For everyone involved, this is a waste of time. Let's deep dive into why...

Security Automation with Gitlab
27 Jan 2024 | original ↗

I recently had the opportunity to speak to DEF CON 864 about the multiple layers of security automation within Gitlab, the open source tools that drive them and how the findings are managed and resolved.

Rebooting the Carolina Code Conference
21 May 2023 | original ↗

The Carolina Code Conference is a welcoming and community-driven “polyglot” conference that’s set to take place in beautiful downtown Greenville, SC on Saturday August 19th, 2023 in the Greenville ONE building. This conference, which returns for the first time since 2019, invites coders of all experience levels to attend, plug into the...

How Microsoft Became Phishing's Biggest Enabler
23 Feb 2023 | original ↗

It might sound strange to hear that Microsoft, a company who goes to great lengths to protect computers and networks, is one of the biggest contributors to phishing and fraud on the planet. It's true unfortunately. They aren't actually committing the acts themselves of course, but they are enabling the problem by withdrawing support for...

The Time I Accidentally Ended Up Combatting Fraud for a Year
10 Feb 2023 | original ↗

Lately, I’ve been spending a lot of time enjoying the Darknet Diaries podcast and it’s compelled me to finally share the entire story of the most intense year of my 20 year professional career. I was the sole developer hired by a company going through a circus-like ownership transition while criminals actively worked to defraud the 300,000 users...