Lightnews — Scholar-powered news

Ian Campbell

@neurovagrant.bsky.social

160 followers 140 following 430 posts

Security ops engineer and investigator @ DomainTools, writer, voracious reader. he/him. Opinions here mine only. Autistic/depressed/anxious/hungry. https://dti.domaintools.com

dti.domaintools.com

Posts Media Videos Starter Packs

Pinned

Ian Campbell @neurovagrant.bsky.social · Jul 8

DomainTools Investigations worked with OSINT analysts & journalists to help uncover the connections between websites involved in the harassment of Ukrainian personnel and their families, and the people and infrastructure involved.

Technical writeup below!

www.domaintools.com/resources/bl...

RDAP and BGP in Investigative Journalism - DomainTools | Start Here. Know Now.

One of the things we’re most proud of at DomainTools is our Grants program. We offer free access and training to investigative journalists, as well as security researchers involved in community-benefi...

www.domaintools.com

1 3 4

Ian Campbell @neurovagrant.bsky.social · 10m

Delighted to see extremist ideologies and dystopia scholar @jmberger.com spinning his newsletter back up, at least for a bit. Very worth reading his work.

www.linkedin.com/pulse/paraso...

The Parasocial Construction of Reality

Welcome back to the newsletter, which you probably subscribed to under the name INTELWIRE Brief. It fell by the wayside for a variety of reasons, including that I am working on a lot of longer term pr...

www.linkedin.com

Ian Campbell @neurovagrant.bsky.social · 1d

(Psst, this is also a sign: if you’re waiting to do a thing, but scared, it’s okay to do it scared.)

1 2

Ian Campbell @neurovagrant.bsky.social · 1d

Me: Oura that was just me talking to people.

Oura: Tell that to your sympathetic nervous system…

Screenshot showing biometric stress levels elevating and staying elevated, with a designation in red of “Stressed” by the software

1 1

Ian Campbell @neurovagrant.bsky.social · 1d

I’m not saying I’m out of the sticker lyfe.

But I *am* saying that Unit 221B has won the sticker contest for the foreseeable future.

Hand-drawn sticker that says “PUNCH BAD GUYS IN THE THROAT” with an image of a fist doing exactly that, connected to an arm with a “Unit 221B” tattoo.

Ian Campbell @neurovagrant.bsky.social · 2d

Presuming positive intent, or at least not presuming negative intent, has been one of the hardest things I’ve ever tried to integrate.

Still a work in progress, but it really does change the nature of interactions in very real and constructive ways.

Ian Campbell @neurovagrant.bsky.social · 2d

Real talk, long before I was in infosec, the first event where I looked up and really burned with passion to be a part of it was a BSides - BSides Boston 2016.

The path ain’t easy, especially today, but do not sleep on your passions.

Ian Campbell @neurovagrant.bsky.social · 2d

Today’s the day! At 11:30, presenting “Start the Presses! Domain and DNS Intelligence in Investigative Journalism” at BSides NoVA.

At the same time, my esteemed Malachi will be talking F1 racing threats.

#bsides #bsidesnova

hackertracker.app/event?conf=B...

hackertracker.app

Ian Campbell @neurovagrant.bsky.social · 3d

GreyNoise at it again, picking up a massive, coordinated campaign targeting US-based Microsoft stacks starting a few days ago, sounds like. Some day I’m gonna make @hrbrmstr.dev build me a morning dashboard I can just grab my coffee and shout “Damage report!” at.

mastodon.social/@hrbrmstr/11...

hrbrmstr 🇺🇦 🇬🇱 🇨🇦 🏳️‍🌈 (@[email protected])

Attached: 1 image just focused on U.S. as destination and this is one of the most coordinated massive campaigns I've seen in quite a while.

mastodon.social

Reposted by Ian Campbell

Juno Rylee Schultz @junoryleejournalism.com · 4d

David Simon, creator of ‘The Wire’, being interviewed by Ari Shapiro (NPR)

SHAPIRO: OK, so you've spent your career creating television without Al, and I could imagine today you thinking, boy, I wish I had had that tool to solve those thorny problems...
SIMON: What?
SHAPIRO: ...Or saying...
SIMON: You imagine that?
SHAPIRO: ...Boy, if that had existed, it would have screwed me over.
SIMON: I don't think Al can remotely challenge what writers do at a fundamentally creative level.
SHAPIRO: But if you're trying to transition from scene five to scene six, and you're stuck with that transition, you could imagine plugging that portion of the script into an Al and say, give me 10 ideas for how to transition this.
SIMON: I'd rather put a gun in my mouth.

340 8.9K 28K

Reposted by Ian Campbell

Reuters @reuters.com · 3d

'When authoritarians seize power, it is crucial to recognize courageous defenders of freedom who rise and resist,' the Norwegian Nobel Committee said as it announced Maria Corina Machado as the winner of the 2025 Nobel Peace Prize

150 1.9K 5.2K

Ian Campbell @neurovagrant.bsky.social · 3d

Oh nice, Nvidia AI red team wrote up some of their attack framework and results from their BlackHat presentation. These folks are awesome.

developer.nvidia.com/blog/from-as...

From Assistant to Adversary: Exploiting Agentic AI Developer Tools | NVIDIA Technical Blog

Developers are increasingly turning to AI-enabled tools for coding, including Cursor, OpenAI Codex, Claude Code, and GitHub Copilot. While these automation tools can enable faster development and…

developer.nvidia.com

Ian Campbell @neurovagrant.bsky.social · 3d

Fascinating job alert: TikTok

Analyst, Influence Operations - Global Security Organization

lifeattiktok.com/search/75533...

Analyst, Influence Operations - Global Security Organization

View our opening for Analyst, Influence Operations - Global Security Organization and learn more about what it's like to work at TikTok!

lifeattiktok.com

Ian Campbell @neurovagrant.bsky.social · 4d

YESSSSSS LABScon 2025 videos have started going up. This was a fantastic talk by two Dreadnode folks on the nuts and bolts of an agentic system built for Russian internet content analysis, as well as the limitations, ways to properly assess it, and further implications.

youtu.be/zZUKMrz7TNU

LABScon25 Replay | Auto-Poking The Bear - Analytical Tradecraft In The AI Age | Wendiggensen & Palm

YouTube video by SentinelOne

youtu.be

Ian Campbell @neurovagrant.bsky.social · 4d

I love how we’re all just pretending MCP can be patched like any other software and the problem solved.

The nondeterminism is what Nvidia AI red teamer Rich Harang very presciently calls a “universal anti-pattern” that allows for these vulnerabilities.

www.darkreading.com/vulnerabilit...

Figma MCP Server Opens Orgs to Agentic AI Compromise

A bug (CVE-2025-53967) in a popular Web design tool's option for talking to agentic AI allows command injection leading to remote code execution (RCE).

www.darkreading.com

1 3

Ian Campbell @neurovagrant.bsky.social · 4d

Framework can make this right, but doubling down on supporting projects by a toxic dickhead that also gleefully celebrated mass tech worker layoffs “because DEI” is not apolitical or “big tent.”

It’s just another bro show.

Ian Campbell @neurovagrant.bsky.social · 4d

In regards to Framework’s latest footgunning, two things:

1. Tech is and always has been political. Anyone saying otherwise simply wants to avoid being held accountable for their words and actions.

2. “Big tent” policies loudly express that you’re perfectly okay becoming the neighborhood nazi bar.

1 1

Ian Campbell @neurovagrant.bsky.social · 4d

“We gladly feast on those who would subdue us.”

Was reminded of this tonight and need to carry it forward.

Addams family clip with Morticia repeating the family credo, which is the text above.

2 6

Ian Campbell @neurovagrant.bsky.social · 4d

Shout out to Silobreaker for putting out *really* well-done weekly geopolitical briefs that provide substantial, timely, and relevant analysis without feeling like a chore to make time for.

#threatintel #infosec #cybersecurity

www.silobreaker.com/resources/re...

www.linkedin.com/newsletters/...

Weekly Geopolitical Risk Briefs

At Silobreaker, we understand the critical impact that geopolitical conflicts can have on your organization. That's why we're excited to introduce our latest Geopolitical Risk Briefs. Our research tea...

www.silobreaker.com

Ian Campbell @neurovagrant.bsky.social · 5d

Oh, this could be a powerful combo. My article aggregator/RSS reader/more now integrates natively with n8n, which is a powerful platform to develop AI-centric workflows www.inoreader.com/blog/2025/10...

Supercharge your workflows with our new n8n integration

We’re excited to announce that Inoreader now integrates with n8n – one of the most popular platforms for workflow automation...

www.inoreader.com

Ian Campbell @neurovagrant.bsky.social · 5d

ICE now owns roving vans with integrated cell site simulators

techcrunch.com/2025/10/07/i...

for commentary on this breaking news, i turn to my recently-made friend Ray Hunter

Luckily everyone else can too!

#infosec #privacy

www.eff.org/deeplinks/20...

ICE bought vehicles equipped with fake cell towers to spy on phones | TechCrunch

The federal contract shows ICE spent $825,000 on vans equipped with “cell-site simulators” which allow the real-world location tracking of nearby phones and their owners.

techcrunch.com

3 6

Ian Campbell @neurovagrant.bsky.social · 5d

Hey folks, just a reminder I'll be at BSides NoVA this weekend, giving a talk on DNS and domain intel in investigative journalism! It's an intersection of passions for me, so I'm wicked excited.

#infosec #cybersecurity #bsidesnova

bsidesnova-2025.sessionize.com/session/1001...

Start the Presses! Domain and DNS Intelligence in Investigative Journalism

Across two businesses, dozens of training sessions, and hundreds of grants for access, we’ve spent more than a decade enabling the use of DNS and domain intelligence for investigative journalists. Col...

bsidesnova-2025.sessionize.com

Ian Campbell @neurovagrant.bsky.social · 6d

“But Captain,” I mutter to myself in the early morning quiet, “it’s only Tuesday.”

Ian Campbell @neurovagrant.bsky.social · 6d

This Phrack timeline of the Kimsuky dump is wiiiiiiild.

phrack.org/issues/72/7_...

(we did some deeper analysis of the dump, linked below, but wow...)

( dti.domaintools.com/inside-the-k... )

APT Down - The North Korea Files

Click to read the article on phrack

phrack.org

Ian Campbell @neurovagrant.bsky.social · 6d

If you need something to read this morning, we published research on Friday around an activity cluster targeting 18+ interests, especially gambling and porn.

Well. Also tax websites. Which I suppose is an adult interest. Sigh.

#threatintel #infosec

dti.domaintools.com/securitysnac...

DomainTools (@[email protected])

New from DTI: A financially-motivated cluster of spoofed domains disguised as age 18+ social media content, government tax sites, consumer banking, and online gambling applications targeting Windows a...

infosec.exchange

Ian Campbell @neurovagrant.bsky.social · 6d

Prompt||GTFO events have been extremely educational for me as an AI skeptic, as well as fun and entertaining. Worth checking them out.

Google Form for getting the invite (or applying to present):

docs.google.com/forms/d/e/1F...

LinkedIn post with more info:

www.linkedin.com/feed/update/...

Prompt||GTFO Registration

Welcome to the Prompt Pit, where in a world of vibe slop, we're taking AI back from the marketers. Next upcoming episode: S02E01: Indiana Pit and the Raiders of the Lost Prompt When: 25 September, 20...

docs.google.com