Ryan Platten
@nonmalicious.com
Professional Googler of all the things / Husband & Dad / Do stuff @binarydefense.com / TTRPG / Vidya Games / Collector of Hobbies / Skeets are mine.
Reposted by Ryan Platten
ICYMI - Trimarc Security is now fully operating under TrustedSec! This marks a significant step forward in our mission to provide real-world security guidance to help our partners succeed. Read our blog by Founder and CEO David Kennedy to learn more! trustedsec.com/blog/trimarc...
March 21, 2025 at 2:36 PM
ICYMI - Trimarc Security is now fully operating under TrustedSec! This marks a significant step forward in our mission to provide real-world security guidance to help our partners succeed. Read our blog by Founder and CEO David Kennedy to learn more! trustedsec.com/blog/trimarc...
Another HTM smuggling credential harvesting campaign targeting Microsoft 365 credentials. Full analysis of the campaign and walkthrough of how to analyze these payloads in the blog below
www.binarydefense.com/resources/bl...
www.binarydefense.com/resources/bl...
Analysis of a JavaScript-based Phishing Campaign Targeting Microsoft 365 Credentials | Binary Defense
ARC Labs recently discovered a JavaScript based credential harvesting campaign leveraging fake voicemail notifications as a lure to capture Microsoft 365 credentials.
www.binarydefense.com
March 4, 2025 at 3:38 PM
Another HTM smuggling credential harvesting campaign targeting Microsoft 365 credentials. Full analysis of the campaign and walkthrough of how to analyze these payloads in the blog below
www.binarydefense.com/resources/bl...
www.binarydefense.com/resources/bl...
Signal spam has been terrible lately
February 28, 2025 at 5:43 PM
Signal spam has been terrible lately
Reposted by Ryan Platten
Fact check: nearly 70 percent of US money for Ukraine actually went to US defense industry to replenish the stocks of OLD stuff that went to Ukraine to use.
Much of which we would have paid to destroy as their lifespan expired.
Much of which we would have paid to destroy as their lifespan expired.
February 16, 2025 at 4:55 PM
Fact check: nearly 70 percent of US money for Ukraine actually went to US defense industry to replenish the stocks of OLD stuff that went to Ukraine to use.
Much of which we would have paid to destroy as their lifespan expired.
Much of which we would have paid to destroy as their lifespan expired.
Todaaaay!
Join us tomorrow at 2 PM ET to explore #InsiderThreat breaches, including DPRK cyber activities, and learn actionable strategies to mitigate risks. Led by JP Castellanos, this session will help organizations stay safe👉: www.binarydefense.com/resources/we...
#CyberResilience #ThreatIntelligence
#CyberResilience #ThreatIntelligence
ThreatTalk: The IT Worker, Threat from Within and The Hermit Kingdom | Binary Defense
The insider threat is a multifaceted challenge that represents a significant cybersecurity risk to organizations today. Some insiders act with malicious intent, such as employees aiming to steal data ...
www.binarydefense.com
February 14, 2025 at 3:55 PM
Todaaaay!
Agentic AI, a term to impress,
But who wants a bot that creates a mess?
We asked for support, not free will's guise
But who wants a bot that creates a mess?
We asked for support, not free will's guise
January 9, 2025 at 3:20 PM
Agentic AI, a term to impress,
But who wants a bot that creates a mess?
We asked for support, not free will's guise
But who wants a bot that creates a mess?
We asked for support, not free will's guise
Damn. Covid for Thanksgiving and RSV for Christmas.
a cartoon of grinch with a santa hat on
ALT: a cartoon of grinch with a santa hat on
media.tenor.com
December 24, 2024 at 1:55 AM
Damn. Covid for Thanksgiving and RSV for Christmas.
Recently started watching “To The Lake” on Netflix. It’s actually a pretty good apoc show.
December 20, 2024 at 11:43 PM
Recently started watching “To The Lake” on Netflix. It’s actually a pretty good apoc show.
Binary Defense ARC Labs researchers located an active C2 server used in Cleo MFT compromises and analyzed the 2nd and 3rd stage JAR files used in the post-exploitation activity.
www.binarydefense.com/resources/bl...
www.binarydefense.com/resources/bl...
Cleo MFT Mass Exploitation Payload Analysis | Binary Defense
ARC Labs recently capture and analyzed the second and third stage payloads used during a Cleo MFT compromise.
www.binarydefense.com
December 10, 2024 at 10:31 PM
Binary Defense ARC Labs researchers located an active C2 server used in Cleo MFT compromises and analyzed the 2nd and 3rd stage JAR files used in the post-exploitation activity.
www.binarydefense.com/resources/bl...
www.binarydefense.com/resources/bl...
I have too many communication channels… SMS, Slack, Teams, Discord, Signal, Twitter, Bsky, LinkedIn….
a stuffed frog is laying in a red bowl of water .
ALT: a stuffed frog is laying in a red bowl of water .
media.tenor.com
December 10, 2024 at 3:48 PM
I have too many communication channels… SMS, Slack, Teams, Discord, Signal, Twitter, Bsky, LinkedIn….
My daughter just informed me that she needed some space… she’s 2
December 8, 2024 at 11:31 PM
My daughter just informed me that she needed some space… she’s 2
A-10 go Brrrrrrrt. 🥵
Clearly A-10 Warthogs are strafing the Iranian positions in the Khsham pocket, Deir Ezzor province, in Syria, using their famous 30mm gatling autocannon.
Source: X / DeirEzzor24
Source: X / DeirEzzor24
December 4, 2024 at 5:06 AM
A-10 go Brrrrrrrt. 🥵
News feed today has me like ...
a man is holding a fire extinguisher with flames coming out of it
ALT: a man is holding a fire extinguisher with flames coming out of it
media.tenor.com
December 3, 2024 at 3:25 PM
News feed today has me like ...
Decided to let Vault Boy out of his plastic vault and onto the shelf.
Let’s be honest, it’s better used and adored than forgotten in a closet of trinkets that *may* hold resale value some day - right?
Let’s be honest, it’s better used and adored than forgotten in a closet of trinkets that *may* hold resale value some day - right?
December 3, 2024 at 3:49 AM
Decided to let Vault Boy out of his plastic vault and onto the shelf.
Let’s be honest, it’s better used and adored than forgotten in a closet of trinkets that *may* hold resale value some day - right?
Let’s be honest, it’s better used and adored than forgotten in a closet of trinkets that *may* hold resale value some day - right?
Reposted by Ryan Platten
I try to write technical blogs regularly on topics I’m interested in. Recently this has been a lot of reverse engineering, Bluetooth, and networking hacks. But there’s many other goodies too!
As I’m invested in this aspect of bsky succeeding, here’s a thread of my posts. Comments encouraged!
As I’m invested in this aspect of bsky succeeding, here’s a thread of my posts. Comments encouraged!
December 2, 2024 at 6:54 PM
I try to write technical blogs regularly on topics I’m interested in. Recently this has been a lot of reverse engineering, Bluetooth, and networking hacks. But there’s many other goodies too!
As I’m invested in this aspect of bsky succeeding, here’s a thread of my posts. Comments encouraged!
As I’m invested in this aspect of bsky succeeding, here’s a thread of my posts. Comments encouraged!
New analysis out of ARC Labs on Rhadamanthys Stealer.
Utilizes native utilities like cmd, findstr, and tasklist to blend in with normal operations
It relies on process injection to hijack programs like OpenWith.exe and OOBE-Maintenance to mask activities.
www.binarydefense.com/resources/bl...
Utilizes native utilities like cmd, findstr, and tasklist to blend in with normal operations
It relies on process injection to hijack programs like OpenWith.exe and OOBE-Maintenance to mask activities.
www.binarydefense.com/resources/bl...
Rhadamanthys Stealer Analysis for Detection Opportunities | Binary Defense
ARC Labs analyzed the Rhadamanthys Stealer infection chain to provide actionable detection insights. Learn about phishing tactics, process injection, and specific KQL queries to strengthen your defens...
www.binarydefense.com
December 2, 2024 at 3:07 PM
New analysis out of ARC Labs on Rhadamanthys Stealer.
Utilizes native utilities like cmd, findstr, and tasklist to blend in with normal operations
It relies on process injection to hijack programs like OpenWith.exe and OOBE-Maintenance to mask activities.
www.binarydefense.com/resources/bl...
Utilizes native utilities like cmd, findstr, and tasklist to blend in with normal operations
It relies on process injection to hijack programs like OpenWith.exe and OOBE-Maintenance to mask activities.
www.binarydefense.com/resources/bl...
Taking it way back tonight to '03 with Freedom Fighters.
December 2, 2024 at 1:52 AM
Taking it way back tonight to '03 with Freedom Fighters.
Jackpot. Original 1944 shellac print of ‘Up Swing’ 😍
December 1, 2024 at 4:52 PM
Jackpot. Original 1944 shellac print of ‘Up Swing’ 😍
I’ll always stan for Band of Brothers as one of the greatest tv series, but the intro to each episode of The Pacific is phenomenal
December 1, 2024 at 4:09 AM
I’ll always stan for Band of Brothers as one of the greatest tv series, but the intro to each episode of The Pacific is phenomenal
Reposted by Ryan Platten
Aleppo City has been liberated.
November 29, 2024 at 10:20 PM
Aleppo City has been liberated.
Who has a list of deals for good cyber training / skill / tool for home lab
November 29, 2024 at 3:38 PM
Who has a list of deals for good cyber training / skill / tool for home lab
How long til North Korean remote workers get the blame in a CEO's announcement for RTO?
November 28, 2024 at 8:45 PM
How long til North Korean remote workers get the blame in a CEO's announcement for RTO?