fsebugoutzone.org:9999

Post Aq7rTveSysC2vLuzTM by miri@infosec.exchange
(DIR) More posts by miri@infosec.exchange
(DIR) Post #Aq7rTveSysC2vLuzTM by miri@infosec.exchange
2025-01-15T21:26:36Z

0 likes, 0 repeats

So I got told I have a Kubernetes “server” running around in my Cloud. By a source that I would assume is pretty accurate (the gov).Now I get to figure out who put that there. And when. And if it’s ever had a patch.Fuck.

(DIR) Post #Aq7rTwfDDaNs3xH6H2 by Viss@mastodon.social
2025-01-15T21:28:51Z

0 likes, 0 repeats

@miri i have spent a significant amount of time dealing with those

(DIR) Post #Aq7rTxG50VsHuIWXjs by miri@infosec.exchange
2025-01-15T21:30:35Z

0 likes, 0 repeats

@Viss I was so happy that I didn’t have to deal with Cloud again. No more EC2, no more AWS. I had one little VM puttering along. But no. That’s not the case it seems.

(DIR) Post #Aq7rTxkDCTyfPkcbho by Viss@mastodon.social
2025-01-15T21:31:22Z

0 likes, 0 repeats

@miri shadow IT?

(DIR) Post #Aq7rTyNuorjjOtCJai by miri@infosec.exchange
2025-01-16T02:01:48Z

0 likes, 0 repeats

@Viss It’s the fucking website host. So now I have to send them an email that they have Ubuntu vulns from 2016.

(DIR) Post #Aq7rTz0uTsvdLpRSN6 by Viss@mastodon.social
2025-01-16T02:08:35Z

0 likes, 0 repeats

@miri [screaming ensues]

(DIR) Post #Aq7rTzgjyMOBRZ0rZY by miri@infosec.exchange
2025-01-16T02:12:11Z

0 likes, 0 repeats

@Viss Don’t even get me started on the …like 40 line items of Forti issues.I’m about to go rip that shit out in 2 weeks before I go insane.

(DIR) Post #Aq7rU0VmuZDpzstd8i by Viss@mastodon.social
2025-01-16T02:12:48Z

0 likes, 0 repeats

@miri i hope they line you up a massive bonus :D

(DIR) Post #Aq7rU1DOIS6IB7IS6S by miri@infosec.exchange
2025-01-16T02:17:04Z

0 likes, 0 repeats

@Viss My boss mentioned selling my services as a consultant/assessor in a couple of months. I asked her what my cut of the fees would be, since apparently it pays about $250/hr if I was doing it on my own.She sorta blinked at me.I’m not fucking working for free when it’s not in my JD.

(DIR) Post #Aq7rU1qNxTIC83Xasq by Viss@mastodon.social
2025-01-16T02:18:33Z

0 likes, 0 repeats

@miri ive been in that sorta position exactly once. it was when i was a kid, in .. 1999? maybe 2000? it was a prelude to them getting rid of me. first they &#39;hired me out as a consultant&#39; to some place, then when that ended they were lke &quot;uhhhh welp we just dont have any more work for ya!&quot;

(DIR) Post #Aq7rU2bX8B0SUHbFNA by miri@infosec.exchange
2025-01-16T02:28:15Z

1 likes, 0 repeats

@Viss I was hired to give them an edge for contracts. They had no one with security expertise and it was showing up in contracts. My job didn’t exist a month before I started. My dad called the CEO and told her I was available to talk (they had tried to hire me a decade before). She and I talked twice, for about an hour total. I had an offer 2 days later. They had to create the position.She’s now realizing that the CMMC push by the DoD might be a good way to make more money. I’m currently undergoing training for the 2 exams and should be certified before I go on vacation in April. When I get back shit is scheduled to hit the fan. She sees it as a chance to capitalize on it. While I am also carrying them through their own audit prep. While also doing Tier 1 helpdesk support. Which was what I was doing this afternoon while reading resumes and avoiding my exploding inbox.Right now, if they tried to get rid of me, they are shooting themselves in the foot. My father made the company millions and I’ve got the skills to be the next piece of that puzzle. But right now I don’t have the time and sanity. I’ll consult after hours for my own money. Maybe in the future when I’m not scrambling through a day I’ll consider it. But I’m not going to be the only executive working on contracts as a resource and not getting anything extra for it while running their entire tech team and working proposals.Rant over :)