Posts by SecureOwl@infosec.exchange
(DIR) Post #B5n6Jc5ubkkUuNVmHg by SecureOwl@infosec.exchange
2026-04-28T21:02:33Z
0 likes, 0 repeats
Another good one, just got a meeting invite to internaluser.com, got sent to one of the big four US broadcasters from some sort of SaaS thing:"CONTAINS CONFIDENTIAL MEETING INFORMATION (SEE BELOW). DO NOT FORWARD."Will join the zoom as Internal User.
(DIR) Post #B5n6JgdNjFtkzLCZ0a by SecureOwl@infosec.exchange
2026-04-28T21:07:00Z
0 likes, 0 repeats
"The information below is for internal attendees only. Invitations sent to external attendees do NOT contain this information"Awww, they think me internal. ❤️ ❤️ ❤️
(DIR) Post #B5n6JlTdiu4o0ZgM1A by SecureOwl@infosec.exchange
2026-04-29T14:37:38Z
0 likes, 0 repeats
One of the other domains I registered as I descended into this rabbit hole was "dev-user.com".Based on email traffic, owning that domain has been enough to give me admin access to a couple of Wordpress-powered sites, and multiple SaaS apps (particularly, staging/non-prod instances).All orgs involved have been informed.So to summarize current state of Plexfiltration:1 - Deleteduser/deleted-user.com = 65 orgs using2 - Internaluser.com - 12 orgs3 - service-account.com - 8 orgs4 - dev-user.com - 6 orgs#infosec
(DIR) Post #B5phPRNjR2Xu2dPNJY by SecureOwl@infosec.exchange
2026-04-30T19:46:50Z
1 likes, 0 repeats
some personal news: i recently put a power tool back where it was supposed to go and was able to find it with ease when i needed to use it today
(DIR) Post #B5rPSCIAaKgFFetK4G by SecureOwl@infosec.exchange
2026-05-01T01:05:50Z
1 likes, 1 repeats
trying a new thing, have 3D printed a QR code and put it on the front porchQR code triggers a canary tokenwant to see if any of the delivery companies are using the drop off proof of delivery pics to train AI#infosec
(DIR) Post #B5rPSHamsXXlgqdlHU by SecureOwl@infosec.exchange
2026-05-01T02:51:51Z
0 likes, 0 repeats
Whelp, sample size of 1 so far, but about 50 minutes after an amazon delivery - where a picture was taken - got a hit on the canaryi just checked the delivery photo and the QR code was visible in itUser agent was not a phone and clearly some sort of crawlerIP address was a CDNbut we are 1/1, lets see how it goes with a few more(i get a lot of random work deliveries)
(DIR) Post #B5sSc95bqCgREePZui by SecureOwl@infosec.exchange
2026-05-02T04:10:42Z
1 likes, 0 repeats
Spirit Airlines should just be like, "oh, btw, we're pivoting to AI" and people would be like, "woah, here have some money!"Then, when they just carry on being a (sorta) airline, and not AI, and people are like "huh, wheres the AI?" They can be all "oh, our bad, we meant AIR but forgot the R".Follow me for more business strategy tips.
(DIR) Post #B5vTxqALYtfQLOPqs4 by SecureOwl@infosec.exchange
2026-05-03T17:05:49Z
1 likes, 1 repeats
Experiment updateAmazon are 2/2 for hitting the QR canary token - same CDN, same non-phone user agent each time. Seems to happen async after the delivery, maybe 20 mins or so later.Actual delivery photo from today below.Only other test subject so far is Fedex, they did not trigger the QR.#infosec
(DIR) Post #B5vXppGrPAid4IteFM by SecureOwl@infosec.exchange
2026-05-03T17:43:14Z
1 likes, 0 repeats
RE: https://live.acarsdrama.com/@acarsdrama/116511863311704573“mildly flooded” sounds like the way my 12 year old would describe a river in the house of his own creation
(DIR) Post #B6729zfZaTwETTY19k by SecureOwl@infosec.exchange
2026-05-09T05:45:49Z
1 likes, 0 repeats
big cluster of emergency vehicles at Denver Airport on 17L, Frontier 4345 was taking off to go to LAX and they reported hitting an individual on the runway, which triggered an engine fire
(DIR) Post #B681dw8hN6KPPuqRlo by SecureOwl@infosec.exchange
2026-05-09T18:14:56Z
1 likes, 0 repeats
For fans of @acarsdrama - it is now regularly receiving and churning through 250,000 raw messages an hour from the skies around the globe. That is insane.
(DIR) Post #B6BGUl8N08WHSteXdQ by SecureOwl@infosec.exchange
2026-05-10T19:42:09Z
2 likes, 5 repeats
“Hi, my name’s David, I’m one of the repair techs here, I’v been looking after your broken soldering iron today.”“How’s he doing.”“Take a seat.”“Oh no.”“Unfortunately, and there is no easy way to say this, we looked at your Iron, and, well, we found something.”“Please, just give it to me straight.”“Ok, well we found, and I’m so sorry, we found, firmware.”“It has firmware?”“Yes.”“But it’s a soldering iron?”“Yes.”“So there is nothing you can do for it?”“Unfortunately, when a tool has firmware, it’s always fatal. There is nothing we can do. I am very sorry.”“But, it’s so young. I only got it like a month or so ago?”“Sadly, we often see firmware on younger tools.”“But it was fine yesterday, like totally fine?!”“With any kind of firmware, it can just, you know, stop working.”“What am I gonna tell the kids?!”“Obviously you know your kids better than me, but as a general rule, I always tell people that kids appreciate honesty, and are more resilient than you might think. Be honest.”“But how?”“Just tell them, you were drawn in by the features, rather than just a functional thing, so that’s why you got it.”“Ah man this is going to be rough.”“Would you like to see him?”“Not like this.”#microfiction
(DIR) Post #B6GHxpSoRF9UutBXUW by SecureOwl@infosec.exchange
2026-05-12T15:01:22Z
1 likes, 0 repeats
they paid a ransom to criminals with nothing but a pinky promise they wouldn’t do more crimes and yet this linkedin notification makes it sound like they entered into a strategic partnership to deliver value for their customers
(DIR) Post #B6Gqbvj1ySXUMT434C by SecureOwl@infosec.exchange
2026-05-13T00:43:10Z
0 likes, 0 repeats
I’ve been building the caution and fire warn recall buttons for my 737 sim, and i got these little buttons with built in led’s.Couldn’t figure out why they wouldn’t light up.Tried changing software settings etc. Getting annoyed trying to figure out what i was doing wrong.They had frigging mislabeled the “+” and “-“ on the led.
(DIR) Post #B6GqbwMjaqIYLbdkx6 by SecureOwl@infosec.exchange
2026-05-13T15:09:54Z
0 likes, 0 repeats
these are ready to go in now.caution and fire recall buttons, they light up when the caution/fire condition is present and can be pushed to be reset#homecockpit #avgeek #flightsim
(DIR) Post #B6GqbxzlXD77OwuRQe by SecureOwl@infosec.exchange
2026-05-14T00:29:10Z
1 likes, 0 repeats
recall buttons are live in the sim!
(DIR) Post #B6KEXF0ZpkY75oRqW8 by SecureOwl@infosec.exchange
2026-05-15T15:25:57Z
1 likes, 0 repeats
the sim is coming along, next on the agenda is 3d printing the knee panel that controls brightnessi kinda wanna hook that into the actual room lighting too#flightsim #homecockpit
(DIR) Post #B6L0zcbeQJ7XDi2Ij2 by SecureOwl@infosec.exchange
2026-05-15T19:47:37Z
5 likes, 1 repeats
BREAKING: GitHub switching status page default language to German in order to return to five neins.
(DIR) Post #B6MX6JXL74mlnNDM8G by SecureOwl@infosec.exchange
2026-05-16T14:34:30Z
1 likes, 1 repeats
There is that famous technical interview question that goes: what happens behind the scenes when you type in a domain name and press enter? The intention is you talk all about resolving DNS of the host, TCP things and HTTP etc.A more truthful answer would include:- Your email address is sent to launch darkly to get applicable feature flags.- A gigabyte of data is logged to DataDog- Details about the way you moved your mouse are sent to segment.io- A bunch of telemetry is sent to Sentry.- Ads are injected from Facebook.- Metrics are recorded to Hubspot.- Page renders in browser.
(DIR) Post #B6VENrmgsvlYEFgr9U by SecureOwl@infosec.exchange
2026-05-20T23:02:06Z
0 likes, 0 repeats
the humidity in nyc has been rising all day and it feels like we are about to get hit by the storms that have been plaguing PHL per the @acarsdrama traffic this evening