fsebugoutzone.org:9999

Posts by miri@infosec.exchange
(DIR) Post #ASSPIlxpXHJVqZtZgG by miri@infosec.exchange
2023-02-08T03:36:55Z

0 likes, 0 repeats

@stux Happy Birthday! 30 years young! I turn 40 this year…the years come out of no where it seems!

(DIR) Post #AcqEAz1oWckT8QF56G by miri@infosec.exchange
2023-12-15T18:06:25Z

0 likes, 0 repeats

@rich Congrats! If you do a live ride for 1k you’ll probably get a shout out!

(DIR) Post #Am4UdOtSFhF06lPNqa by miri@infosec.exchange
2024-09-16T19:32:23Z

1 likes, 0 repeats

So, uh.Ever heard of Microsoft Windows 16? Not Windows Server 2016, but Windows 16.It was listed as a requirement in a government RFP I just looked at…Along with Acrobat XI. You know, the one that was released in 2012.

(DIR) Post #Aq7rTveSysC2vLuzTM by miri@infosec.exchange
2025-01-15T21:26:36Z

0 likes, 0 repeats

So I got told I have a Kubernetes “server” running around in my Cloud. By a source that I would assume is pretty accurate (the gov).Now I get to figure out who put that there. And when. And if it’s ever had a patch.Fuck.

(DIR) Post #Aq7rTxG50VsHuIWXjs by miri@infosec.exchange
2025-01-15T21:30:35Z

0 likes, 0 repeats

@Viss I was so happy that I didn’t have to deal with Cloud again. No more EC2, no more AWS. I had one little VM puttering along. But no. That’s not the case it seems.

(DIR) Post #Aq7rTyNuorjjOtCJai by miri@infosec.exchange
2025-01-16T02:01:48Z

0 likes, 0 repeats

@Viss It’s the fucking website host. So now I have to send them an email that they have Ubuntu vulns from 2016.

(DIR) Post #Aq7rTzgjyMOBRZ0rZY by miri@infosec.exchange
2025-01-16T02:12:11Z

0 likes, 0 repeats

@Viss Don’t even get me started on the …like 40 line items of Forti issues.I’m about to go rip that shit out in 2 weeks before I go insane.

(DIR) Post #Aq7rU1DOIS6IB7IS6S by miri@infosec.exchange
2025-01-16T02:17:04Z

0 likes, 0 repeats

@Viss My boss mentioned selling my services as a consultant/assessor in a couple of months. I asked her what my cut of the fees would be, since apparently it pays about $250/hr if I was doing it on my own.She sorta blinked at me.I’m not fucking working for free when it’s not in my JD.

(DIR) Post #Aq7rU2bX8B0SUHbFNA by miri@infosec.exchange
2025-01-16T02:28:15Z

1 likes, 0 repeats

@Viss I was hired to give them an edge for contracts. They had no one with security expertise and it was showing up in contracts. My job didn’t exist a month before I started. My dad called the CEO and told her I was available to talk (they had tried to hire me a decade before). She and I talked twice, for about an hour total. I had an offer 2 days later. They had to create the position.She’s now realizing that the CMMC push by the DoD might be a good way to make more money. I’m currently undergoing training for the 2 exams and should be certified before I go on vacation in April. When I get back shit is scheduled to hit the fan. She sees it as a chance to capitalize on it. While I am also carrying them through their own audit prep. While also doing Tier 1 helpdesk support. Which was what I was doing this afternoon while reading resumes and avoiding my exploding inbox.Right now, if they tried to get rid of me, they are shooting themselves in the foot. My father made the company millions and I’ve got the skills to be the next piece of that puzzle. But right now I don’t have the time and sanity. I’ll consult after hours for my own money. Maybe in the future when I’m not scrambling through a day I’ll consider it. But I’m not going to be the only executive working on contracts as a resource and not getting anything extra for it while running their entire tech team and working proposals.Rant over :)