This guy is trying to convince us he can look at a file and use a construct (YARA) to pattern match to a file in: H I S O W N D A T A B A S E, and then tell the world who wrote it. (So I will write the code to "Hello Russian World" and he may attribute it to me which would be incorrect. A football does not belong to anyone except the one holding it. Possession, Attribution, MAC, or however you slice it minus packet sniffing and or end point tracing is also flawed by vpn chains proxy tunnels and behind those are public endpoints SA: Starbucks ) and of course they just MUST BE RUSSIAN (because that is THE high profit margin case, so, I bet they scream Russia a lot since there is no money in "the water boy did it") Since priority of title is always fixed by time, it would make the last known origin? Wait for it? Him! Yes you are correct. And lets assume for a second this guy was anything more than a "CrowdStrike hungry" con man. OK, How many of the cases that FE worked turned out to be APT? (Ya know the profitable "Russian" scams? ) My guess is these guys are telling clients "THE RUSSIANS GOT YOU AND ITS GOING TO BE EXPENSIVE." ) But, I must say: Anyone who can take an old porn exploit and convince hacking illiterate suckers its a Russian GRU cyber weapon gets the bullshitter of the decade award.
@sTL45oUw
4 жыл бұрын
God damn that music. I almost shit my pants watching all that bullshit graphics.
@yeahok9165
4 жыл бұрын
*Fireeye labs moniter thousands of payloads everyday.* Where do you find so many payloads? You need so many people to test so many payloads. Thousands is quite a big number for a daily basis. You sound like you are making up bulls**t.
@MichaelGuy
6 жыл бұрын
Well funded? Where is your proof? And now you know the thought patterns of a threat actor? Please enlighten us. This rediculous Star wars cartoon vid has me on the floor laughing.
@MichaelGuy
6 жыл бұрын
Threat Attribution of a digital file to its creator is fraud and so are you. Your statements are both fraudulent and irresponsible. Now. You get your head on straight. APT / POWERSHELL / CHOPSTICK are artifacts from a common porn exploit that has been around for EVER. You are high to continue to mislead people (FOR MONEY or to "Get a piece of that CrowdStrike Action and the very definition of fraud is selling this Russian BS to your clients.") into thinking a common porn BHO/SPA is a god damn Russian GRU weapon. You my friend are either completely stupid, high or both.
@MichaelGuy
6 жыл бұрын
Manufactured? Or coded/created? And since when does the TCP stack allow for the flying of packets through the air? And since when does an APT always employ a social network crawler as a DCA?
Пікірлер: 10