So this has to be a record, a machine with the ip addres 20.82.177.193 attempted to access my wordpress install
Get this
81,391 times today!
Stay safe in the interweb people!
Another Prime A HOle!
Gee 34.142.211.105 thanks for the near 1000 attempts to log on to my wordpress site! Guess you forgot your password! Great…. Nice try with the host name to!
105.211.142.34.bc.googleusercontent.com –
I totly beleive google has nothing better to do than hassel my wordpress install! LOL
Some people are just A holes. Your one of them!
Cats and AI
So back in 2019 Facebook turned off Facial recognition due to privacy concerns. Today I found that a similar recognition style software is lurking in a number of other products, google photos for example came up with the following when I searched for “cat” (Scroll down for the results).
As you can see the thing picked up all sorts of stuff – including cushion artwork, my bad, very bad pictures of a cat’s bum, graffiti art of cats not to mention my rather average pen and ink work.
Apple’s photo application also does something similar, (Although I know that they have had facial recognition for a number of years running in the photo’s app) you also have to tell it who you are looking at (so it’s not quite as bad as FB was).
I’m not sure how I feel about this. On one level it’s amazing, on another level it’s yet another thing that creeps me out about AI. All that data is sitting there, how is it being or how has it been used? Stay safe.
Pegasus spyware and MVT
So just for the heck of it I installed MVT (Mobile Verification Toolkit) the other day, which is a piece of software released by Amnesty international to check if you have Pegasus spyware installed on your phone.
If you haven’t read about it Pegasus spyware is some nasty stuff (It’s developed by the Israeli cyberarms firm NSO Group). It seems it was installed on Jamal Khashoggi’s phone (you know that chap who was assassinated by agents of the Saudi government at the Saudi consulate in Istanbul, Turkey). Also today I read that Sheikh Mohammed used spyware on Princess Haya and five associates in an unlawful abuse of power.
In short this Pegasus spyware is so bad, they recommend that if it’s installed on your phone you should get rid of / destroy the phone. Apparently even erasing the phone from scratch has no effect!
The detection software it’s self is command line interface based (So not for the average user) and it took a bit of mucking about to get it to run. Using a debian linux machine from scratch it took an hour or 2 to get the dependencies and settings on the phone sorted so that the computer could fossick about the phone for any trace of the nasty.
Although it’s satisfying to be able to do this – the need to do more to protect your devices sprang to mind – a quick glance thru some of the documentation came up a number of urls a few of which I’ll list.
free247downloads[.]com
urlpush[.]net
get1tn0w.free247downloads[.]com
infospress[.]com
https://d38j2563clgblt.cloudfront[.]net
https://2far1v4lv8.get1tn0w.free247downloads[.]com
There is more in this document that you might like to grep thru.
https://www.amnesty.org/en/latest/research/2021/07/forensic-methodology-report-how-to-catch-nso-groups-pegasus/.
Be warned The [.] should be removed to find the current related ip address. Do this with care, and only use command line interface related commands, do not open any of the above in a browser!
Which brings up the issue of if your running your own network and routers. I’d slap some acl’s on these darn things and the related ip address, as it will give you a little more protection against possible infection.
In addition to this, is that this software seems to use a lot of url redirects. So if your concerned this article on how to stop redirects may be worth reading.
https://www.techadvisor.com/how-to/internet/how-block-webpage-redirects-3690103/
Stay safe people. It seems that the Internet is still the wild wild west.
You can find the mvt software here.
https://github.com/mvt-project/mvt