Current characteristics:

Relatively low-volume password spray (2-4 million requests/24hr)

Using a res proxy to spread attack across millions of IPs around the world

1 request per IP

Requests against a user ID are spread across hours or days

Even with unknown user IDs, seeing just shy of a 50% success rate on user ID guessing.

Just over .02% success rate overall...after over a year of attack/attrition

No changes to compromised accounts - just after access

This AI attack represents a first-of-its kind in the world -- weaponized AI is actively driving this attack...on a global scale.

Currently, first-level targets are 1FA protected accounts for large suppliers (millions of users). Compromised accounts are used to go after 2FA accounts that are linked to them. Lather, rinse, repeat...wipe hands on pants.

Cybersecurity tip of the day: 2FA is no longer enough if your 2FA uses an email account for the OTP -- you need the entire chain to be 2FA and at some point for there to be a true out-of-band channel (mobile, passkey, hard token, etc.)

The AI-driven attack I'm tracking is a mass compromise of email, starting with 1FA accounts and using that to move on to 2FA accounts.

Good morning Coso - only 16 hours to go until bed...

Work in progress...finishing the legs over the next week and then moving on to the soft parts.

It is by caffeine alone I set my mind in motion. It is by the beans of Java that thoughts acquire speed, the hands acquire shakes, the shakes become a warning. It is by caffeine alone I set my mind in motion.

Finally getting around to finishing off the armor. Another couple of weeks and it should all be printed...then it's on to the finishing work.

Was trying for Mickey and Pluto…I think the printer settings are off…

Avaunt, gray-cloaked harbingers of rain - these scurvy dogs need out.

Work at the forge done for the day, Guinness foreign extra in hand, piri piri chicken kebabs ready for the grill, and an extra day off tomorrow. This'll do.

Progress report: core (electronics) installed and the blade _finally_ arrived. For a one-day print and finish, this came out pretty good...

Show more

Nikto

CounterSocial is the first Social Network Platform to take a zero-tolerance stance to hostile nations, bot accounts and trolls who are weaponizing OUR social media platforms and freedoms to engage in influence operations against us. And we're here to counter it.