Collaborate Disseminate
I like to start long blog posts with a tl;dr, so here it is:
We’ve ingested a corpus of 1.5TB worth of stealer logs known as “ALIEN TXTBASE” into Have I Been Pwned. They contain 23 billion rows with 493 million unique website and
Continue reading Processing 23 Billion Rows of ALIEN TXTBASE Stealer Logs
Wait – it’s Tuesday already?! When you listen to this week’s (ok, last week’s) video, you’ll probably get the sense I was a bit overloaded. Yeah, so that didn’t stop, and the stealer log processing and new feature building just
We’re now eyeball-deep into the HIBP rebrand and UX work, totally overhauling the image of the service as we know it. That said, a guiding principle has been to ensure the new looks is immediately recognisable and over months of work, I think we’ve achieved that.
I think what’s really scratching an itch for me with the home theatre thing is that it’s this whole geeky world of stuff that I always knew was out there, but I’d just never really understood. For example, I mentioned waveforming in the video,
It’s IoT time! We’re embarking on a very major home project (more detail of which is in the video), and some pretty big decisions need to be made about a very simple device: the light switch. I love having just about every light in our connected.
We’re heading back to London! And making a trip to Reykjavik. And Dublin. I talked about us considering this in the video yesterday, and just before publishing this post, we pulled the trigger and booked the tickets. The plan is to pretty much repeat the US and Canada
It’s hard to find a good criminal these days. I mean a really trustworthy one you can be confident won’t lead you up the garden path with false promises of data breaches. Like this guy yesterday:
For my international friends, JB Hi-Fi is a massive electronics
Continue reading You Can’t Trust Hackers, and Other Data Breach Verification Tales
If I’m honest, I was in two minds about adding additional stealer logs to HIBP. Even with the new feature to include the domains an email address appears against in the logs, my concern was that I’d get a barrage of “that’s useless
TL;DR — Email addresses in stealer logs can now be queried in HIBP to discover which websites they’ve had credentials exposed against. Individuals can see this by verifying their address using the notification service and organisations monitoring domains can pull a list back via a new
Continue reading Experimenting with Stealer Logs in Have I Been Pwned
This week I’m giving a little teaser as to what’s coming with stealer logs in HIBP and in about 24 hours from the time of writing, you’ll be able to see the whole thing in action. This has been a huge amount of work