@nazokiyoubinbou @Viss Exactly

viss@mastodon.social

@phpete because it worked

staticrocket@defcon.social

@Viss you got the sof-firmware packages? Shitty little pwm Harman/Kardon speakers in my 2015 g14 refused to function at anything other than max volume without those.

viss@mastodon.social

@StaticRocket these are some kinda 'cirrus audio' nonsense ive never heard of. and back in like nov/dec there were discussion threads where folks were confident "the kernel devs are aware and the drivers are on the way in" but ive seen like three kernels since then and fuckin' bupkis

staticrocket@defcon.social

@Viss ah, kind of wish kernel hardware bounties were a thing

viss@mastodon.social

@StaticRocket kernel hardware bounties are a fucking genius idea

staticrocket@defcon.social

@Viss they've been done before, but I'm not sure why the linux foundation doesn't consider running an dashboard for it

viss@mastodon.social

@crispius i was in a three person quake2 clan for a summer, but i dont think we were big or interesting enough to participate in anything at all or make it onto any leaderboards

cr0w@infosec.exchange

@Viss What the fuck? How do they keep finding new ways to be dicks?

viss@mastodon.social

@cR0w because people keep giving oracle money for java licenses, cloud bullshits, development hours, proservices and other 'legacy shit'

cr0w@infosec.exchange

@Viss I'm almost impressed by the evil creativity though. Almost.

staticrocket@defcon.social

@cR0w @Viss as far as creativity goes, this is pretty lackluster. I want to see those goofs try to trademark intrinsic names when this failes. Just full on nuclear. Prove that wonderful "Birth and Death of JavaScript" talk wrong here and now.

viss@mastodon.social

@StaticRocket @cR0w you mean do a disney and try to copyright the happy birthday song?

staticrocket@defcon.social

@Viss @cR0w yeah, give everyone another reason to run and hide at the name Oracle. (Shout out that disclaimer on the oracle linux wiki that was quietly removed a while back...)

badsamurai@infosec.exchange

@Viss @cR0w blocking (or limiting access to) downloads from oracle owned software and the Oracle/Oraclecloud login pages should be top of mind for every org.

Treat them like the ransomware operators they are.

Edit: Block them in your SEG too.

h2onolan@infosec.exchange

@Viss just gimme a damn soundblaster 16 on irq 9

viss@mastodon.social

@badsamurai @cR0w oh man, how fucking glorious would it be to get them inserted into the cloudflare, azureedge, fastly, cloudfront and akamai cdns as malware distribution hosts? could you imagine how awesome it would be to see all the huge cloud providers just all blacklist oracle as outright malicious at the same time?

i wonder who has a centralized list they're all imbibing...

badsamurai@infosec.exchange

@Viss @cR0w make an AI bot friendly (only?) domain hosting Oracle indicators and let slop do the rest?

viss@mastodon.social

@badsamurai @cR0w oh thats ...
hmm..

are you a websockets guy?

i have an idea.

badsamurai@infosec.exchange

@Viss @cR0w yes. And for extra lulz, put it on a cloudflare worker.

viss@mastodon.social

@badsamurai @cR0w i wonder if it is possible to hit any of the frontier LLMs using websockets in such a way that it emulates an api query... here's my thinking:
- setup a bullshit site
- load it up with the indicators you mentioned
- have a websocket call that functions as essentially an api call to an llm to ask about the state of oracle software, tell it to speak to oracle properties/ASNs hosting malware
- pipe the response back and render it on the site
- let the ourobouros begin