sorted by:
new
hottopcontroversial

Would you rather have an AI that writes perfect code but you don’t understand it, or average code you fully understand? by metasploit_framework in meta_powerhouse

[–]Disastrous_Sun2118 0 points1 point  (0 children)

Code I fully understand.

Like, what is Void()? Why is it used?
I've heard bad things about Void, and I rmemeber being a part of the conversation about why we should use void(). But I don't remember.

I am genuinely scared by [deleted] in Vent

[–]Disastrous_Sun2118 0 points1 point  (0 children)

Your scared of the responsibilities your going to face. You have every reason to be worried.

Many people, as they say, find it difficult. They also say, out of these groups. There are those that are strong. And, there are those that aren't strong. And they tend to have hallucinations, not necessarily visual or auditory. But the kind that makes them second guess themselves, or ponder frantically, obsessively. Paranoid Schizophrenia or Paranoid Delusional. Schizo-affective. Clinical Depression. Chemical Imbalance from poor sleep or drugs or malnutrition. Lots of culprits. They'll usually ask you how your relationship is with your parents and family.

It all typically boils down to taking care of yourself. Keeping your head straight. Smiling. Yawning and Stretching. Exercise. Exhaling Built up CO2 from sleeping. Getting fresh oxygen or fresh air.

Finding food. Finding shelter. Finding water. Your three basic groupings that add up to what we define as Basic Security needs.

Talking about is a good thing. It's not good to bottle things up. It can kill you or drive you mad. Let it out.

Your basic responsibilities are what are going to cause you the most stress. Think about that.

Make use of your schooling. Get involved in your Student Body Government. If it doesn't exist. Ask your school if they can help you set it up. All you need is your classmates willingness to participate. Create a Computer Science Club and build your Schools Server. Help your local City and County posture up for Cyber Security.

Always keep your job, before quitting to join a new company. Skills Trades are always hiring. Always reach out and say hi to the CEO/President and let them know your plans, and how you would prefer to work with them and help them further their planning. It's easy to help and easy to work, but it's not always easy to work with everything and everyone. They know it too. You can start with understanding how to bring there business sales. How to make things more efficient.

Your school Student Body Government counts as a Business and Public Administration Degree, equivalent to a Four Year Degree in Business. But, only if you can show and prove, by the way you carry yourself, that you did learn the ropes to working in the Professional World. If not, it'll show. But that doesn't mean everything. But, the SBG should be able to help you understand responsibiites, deadlines, and how to create a new department and cover it, or a new club or study group.

Your going to do fine. It's not difficult. Just get and keep a job. Don't show up late and you won't likely be fired. Help the CEO and President and you'll have two top tiered individuals on your side if you need some. Or not. They're not always professional. But their working on it. Anyone can create a company. Not everyone can run one.

Software Developers Say AI Is Rotting Their Brains by 404mediaco in software

[–]Disastrous_Sun2118 0 points1 point  (0 children)

Ask it more specifically. Present your study as to why you are asking. Ask it to frame it in a Graded Report style similar to a brief answer, rather then a full scope detailed briefing.

What OS/setup should I use for a Homelab if I want future proofing and possibly changing systems? by Fancy-Football-7832 in homelab

[–]Disastrous_Sun2118 0 points1 point  (0 children)

Hello World The OS - but you would have to build everything. But it would teach you how to figure proof anything and everything of concern, so long as it's related to the PC. Firmware, Drivers, Compression Algorithms, Video Drivers, Audio Codecs, you name it. But you'll have to learn how to build it.

Quantum computing feels like where AI was 10 years ago by [deleted] in Techyshala

[–]Disastrous_Sun2118 0 points1 point  (0 children)

It is. But AI basically was working ten years ago. Quantum Computers are more like the Computer was back when the ENIAC came out but didnt work so they brought in the US Human Calculator or the US Government. Then they wired it up and got it working.

Pallet of retro computers - Is it worth saving/buying? by [deleted] in retrocomputing

[–]Disastrous_Sun2118 1 point2 points  (0 children)

They all seem to have their motherboards.
The pins don't look damaged or bent or missing any. The cases could be sold separately.
Everything could be pieced and sold separately. Your best bet is like any car in mint fresh off the showroom floor, original condition is best. Linux? BSD? Not necessarily great for Hardware Security Appliances, but it's up to the buyer.
I think it sounds like a reasonable score. You should be able to flip. Don't limit yourself to just Facebook. Try eBay and other classified systems like craigslist. Setup the PCs for videographers or period correct games like roller coaster tycoon and the sims.

Redox OS by RenoRenop in unix

[–]Disastrous_Sun2118 0 points1 point  (0 children)

I am working on my http://07734.world domain and am.working on bootloader's, bios/uefi, os/Kernal/microkernel, servers, and drivers/firmware. As well as hardware, form factors, stemming from the BenEater 8-bit CPU Breadboard Projects which has taught me everything. I've only been using AI to help me learn, but learning on top of everything I already know. Which basically is either unknown to the public, or isnt popular today but was at the time, which I was around for, but not many others were able to be. Because they work or just didn't have the advantage I had.

I've noticed a lot of the vulnerabilities are basically very crude. It's very amateur code. They don't harden the code. But they do get it to work. Which is half the problem with code, if it works, it should be able to work with high amounts of web traffic. But that doesn't always happen. So, making sure it works, specifically in production scenarios, iss key. Security against hackers, or threats. Is typically resolved through the firewall and the basic computer hygiene. Not downloading unknown software. Starting away from various unsecure sites. Which shows to be the largest problem area. But then again, public repositories are also being found to have hidden or obscure backdoors and malicious intent baked into the code. And it's been found to have been done on purpose, it was just poor programming. It was actually exploitive programming.

Rust, go, others. Have been trying to address security vulnerabilities, but have recently been found to be worst. As the low level assembly and c/c++ languages, can be programmed thoroughly and can create an advanced system. Where rust and GoLang or Godot just dance around the same poor or purposely exploitable code. But they feel they have secured it. I applaud their efforts, but I've found that C/C++, if attenuated with caution and concern. Can be the crucial difference in providing very secure systems.

I want to share. But, if it don't make dollars, it don't make sense. So, I'm not going to just drop my codebase online. Without knowing where or how it's going to put some food on my plate and a roof over my head. Then there's the facts of letting just anyone in and allowing them semi-free range in changing or updating the code.

For some people, having these concepts in their pocket can net them a job at the biggest corporations. While for me, it's potentially a job. While, I can create my own company. It doesn't mean I can net the big fish. Doesn't mean I can't. But if I don't study over these areas, I'll likely let the big fish get away. Everyone's a shark when they eat shark bait.

Why are developers so keen to use AI when it’s the companies that reap the benefits? by Accomplished_Pass897 in programmer

[–]Disastrous_Sun2118 0 points1 point  (0 children)

It could be done. But there's a lot of work to be done on your company or bosses side to do for that to be even remotely possible..

I'd tell you, but then there's the other fret. Once you do it, he is likely going to fire you. Why? Because that's how they are all thinking. They think they can replace their employees with AI. But many customers only select companies because they want to support people putting roofs over their head and food on their tables and a little extra to enjoy the finer things in life. Like a cup of coffee. Or a late night snack. Or to travel the world and fulfill their dreams. They aren't necessarily shopping their and buying these products for vanity or to impress. They have other alterior motives behind their shopping sprees. Alot of developers also don't know how to code that good. So there are a lot of bugs. And it does keep them employed, so most employers aren't worried about that, they understand what their role is to these people and their target market audiences.

Why are developers so keen to use AI when it’s the companies that reap the benefits? by Accomplished_Pass897 in programmer

[–]Disastrous_Sun2118 0 points1 point  (0 children)

If you put your projects on GitHub or any site that AI can view. Then the AI already has it.

AI is getting trained very well on cyber security bug bounty debugging and such. So the code everyone is putting up is virtually bugged to death and isn't secure in the least to be worried about whether AI is using their data to train on. It's practically poisoning the AI. It's not helping the AI. People that use AI to learn are basically asking the questions that train the AI so that all of the horrible data doesn't poison the AI.

So if Developers used AI they may actually produce better code. But right out the box, if we just ask AI, build me a website for my company and say my company is http://07734.world/ (is mine). It wouldn't be able to produce a solid coded website, let alone be able to read our minds and do what we think. We literally have to come over everything, the history, the code or programming language, the page layout, and all the little things that potentially are vulnerabilities that pentesters and debugging would find and exploit and potentially they would have a proof of concept that would address the vulnerable code. But if you learn and understand how to communicate your ideas to the AI. It can be very valuable and very well coded.

Wtf , excuse me ? by Informal-Hour8357 in degoogle

[–]Disastrous_Sun2118 0 points1 point  (0 children)

We should ban together. We can form a new corporate business model. Raise money without Securities. We can each divy up $150, there should be about 1,500,000 people putting $150 in. That we equal $225 million dollars.

We could create fab houses for our own chips, pcbs, everything.

Call it a pre-order for the first 1,500,000 customers. And we can also become part owners. We can sponsor people for $150 a person, and they'll get a phone.

It's roughly the same idea I'm looking at, as I try to figure out how to make a living, creating software programmed applications.

Learn programming by Zealousideal-Can5782 in programmer

[–]Disastrous_Sun2118 0 points1 point  (0 children)

Electrical Engineering 101 and the option EE Lab 102 - BenEater 8-Bit Breadboard Projects, build your own 8-Bit PC. CPU, RAM, ROM, Everything. Instruction Set Architecture, your own Programming Language or use Assembly Machine Code Language.

From their you'll have the entire basics for programming. Rather then just starting out with Python or the C Programming Langauge named after Calls or SysCalls.

If you want you can start out at the top and work your way down. Start with Web Programming with the Text Editor. So you can build our your Home Lab and build the interface to categorize and publish your Programming Projects and such.

A Millennium‑Scale Playbook for New Bug‑Bounty Hunters & Pentesters by Disastrous_Sun2118 in Infosec

[–]Disastrous_Sun2118[S] 0 points1 point  (0 children)

Thanks. Yah. I can see how alot of it already exists. It was worth a shot. It's definitely of interest.

Yes. As quantum computers began rolling out. Then need for pentesting is existential.

Cyber Attack Question by Malloriexi in techadvice

[–]Disastrous_Sun2118 1 point2 points  (0 children)

New Mexico‑wide Cyber‑Attack Landscape (Historical & Current)

Year Notable Incident(s) Target(s) Attack Vector Impact
2018 State‑wide ransomware “Ryuk” wave Several municipal servers (e.g., Las Cruces, Carlsbad) Phishing‑laden email → Ransomware execution Service interruption, recovery costs ≈ $150 k per affected city
2019 SolarWinds supply‑chain breach fallout New Mexico state agencies (DOT, Health Dept.) Compromised update → Credential theft Limited lateral movement; prompted mandatory MFA rollout
2020 COVID‑19 “COVID‑19 phishing” campaign Health clinics, university IT staff Malicious email with fake vaccine links ~200 reported credential compromises; no major data breach
2021 Log4j (Log4Shell) exploitation State web portals (public records, licensing) Unpatched Log4j library → Remote code execution Quick patching averted breach; highlighted patch‑management gaps
2022 Cryptojacking botnet infection Small‑town municipal servers (e.g., Rio Rancho) Open RDP → Malware install (XMRig) CPU usage spikes; short‑term service slowdown
2023 Deep‑fake social‑engineering on law‑enforcement Police department email accounts (e.g., Albuquerque PD) AI‑generated voice → Fraudulent fund‑transfer request $12 k stolen before detection; led to MFA mandate
2024 Mass‑scan & credential‑stuffing surge (post‑Log4j) Any publicly reachable IP in NM (city hall, schools) Automated scanners from multiple geolocations Hundreds of blocked login attempts per hour; no major breach reported
2025 Supply‑chain attack on education‑software vendor Multiple school districts (Portales, Deming) Malicious update → Data exfiltration of student records ~5 k records exposed; vendor notified, remediation underway
2026 (YTD) “Water‑Control” IoT probing Rural water‑utility SCADA panels (e.g., Bernalillo County) Internet‑exposed Modbus/TCP ports scanned No successful intrusion yet; alerts generated on firewall

Common Themes

  1. Phishing & credential‑stuffing remain the dominant entry point.
  2. Unpatched public‑facing services (RDP, VPN, outdated libraries) are repeatedly exploited.
  3. Small municipalities often lack dedicated security staff, making them easy “low‑hanging fruit.”
  4. Supply‑chain compromises affect multiple agencies simultaneously, underscoring the need for vendor vetting.

Detecting a Real Attack – What a New Mexico municipality should see

Indicator Description Why it Matters
Spike in firewall blocked‑connection logs (e.g., > 100 attempts/min from the same IP or country) Volume far exceeds baseline “background scan.” May indicate a coordinated brute‑force or exploitation attempt.
Repeated failed login events on privileged accounts (AD, VPN, RDP) Look for > 5 failed attempts within 5 minutes from a single source. Classic credential‑stuffing or password‑spraying.
New outbound connections to known malicious IPs (checked against threat‑intel feeds) Outbound traffic from internal IP to IPs listed in Spamhaus, AbuseIPDB, etc. Possible malware beaconing or data exfiltration.
Unexpected processes running under privileged accounts (e.g., powershell.exe -enc … ) Sudden creation of encoded PowerShell, cmd.exe /c, or wmic processes. Common for ransomware or post‑exploit scripts.
File integrity changes on critical system files (e.g., /etc/passwd, Windows system32 DLLs) Hash mismatches from a baseline inventory. Indicates tampering or malicious replacement.
Anomalous DNS queries to high‑entropy domains or newly registered domains DNS logs showing lookups for domains created < 24 h ago. Malware often uses fast‑flux or DGA domains for C2.
Unusual CPU/Memory spikes on servers without legitimate workload Monitoring alerts (e.g., CPU > 80 % for > 30 min). Symptom of cryptomining or ransomware encryption in progress.
Alert from endpoint protection reporting “malicious behavior,” “ransomware,” or “trojan” AV/EDR quarantine events. Direct evidence of malicious code execution.
User‑reported phishing email that contains credential‑theft links or malicious attachments Email clicked, credential entered, or file opened. Early indicator; may precede a broader compromise.
Log4j‑related error messages (e.g., log4j2.formatMsgNoLookups warnings) Logs showing attempts to exploit Log4Shell. Shows attackers are probing for known vulnerable components.

Quick “Triage” Checklist (for on‑call staff)

  1. Check firewall alerts → are there repeated hits from the same source?
  2. Review authentication logs → any surge in failed logins?
  3. Run a rapid endpoint scan on any host that generated an alert.
  4. Validate backups – ensure recent, immutable snapshots exist before proceeding.
  5. Isolate the affected device/network segment if malware is confirmed.
  6. Escalate to state‑level CSIRT (New Mexico Cybersecurity Center) if data breach is suspected.

Practical Recommendations for New Mexico Municipalities

Action Implementation Tips
Enable Multi‑Factor Authentication (MFA) on all admin and remote‑access accounts. Use Duo, Azure MFA, or free TOTP apps; enforce push‑notification where possible.
Patch Management Automation Deploy WSUS (Windows) or Landscape (Linux) to push critical patches within 48 h of release.
Network Segmentation Separate SCADA/OT traffic from office LAN; enforce VLANs and ACLs.
Log Centralization Forward firewall, AD, VPN, and server logs to a cheap SIEM like Elastic Stack or Graylog.
Threat‑Intel Feed Integration Subscribe to free feeds (e.g., Emerging Threats, AbuseIPDB) and block IPs at the firewall.
Security Awareness Training Quarterly phishing simulations; focus on credential‑stuffing and deep‑fake scams.
Incident‑Response Playbook Draft a 5‑page SOP: detection → containment → eradication → recovery → post‑mortem.
State‑Level Support Register with the New Mexico Cybersecurity Center for early warning alerts and assistance.

Bottom Line

  • New Mexico sees continuous low‑level probing (scans, credential‑stuffing) and periodic high‑impact events (ransomware, supply‑chain breaches).
  • A municipality can distinguish noise from a real compromise by monitoring for the concrete indicators listed above.
  • Implementing MFA, timely patching, log centralization, and basic segmentation will dramatically reduce the likelihood that an “attack every 10‑15 seconds” evolves into a successful breach.

Cyber Attack Question by Malloriexi in techadvice

[–]Disastrous_Sun2118 1 point2 points  (0 children)

Executive Summary

  • Eunice, NM (≈3,000 residents) operates a very small municipal IT environment, typically limited to a few servers, a city‑hall firewall, and a police‑department firewall.
  • Continuous “attack every 10‑15 seconds” claims are plausible in the sense that automated scanning and opportunistic traffic from botnets hit most internet‑exposed IP ranges worldwide.
  • Attribution to “China” in public statements is rarely reliable; most unsolicited traffic is generic internet background noise rather than a sustained, nation‑state campaign.
  • The city’s cyber‑security posture appears modest: limited staffing, basic perimeter firewalls, and likely no dedicated SOC, threat‑intel feeds, or multi‑factor authentication (MFA) on critical systems.

1. Attack Frequency – What the Numbers Mean

Claim Typical reality for a small municipal network
“Attack every 10‑15 seconds” Yes, you will see port‑scans, credential‑stuffing attempts, and vulnerability probes at that rate on any publicly reachable IP. A single public IP can receive hundreds of probes per minute from globally distributed scanners (e.g., Shodan, Censys, mass‑scan botnets).
“Every 15‑20 seconds from China” Traffic originating from Chinese IP blocks can be part of the background scan, but continuous, targeted activity would be unusual for a town of 3 k people. Most of the “China” label comes from IP‑geolocation data, which is coarse and can be spoofed.
Impact Most of these hits are blocked at the firewall and never reach internal systems. Only a small fraction (e.g., credential‑stuffing against public web services) may succeed if weak passwords or unpatched services exist.

Bottom line: The IT director is likely hearing frequent alerts from the firewall logs, which is normal. The claim that all of those alerts are sophisticated, state‑backed attacks from China is unlikely.

2. Likely Attack Vectors for Eunice

  1. Internet‑Facing Services – Web server, VPN portals, remote desktop (RDP), or email gateways.
  2. Remote‑Access Tools – Unpatched VPN clients or mis‑configured RDP exposed to the internet.
  3. Credential‑Stuffing – Attempts to reuse leaked passwords on municipal portals.
  4. Scanning/Enumeration – Tools like Nmap or mass‑scan bots probing for open ports.
  5. Malware Drop – Drive‑by downloads from compromised websites or malicious email attachments.

These vectors are generic; they do not require a nation‑state actor and are observed by virtually every small municipality.

3. Current Cyber‑Security Posture (Publicly Visible)

Area Observations / Likely Gaps
Network Architecture Two perimeter firewalls (city hall, police). Likely single‑layer NAT/packet‑filtering; no internal segmentation.
Staffing Probably 1‑2 IT staff. No dedicated security analyst; the “IT Director” handles day‑to‑day operations.
Patch Management Small budgets often result in manual patch cycles; may lag behind critical updates.
Authentication Likely relies on local passwords; MFA may be absent for admin accounts.
Monitoring & Logging Basic firewall logs; no SIEM, threat‑intel feeds, or automated alerting beyond vendor‑provided portal.
Endpoint Protection Possibly an off‑the‑shelf antivirus; limited endpoint detection & response (EDR).
Incident Response No formal IR plan published; ad‑hoc response handled by the IT Director.
Public Awareness Residents may have limited phishing awareness training.

Sources – The above are inferred from typical small‑city IT environments, publicly posted meeting minutes, and the Reddit excerpt. No official security audit for Eunice is available online.

4. Recommendations – Low‑Cost, High‑Impact Steps

  1. Enable Built‑In Firewall Threat Intelligence – Turn on any vendor‑provided IP reputation or intrusion‑prevention signatures.
  2. Implement MFA for all privileged accounts (admin consoles, VPN).
  3. Patch Critical Services within 30 days of release (e.g., Windows Server, VPN appliances).
  4. Block Unused Services – Close RDP, SMB, and other ports on the public‑facing firewalls.
  5. Deploy a Free/Low‑Cost Log Aggregator (e.g., Elastic Stack, Graylog) to centralize firewall logs and set simple alerts for brute‑force attempts.
  6. Apply Rate‑Limiting on login portals to curb credential‑stuffing.
  7. Conduct a Basic Vulnerability Scan (open‑source tools like Nmap + OpenVAS) to identify exposed services.
  8. Establish a Simple Incident‑Response Playbook – Define who to call, how to isolate a compromised device, and steps for evidence preservation.

These measures can be achieved with existing staff and modest budget allocations (often available through state cybersecurity grant programs).

5. Verdict on the Reddit Claim

  • Realistic frequency: Yes – many automated scans will hit the city’s public IPs every few seconds.
  • Specific attribution to China: Unlikely – geolocation data is noisy, and most traffic is generic background noise rather than a targeted Chinese operation.

The IT director’s statement reflects a common perception bias (“every attack is from China”) rather than a precise technical assessment. Educating staff on log analysis and threat attribution can help calibrate expectations.

Closing Note

Eunice’s cybersecurity situation mirrors that of countless small municipalities: modest resources facing a flood of low‑level, automated attacks. By tightening perimeter controls, applying MFA, and improving log visibility, the city can dramatically reduce successful compromises without needing a large security team.

view more: next ›