So I got told I have a Kubernetes “server” running around in my Cloud. By a source that I would assume is pretty accurate (the gov).
Now I get to figure out who put that there. And when. And if it’s ever had a patch.
Fuck.
=> More informations about this toot | More toots from miri@infosec.exchange
@miri i have spent a significant amount of time dealing with those
=> More informations about this toot | More toots from Viss@mastodon.social
@Viss I was so happy that I didn’t have to deal with Cloud again. No more EC2, no more AWS. I had one little VM puttering along.
But no. That’s not the case it seems.
=> More informations about this toot | More toots from miri@infosec.exchange
@miri shadow IT?
=> More informations about this toot | More toots from Viss@mastodon.social
@Viss It’s the fucking website host. So now I have to send them an email that they have Ubuntu vulns from 2016.
=> More informations about this toot | More toots from miri@infosec.exchange
@miri [screaming ensues]
=> More informations about this toot | More toots from Viss@mastodon.social
@Viss Don’t even get me started on the …like 40 line items of Forti issues.
I’m about to go rip that shit out in 2 weeks before I go insane.
=> More informations about this toot | More toots from miri@infosec.exchange
@miri i hope they line you up a massive bonus :D
=> More informations about this toot | More toots from Viss@mastodon.social
@Viss My boss mentioned selling my services as a consultant/assessor in a couple of months. I asked her what my cut of the fees would be, since apparently it pays about $250/hr if I was doing it on my own.
She sorta blinked at me.
I’m not fucking working for free when it’s not in my JD.
=> More informations about this toot | More toots from miri@infosec.exchange
@miri ive been in that sorta position exactly once. it was when i was a kid, in .. 1999? maybe 2000? it was a prelude to them getting rid of me. first they 'hired me out as a consultant' to some place, then when that ended they were lke "uhhhh welp we just dont have any more work for ya!"
=> More informations about this toot | More toots from Viss@mastodon.social
@Viss I was hired to give them an edge for contracts. They had no one with security expertise and it was showing up in contracts. My job didn’t exist a month before I started. My dad called the CEO and told her I was available to talk (they had tried to hire me a decade before). She and I talked twice, for about an hour total. I had an offer 2 days later. They had to create the position.
She’s now realizing that the CMMC push by the DoD might be a good way to make more money. I’m currently undergoing training for the 2 exams and should be certified before I go on vacation in April. When I get back shit is scheduled to hit the fan. She sees it as a chance to capitalize on it. While I am also carrying them through their own audit prep.
While also doing Tier 1 helpdesk support. Which was what I was doing this afternoon while reading resumes and avoiding my exploding inbox.
Right now, if they tried to get rid of me, they are shooting themselves in the foot. My father made the company millions and I’ve got the skills to be the next piece of that puzzle. But right now I don’t have the time and sanity. I’ll consult after hours for my own money. Maybe in the future when I’m not scrambling through a day I’ll consider it.
But I’m not going to be the only executive working on contracts as a resource and not getting anything extra for it while running their entire tech team and working proposals.
Rant over :)
=> More informations about this toot | More toots from miri@infosec.exchange
@miri sounds like its a fantastic time to:
:D :D
=> More informations about this toot | More toots from Viss@mastodon.social
@Viss So I have my base salary and then get an annual bonus based on the business I bring in. If I get them a contract win, I get cash. My bonus was nice last year for not bringing anything in and my salary got bumped. I’m almost back to making what I was at Epic as a manager 😂 I’m currently working on a big proposal for them. I’m going to have to work through my holiday weekend to finish reading and doing edits.
Headcount got approved yesterday during the executive planning session. I’m dropping some folks to bring in more qualified people for the stuff that is coming. That should drop some of my load if I’m not having to micromanage. Any contract wins in my area I’m hiring PMs to manage them.
I sent out a bunch of inquiries today for stuff that I need to hit the ground running with.
I also got told I have a fairly unlimited budget to get us caught up.
=> More informations about this toot | More toots from miri@infosec.exchange
@miri thats excellent news! :D
=> More informations about this toot | More toots from Viss@mastodon.social
@Viss After my 20 slides in the deck and the absolutely crazy look in my eyes, I think they got it 😂
=> More informations about this toot | More toots from miri@infosec.exchange
@miri did all the slides have explosions on them? hah
=> More informations about this toot | More toots from Viss@mastodon.social
@Viss Last round involved the Jurrasic Park baby raptors and something else. The next deck will have dumpster fire floating down the street.
I changed my work email profile pic to the [screaming intensifies] pic. My Admin account is a dumpster fire pic. I will wear my dumpster fire socks to my next exec meeting, lol.
Or maybe I’ll wear them to my speaking engagement on CMMC in a couple of weeks! 😂
=> More informations about this toot | More toots from miri@infosec.exchange
@miri hah! you totally should! i would!
=> More informations about this toot | More toots from Viss@mastodon.social
@Viss I have located said socks and will be wearing them!
=> More informations about this toot | More toots from miri@infosec.exchange
@miri this is fantastic :D
=> More informations about this toot | More toots from Viss@mastodon.social
@miri @Viss not sure exactly what you’re hiring for but I’m still on the market 👀.
=> More informations about this toot | More toots from winterknight1337@infosec.exchange
@winterknight1337 @Viss An IT Sysadmin (really no security focus) who doesn’t require micromanagement and who can actually STIG an OS and create a golden image.
And who can handle wrangling vendors for installs.
=> More informations about this toot | More toots from miri@infosec.exchange
@miri @Viss fair enough. Not my cup of tea specifically but thank you for letting me know!
=> More informations about this toot | More toots from winterknight1337@infosec.exchange
@miri @Viss What a terrible pile of choices. That said, if you need a PKI/cert SME, I'm thinking about being available for reasonable* rates.
=> More informations about this toot | More toots from drsbaitso@infosec.exchange
@drsbaitso @Viss I’ll keep you in mind! I have to figure out the current cert debacle next week…
=> More informations about this toot | More toots from miri@infosec.exchange
@miri @Viss I've almost finished the three-year plan to undebacle $currentJob's cert situation, so definitely ready for some new knots to untie. And ping me if you want some a quick convo.
=> More informations about this toot | More toots from drsbaitso@infosec.exchange
@drsbaitso @Viss I feel like I’m sprinting a marathon this year. I have to do 4 certs (3 audits related, 1 to renew my CSM/CSPO) and rebuild an entire network to pass a required government certification.
If I come out alive and sane, I’ll consider it a win.
=> More informations about this toot | More toots from miri@infosec.exchange
@miri @drsbaitso beastmode!
=> More informations about this toot | More toots from Viss@mastodon.social
@miri the gov'na? 😁
=> More informations about this toot | More toots from ZombieGopher@gamepad.club
@miri
"Now I get to figure out who put that there. And when. And if it’s ever had a patch."
Did they have permission and go through change control?
A year, just to guess.
HAHA, you're kidding right?
I'm going to go out on a limb and say No, it's a secret, what's patching?
=> More informations about this toot | More toots from Fringedcrow@infosec.exchange
@Fringedcrow What’s Change Control?
I’m back to drinking…it’s going to be a hell of a year.
=> More informations about this toot | More toots from miri@infosec.exchange
@miri
=> More informations about this toot | More toots from Fringedcrow@infosec.exchange
@miri
Don't you hate those unpatched GG servers?
Best to TCPDUMP it first before and after upgrade, imo. 👍📌
👀
🔬
🧐🔎☣️🔍
/|\
|
Kubernettes.GammaGroup.Nyet.gov
Luckily, someone, nameless.corp, opensourced pcap in the 1990's 😅
=> More informations about this toot | More toots from infosec_jcp@infosec.exchange
@miri kubernetes server singular?? that's odd, and I'd suspect inaccurate, but not impossible, i guess. Seems unlikely, unless it's like minikube or k3s or something.. still tho.. odd it'd only be one box/vm
=> More informations about this toot | More toots from mousey@seattlematrix.org
@mousey I’m not sure how the whole thing is architected. It’s actually our website, and I don’t actually deal with that. I now need to reach out to those responsible to fix that mess.
=> More informations about this toot | More toots from miri@infosec.exchange This content has been proxied by September (3851b).Proxy Information
text/gemini