Cyber Scarecrow

(www.cyberscarecrow.com)

606 points toby_tw | 2 comments | 18 Jun 24 08:08 UTC | HN request time: 0.435s | source

Show context

scosman ◴[18 Jun 24 08:25 UTC] No.40715334[source]▶

Fun concept.

If the creators read this, I suggest some ways of building trust. There’s no “about us”, no GitHub link, etc. It’s a random webpage that wants my personal details, and sends me a “exe”. The overlap of people who understand what this tool does, and people who would run that “exe” is pretty small.

replies(7): >>40715364 #>>40715425 #>>40715446 #>>40715473 #>>40716059 #>>40716538 #>>40723731 #

vmfunction ◴[18 Jun 24 08:32 UTC] No.40715364[source]▶

>>40715334 #

It is a cat and mouse game. And security by obscurity practice. Not saying it won't work, but if it is open sourced, how long before the malware will catch on?

Here is one on github:

https://github.com/NavyTitanium/Fake-Sandbox-Artifacts

replies(7): >>40715392 #>>40715530 #>>40715603 #>>40715668 #>>40716144 #>>40716690 #>>40716934 #

1. linsomniac ◴[18 Jun 24 12:20 UTC] No.40716934[source]▶

>>40715364 #

It's not a cat an mouse game; it's a diver and shark game. In SCUBA training we joked that you had the "buddy system" where you always dive in pairs, because that way if you encounter a shark you don't have to outswim the shark, you only have to outswim your buddy.

A low-effort activity that makes you not be the low-hanging fruit can often be worth it. For example, back in the '90s I moved my SSH port from 22 to ... not telling you! It's pretty easy to scan for SSH servers on alternate ports, but basically none of the worms do that.

replies(1): >>40724333 #

2. Tao3300 ◴[19 Jun 24 03:01 UTC] No.40724333[source]▶

>>40716934 (TP) #

What I've heard is: If you're running from a bear, you only have to be faster than the other guy.

↑