Allison Nixon's Avatar

Allison Nixon

@nixonnixoff.bsky.social

Chief Research Officer @ Unit 221B most reliable way to reach me is my company's outreach form on the website my other urls: https://infosec.exchange/@nixonnixoff https://www.linkedin.com/in/allison-nixon-81822124/ don't bother contacting me on twitter

6,232 Followers  |  1,068 Following  |  158 Posts  |  Joined: 24.09.2023  |  2.1831

Latest posts by nixonnixoff.bsky.social on Bluesky

Video thumbnail

Extremely important pupdate from the NYC dog costume competition.

27.10.2025 20:33 β€” πŸ‘ 825    πŸ” 234    πŸ’¬ 8    πŸ“Œ 18

Also this breach happened before the layoffs and when *everything was fully staffed*. Can you imagine whats happening now.

11.10.2025 04:27 β€” πŸ‘ 28    πŸ” 7    πŸ’¬ 0    πŸ“Œ 0
k. Approximately 18 megabytes of data, including a file containing an export of thousands of names, titles, and work locations of U.S. Courts users that was dated January 12, 2025, were recovered from Server-2. A representative of the U.S. Courts stated, in substance and in part, that one of the compromised accounts had exported a file on January 12, 2025, of U.S. Courts account users. l. A representative of the U.S. Courts stated, in substance and in part, that three users had their accounts reset using multifactor authentication software. That same software was located on Server-2. Further, the evidence of the unique identifiers for each compromised account was also recovered from Server-2.

k. Approximately 18 megabytes of data, including a file containing an export of thousands of names, titles, and work locations of U.S. Courts users that was dated January 12, 2025, were recovered from Server-2. A representative of the U.S. Courts stated, in substance and in part, that one of the compromised accounts had exported a file on January 12, 2025, of U.S. Courts account users. l. A representative of the U.S. Courts stated, in substance and in part, that three users had their accounts reset using multifactor authentication software. That same software was located on Server-2. Further, the evidence of the unique identifiers for each compromised account was also recovered from Server-2.

Violent gangs of children are also hacking PACER to find out if their friends snitched. It is a free for all.

www.justice.gov/usao-nj/medi...

11.10.2025 03:49 β€” πŸ‘ 26    πŸ” 9    πŸ’¬ 2    πŸ“Œ 0

It makes me happy :)

24.09.2025 20:12 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0

unironically yes. every single time.

20.08.2025 00:32 β€” πŸ‘ 5    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
brian krebs on signal chat having way too much fun with this

brian krebs on signal chat having way too much fun with this

ddosing him only makes him stronger

20.08.2025 00:27 β€” πŸ‘ 13    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

These kinds of articles need to involve the sobering realities of arrested hackers post-pandemic. The article opens with the 4 arrested, but doesn't mention one was publicly ID'ed as a member of 764. Hiring is a non starter. Your quote is on the money. Pre-offense MUST be the focus.

19.08.2025 23:34 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
What is more dangerous to involve in a DDOS attack? Five webcams in Alaska 36.4% Krebsonsecurity.com 63.6% 11 votes Β· 6 days left

What is more dangerous to involve in a DDOS attack? Five webcams in Alaska 36.4% Krebsonsecurity.com 63.6% 11 votes Β· 6 days left

I crosspost between Twitter and Bluesky, but sadly Bluesky does not have poll functionality. So I will post a screenshot of a poll I am running over there. Don't bother visiting to vote, because it was a trick question anyways

19.08.2025 21:23 β€” πŸ‘ 15    πŸ” 1    πŸ’¬ 3    πŸ“Œ 0
Oregon Man Charged in β€˜Rapper Bot’ DDoS Service A 22-year-old Oregon man has been arrested on suspicion of operating "Rapper Bot," a massive botnet used to power a service for launching distributed denial-of-service (DDoS) attacks against targets -...

Obligatory Krebs article

krebsonsecurity.com/2025/08/oreg...

19.08.2025 21:04 β€” πŸ‘ 17    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Preview
Oregon man charged with administering β€œRapper Bot” DDoS-for-hire Botnet ANCHORAGE, Alaska – An Oregon man was charged by a federal criminal complaint today in the District of Alaska on charges related to his alleged development and administration of the β€œRapper Bot” DDoS-...

DOJ shoutout for our company in this case too

www.justice.gov/usao-ak/pr/o...

19.08.2025 21:03 β€” πŸ‘ 15    πŸ” 1    πŸ’¬ 1    πŸ“Œ 1
36. Several days later, FOLTZ and Slaykings returned to discussing the fallout that they expected to befall their rival group, with Slaykings stating β€œKrebs is very revenge. He won’t stop until they are [expletive] to the bone.” FOLTZ responded, β€œSurprised they have any bots left.” Slaykings then expounded (corrected for grammar and spelling) β€œKrebs is not the one you want to have on your back. Not because he is scary or something, just because he will not give up UNTIL you are [expletive] [expletive]. Proved it with Mirai and many other cases.”

36. Several days later, FOLTZ and Slaykings returned to discussing the fallout that they expected to befall their rival group, with Slaykings stating β€œKrebs is very revenge. He won’t stop until they are [expletive] to the bone.” FOLTZ responded, β€œSurprised they have any bots left.” Slaykings then expounded (corrected for grammar and spelling) β€œKrebs is not the one you want to have on your back. Not because he is scary or something, just because he will not give up UNTIL you are [expletive] [expletive]. Proved it with Mirai and many other cases.”

a meme i made from the krebsonsecurity website banner using the words from the indictment. "[redacted] hit krebs" , β€œGoing against Krebs isn’t a good move.” , β€œKrebs is very revenge.” , β€œhe will not give up UNTIL you are [expletive] [expletive]”

a meme i made from the krebsonsecurity website banner using the words from the indictment. "[redacted] hit krebs" , β€œGoing against Krebs isn’t a good move.” , β€œKrebs is very revenge.” , β€œhe will not give up UNTIL you are [expletive] [expletive]”

The most entertaining federal criminal charges I have ever read

www.courtlistener.com/docket/71145...

19.08.2025 21:03 β€” πŸ‘ 81    πŸ” 22    πŸ’¬ 5    πŸ“Œ 1
BsidesLV 2025 - Breaking Ground - Monday
YouTube video by BSidesLV BsidesLV 2025 - Breaking Ground - Monday

My BSidesLV keynote is here. It touches on several difficult topics in our industry. Topics best discussed in person. As our industry spends this week in Vegas, please share this talk with your peers and discuss in person.

www.youtube.com/watch?v=4CD9...

05.08.2025 17:47 β€” πŸ‘ 21    πŸ” 5    πŸ’¬ 0    πŸ“Œ 2
BsidesLV 2025 - Breaking Ground - Monday
YouTube video by BSidesLV BsidesLV 2025 - Breaking Ground - Monday

bsides LV keynote. i found the live stream that has my talk. go here and go to negative 5 hours 37 minutes (will be a different time value as time goes on...)
www.youtube.com/watch?v=4CD9...

05.08.2025 00:09 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0

whacked an immovable object with an irresistible force today just to see what would happen

04.08.2025 23:57 β€” πŸ‘ 13    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0

Today I learned that the feds made a tierlist of prison sentences and that kiberphant0m is D-tier

www.ussc.gov/sites/defaul...

03.08.2025 02:27 β€” πŸ‘ 7    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Crazy that governments impose website age restrictions on their citizens before they provide Internet compatible government ID for their citizens, and everyone's stuck providing selfies that get hacked and recycled for fraud.

30.07.2025 22:24 β€” πŸ‘ 38    πŸ” 9    πŸ’¬ 3    πŸ“Œ 1
Reasonable man shields himself from the unbearable rays of the Sun

Reasonable man shields himself from the unbearable rays of the Sun

26.07.2025 03:13 β€” πŸ‘ 25    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0

bsky.app/profile/nixo...

16.07.2025 03:20 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Former Army soldier pleads guilty to widespread attack spree linked to AT&T, Snowflake and others Cameron Wagenius faces a maximum of 27 years in prison. A researcher that helped with the investigation called this β€˜one of the most significant wins in the fight against cybercrime.'

Bonus: this article is great. Anonymity isn't real. Deal with it.

cyberscoop.com/cameron-wage...

16.07.2025 00:33 β€” πŸ‘ 11    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Preview
Former U.S. Soldier Pleads Guilty to Hacking and Extortion Scheme Involving Telecommunications Companies A former Army soldier, who was most recently stationed in Texas, pleaded guilty today to conspiring to hack into telecommunications companies’ databases,Β access sensitive records, and extort the telec...

Unit 221B thanked by DOJ in 1st guilty plea of the Snowflake hacker gang. Last year they threatened me for no reason, so we broke their opsec. The Army member, "Cameron Wagenius", leaked Trump call logs from AT&T and faces 27 years. He was easy to find.

www.justice.gov/opa/pr/forme...

16.07.2025 00:33 β€” πŸ‘ 25    πŸ” 3    πŸ’¬ 3    πŸ“Œ 1

Just put them in jail

04.07.2025 17:00 β€” πŸ‘ 9    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
A screenshot from the Bureau of Prisons showing a new inmate. AKA "waifu", who incessantly threatened cybercrime researchers including myself until we made him stop.

A screenshot from the Bureau of Prisons showing a new inmate. AKA "waifu", who incessantly threatened cybercrime researchers including myself until we made him stop.

Welcome to the USA. Enjoy your stay.

04.07.2025 16:08 β€” πŸ‘ 10    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0
i'm Google searching something very important and when I switch between looking at images of that very important thing, and then switch back to all search results, I accidentally click AI mode and give Google the false impression that I ever want to see that shit.

i'm Google searching something very important and when I switch between looking at images of that very important thing, and then switch back to all search results, I accidentally click AI mode and give Google the false impression that I ever want to see that shit.

They put the "AI Mode" button in that exact spot in the hopes you accidentally click it and inflate some executive's usage report.

21.06.2025 23:17 β€” πŸ‘ 40    πŸ” 5    πŸ’¬ 3    πŸ“Œ 1
Preview
Internet infamy drives The Com's crime sprees Unit 221B’s Allison Nixon said crackdowns have effectively shown the group that their actions carry real consequences.

Recent press highlights from SLEUTHCON:

Covering Allison Nixon's talk on "The Com":
cyberscoop.com/the-com-subc...

Highlights from Thibault Seret's talk:
www.wired.com/story/cyberc...

#Cybercrime #Cybercriminals #cybersecurity #SLEUTHCON

11.06.2025 14:49 β€” πŸ‘ 7    πŸ” 1    πŸ’¬ 0    πŸ“Œ 1

dont take away my fun

11.06.2025 07:12 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Internet infamy drives The Com's crime sprees Unit 221B’s Allison Nixon said crackdowns have effectively shown the group that their actions carry real consequences.

The Com’s chaotic, sprawling network, composed of mostly teenagers and young adults, are committing their crimes primarily for notoriety amongst their peers on the internet,
@nixonnixoff.bsky.social said during a presentation @sleuthcon.bsky.social. cyberscoop.com/the-com-subc...

09.06.2025 15:24 β€” πŸ‘ 8    πŸ” 10    πŸ’¬ 1    πŸ“Œ 0
Russian strategic aviation acting kind of concerned after a ukranian visit

Russian strategic aviation acting kind of concerned after a ukranian visit

"Dude are you ok?"
"I don't think he is..."

04.06.2025 22:54 β€” πŸ‘ 26    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

Maxar collected images of Russian aircraft feeling nervous

04.06.2025 22:17 β€” πŸ‘ 13    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
04.06.2025 11:17 β€” πŸ‘ 9    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

I think i will be able to!

08.05.2025 21:08 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@nixonnixoff is following 20 prominent accounts