@thezedwards.bsky.social
data supply auditor | privacy & ad tech expert | internet threats Personal @ victorymedium.com Sr Threat Analyst @ SilentPush.com
just use TOR Browser if looking for that level of obfuscation imo ๐
04.12.2025 17:29 โ ๐ 1 ๐ 0 ๐ฌ 0 ๐ 0This is a really interesting development and if FF is able to grow market share with this feature, it could encourage other browsers to try and find a way to make theirs free too.
All that being said, FF really struggles with *making money* so it does still worry me when they start handing $$ out.
Brave browser also doesn't have a free VPN, in-fact I don't know of any credible* browsers with free VPNs built in currently. Even Apple's iCloud Private Relay costs money.
*Opera Browser has a free VPN but the browser is owned by a Chinese consortium and I wouldn't trust it at all.
The new *free* FireFox VPN which has been tested for months (windowsreport.com/firefox-is-t...) is likely on the horizon for a wider release based on recent comments that a VP / head of Product at Firefox made on Linkedin.
Google couldn't even get a free VPN + abandoned their $$ "Google One VPN"
SS7 is gonna remain a dumpster fire security threat and China will continue to exploit it if we canโt even have simple cybersecurity requirements for the telecom industry.
20.11.2025 16:42 โ ๐ 3 ๐ 5 ๐ฌ 0 ๐ 0
GMAIL screenshot with the email subject line "Re: Issue 159469672: other in ~59 Chrome extensions in orchestration file, associated with malware group" with the detail Changed status: In Progress (Accepted) โ Fixed
a 5+ year old bug ticket was finally closed by Google - this was actually the last significant investigation into Chrome extensions that I did because the feedback loop was so challenging
definitely still a place with research opportunities and threat actors regularly doing weird stuff! ๐
Everything about this piece from Reuters about the scam ads on Facebook is wild -- internal Meta estimates noted they were showing these scams 15 billion times per day, scammers are not banned just forced to pay more for ads, teams internally restricted, must read: www.reuters.com/investigatio...
06.11.2025 20:41 โ ๐ 5 ๐ 1 ๐ฌ 1 ๐ 1
Large crowd of people at the No Kings rally in Houston, includes signs and flags and a blue and red and white umbrella and several inflatable frogs
fun to see my mom in this crowd shot from the No Kings rally in Houston featured by the Houston Chronicle @ www.houstonchronicle.com/projects/202...
19.10.2025 04:40 โ ๐ 14 ๐ 1 ๐ฌ 0 ๐ 0Has anyone ever successfully received data from a personal Yandex data access request? Essentially receiving what data they collect on you as required under a bunch of privacy laws?
19.09.2025 03:59 โ ๐ 2 ๐ 0 ๐ฌ 0 ๐ 0appreciate the link!
09.09.2025 04:59 โ ๐ 1 ๐ 0 ๐ฌ 0 ๐ 0fwiw it was formerly owned by Elizabeth Wurtzel
09.09.2025 04:29 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0It's possible but really no clue - got it at an estate sale from another author
09.09.2025 04:26 โ ๐ 0 ๐ 0 ๐ฌ 2 ๐ 0
Picture of a light blue book cover with a drawing of Abraham Lincoln and the text โAbraham Lincoln A Play By John Drinkwaterโ
A book page with a large black box glued to it with a white border in the box - the text says โExLibris Alden Nashโ and there is a strange symbol in the middle which appears to be the personal emblem of this Nash individual. The symbol has a double cross on top of a circle with a N in part of the circle. The circle is split by a horizontal line and part of the vertical line of the cross above.
Iโve got this 100+ year old copy of an old play about Abraham Lincolnโs life which was owned by someone named Alden Nash who had an interesting personal emblem that he screen printed & glued onto the cover page.
The play was shown at the Birmingham Repertory Theatre then the Hammersmith Playhouse.๐
cheers thanks very much!! ๐
06.08.2025 20:37 โ ๐ 3 ๐ 0 ๐ฌ 0 ๐ 0
Mind map of SocGholish (Operated by TA56) infection chains. The details are complex but explained in more detail on our blog post.
Our team @silentpush just dropped a definitive look at SocGholish (operated by TA569) and the initial access broker ecosystem they are facilitating. Big thanks to past researchers who have worked on SocGholish! We've got details about our visibility @ www.silentpush.com/blog/socghol... ๐๐ป
06.08.2025 19:49 โ ๐ 11 ๐ 5 ๐ฌ 0 ๐ 1Congrats! Very well deserved. ๐๐ป
22.07.2025 00:41 โ ๐ 3 ๐ 0 ๐ฌ 0 ๐ 0Our team looks forward to providing updates on the FUNNULL CDN and the owner over the coming weeks and months. This network isnโt done and much stronger efforts need to be taken in the U.S. by a wide range of companies to deal w/ this ongoing persistent threat out of China. ๐
03.07.2025 16:56 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0Iโve got my own personal non-lawyer opinions (seems quite risky to host accounts for the owner of the largest CDN hosting scams targeting Americans), but I gotta assume that this is complex and there is currently a grey area that the U.S. Treasury needs to clarify.
03.07.2025 16:56 โ ๐ 1 ๐ 0 ๐ฌ 1 ๐ 0It seems clear that serious enterprise lawyers from major tech companies may not agree on what U.S. Treasury sanctions require them to do when an individual is sanctioned who has accounts on their service.
03.07.2025 16:56 โ ๐ 0 ๐ 1 ๐ฌ 1 ๐ 0Our research confirmed Lizhi still has active accounts on services including:
Twitter
GitHub
LinkedIn
Facebook
Google Code / Google Groups
Medium
PayPal
WordPress
HuggingFace
Gravatar / WordPress
Vercel
Deviant Art / Wix
Flickr / SmugMug
About Me / Vendasta
Tawk[.]to
Krebs put it nicely in his piece, โHowever, as Mr. Lizhiโs case makes clear, just because someone is sanctioned doesnโt necessarily mean big tech companies are going to suspend their online accounts.โ
03.07.2025 16:56 โ ๐ 0 ๐ 0 ๐ฌ 1 ๐ 0Do U.S. Treasury sanctions really have no teeth to require companies to ban accounts?
In this publishing process, we learned that different enterprise companies currently have different interpretations of what U.S. Treasury Sanctions / SDN processes require.
FUNNULL hosted websites have caused over $200 million in losses to U.S. victims, with an average loss of $150,000 per individual.
And yet the FUNNULL admin, who was also directly sanctioned, still has dozens of accounts on various Western enterprise services. So what gives?
FUNNULL CDN and the admin Liu Lizhi (aka Steve / Steven Lizihi) were both sanctioned by the U.S. Treasury in May 2025 โ and in the announcement it was noted that โFunnull is linked to the majority of virtual currency investment scam websites reported to the FBI.โ
03.07.2025 16:56 โ ๐ 0 ๐ 0 ๐ฌ 1 ๐ 0
Read @briankrebs.infosec.exchange.ap.brid.gy report @ "Big Techโs Mixed Response to U.S. Treasury Sanctions" @ krebsonsecurity.com/2025/07/big-...
03.07.2025 16:56 โ ๐ 0 ๐ 0 ๐ฌ 1 ๐ 0We found tons of interesting details including some anti-American and anti-Japanese statements on his personal blog.
Brian Krebs was also able to cover the research and helped to engage the enterprise organizations who are still hosting his accounts.
Our SP piece can be viewed @ "Numerous Western Companies May Still Need to Ban FUNNULL Admin Accounts to Comply with U.S. Treasury Sanctions" @ www.silentpush.com/blog/funnull...
03.07.2025 16:56 โ ๐ 0 ๐ 1 ๐ฌ 1 ๐ 0If Iโve been quiet you know Iโm cooking up some fire research!
Our team at @silentpush.bsky.social is out today with a big report about the admin / owner of the FUNNULL CDN โ essentially a dox of all his accounts and activities on the internet for the last 15+ years.
"Funnull had direct exposure to Huione Pay, for which the U.S. Department of the Treasuryโs Financial Crimes Enforcement Network (FinCEN) recently issued a finding and notice of proposed rulemaking (NPRM) identifying it as a primary money laundering concern" ๐
29.05.2025 19:02 โ ๐ 2 ๐ 0 ๐ฌ 0 ๐ 0More on Funnull in this Silent Push report from January: www.silentpush.com/blog/infrast...
These are also Funnull IPs and domains: bsky.app/profile/camp...
