@thedarktangent@defcon.social

Founder of DEF CON & Black Hat. Maintainer of infocon.org. Member of the UK Gov Cybersecurity Advisory Board & The Council on Foreign Relations. Working to get Hackers and Researchers a seat at the Policy table. I'm interested in hacking, community, technology, privacy, security policy, and the intersection of civil society. (He/Him) Opinions are my own. Previously member ONCD (2024-2025), CISA Cyber Security Advisory Council (2021-2025), and DHS Advisory Council (2009-2020)

defcon.social

Jeff Moss

Founder of DEF CON & Black Hat. Maintainer of infocon.org. Member of the UK Gov Cybersecurity Advisory Board & The Council on Foreign Relations. Working to get Hackers and Researchers a seat at the Policy table. I'm interested in hacking, community, technology, privacy, security policy, and the intersection of civil society. (He/Him) Opinions are my own. Previously member ONCD (2024-2025), CISA Cyber Security Advisory Council (2021-2025), and DHS Advisory Council (2009-2020)

defcon.social

@thedarktangent@defcon.social · Mar 02, 2026

RIP FX - You are a legend.

Here Dino is delivering his Pwnie Award, as well as the last public post FX made last year.

View on defcon.social

103

0

131

0

Jeff Moss

@thedarktangent@defcon.social

Founder of DEF CON & Black Hat. Maintainer of infocon.org. Member of the UK Gov Cybersecurity Advisory Board & The Council on Foreign Relations. Working to get Hackers and Researchers a seat at the Policy table. I'm interested in hacking, community, technology, privacy, security policy, and the intersection of civil society. (He/Him) Opinions are my own. Previously member ONCD (2024-2025), CISA Cyber Security Advisory Council (2021-2025), and DHS Advisory Council (2009-2020)

defcon.social

Jeff Moss

@thedarktangent@defcon.social

Founder of DEF CON & Black Hat. Maintainer of infocon.org. Member of the UK Gov Cybersecurity Advisory Board & The Council on Foreign Relations. Working to get Hackers and Researchers a seat at the Policy table. I'm interested in hacking, community, technology, privacy, security policy, and the intersection of civil society. (He/Him) Opinions are my own. Previously member ONCD (2024-2025), CISA Cyber Security Advisory Council (2021-2025), and DHS Advisory Council (2009-2020)

defcon.social

@thedarktangent@defcon.social · Feb 05, 2026

Looks like someone built a tool to check your LinkedIn network for names from the Epstein documents. Soon I expect other tools will follow to work with other social media platforms. This is what the beginning of community accountability looks like. Just because the legal system is captured doesn’t mean there are zero consequences. https://github.com/cfinke/EpsteIn Yes, I know I am mentioned in the files, but I can’t control when other people mention me. #epstein

View on defcon.social

10

0

11

0

Jeff Moss

@thedarktangent@defcon.social

Founder of DEF CON & Black Hat. Maintainer of infocon.org. Member of the UK Gov Cybersecurity Advisory Board & The Council on Foreign Relations. Working to get Hackers and Researchers a seat at the Policy table. I'm interested in hacking, community, technology, privacy, security policy, and the intersection of civil society. (He/Him) Opinions are my own. Previously member ONCD (2024-2025), CISA Cyber Security Advisory Council (2021-2025), and DHS Advisory Council (2009-2020)

defcon.social

Jeff Moss

@thedarktangent@defcon.social

Founder of DEF CON & Black Hat. Maintainer of infocon.org. Member of the UK Gov Cybersecurity Advisory Board & The Council on Foreign Relations. Working to get Hackers and Researchers a seat at the Policy table. I'm interested in hacking, community, technology, privacy, security policy, and the intersection of civil society. (He/Him) Opinions are my own. Previously member ONCD (2024-2025), CISA Cyber Security Advisory Council (2021-2025), and DHS Advisory Council (2009-2020)

defcon.social

@thedarktangent@defcon.social · Jan 28, 2026

RE: https://infosec.exchange/@SecurityWriter/115969540425890734 To build on what was said below, your whole online existence is essentially three things combined: 1 - Your email account or mail server where you can get password resets. 2 - DNS that protects the mail server from being impersonated. 3 - Your domain WWW server that can publish records that your domain registrar or certificate authority trusts when issuing certificates. If you lose control of your email account or mail server, people can password reset their way into all of your account unless you have some strong second factor as a security key. If you have a secondary email recovery account that would be vulnerable. It could possibly be used to bypass your second factor. If you lose control of your DNS server or your registrar account, then people can impersonate your services such as your web server or mail server for account recovery. A DNS attack could completely remove your existing servers and point traffic to malicious ones as well. Finally if you lose control of you web server then it could be used to publish .well-known files used for identity verification with certificate authorities, spread malicious files, your imagination is the limit. As you can see DNS and email are critical. Today everybody outsources their DNS and email. Choose how you manage these as if your identity, finances, and company depend on them. Basically no one controls their own identities. By running your own email or DNS servers the third-party doctrine would not apply to you, and you would get notice that something was going on with law enforcement.

View on defcon.social

60

0

71

0

Jeff Moss

Posts

Media