Ronnie Tokazowski
@iHeartMalware
Followers
6,333
Following
2,151
Media
5,160
Statuses
22,153
Husband | Dad | Christian Hacker | Accidental Youtuber | Advocate Help a stranger for no reason. Dystopia with a smile. 🙃
Psalm 23:4
Joined May 2012
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
Michigan
• 306495 Tweets
Texas
• 254937 Tweets
Never Trump
• 148974 Tweets
Tennessee
• 136809 Tweets
Arnold Palmer
• 101848 Tweets
Usher
• 79319 Tweets
Inter Miami
• 67889 Tweets
Romero
• 55021 Tweets
Gago
• 47590 Tweets
Rojo
• 39533 Tweets
Bama
• 37424 Tweets
Hulk
• 37247 Tweets
Stanton
• 32708 Tweets
Arch
• 31410 Tweets
KARIME EN PALAZZO
• 27160 Tweets
Tigre
• 27093 Tweets
Kentucky
• 23736 Tweets
Milroe
• 22273 Tweets
Beck
• 21782 Tweets
GALA EN EL AUDITORIO
• 19517 Tweets
GALA X PATY CANTÚ
• 19452 Tweets
Riquelme
• 18056 Tweets
Iowa
• 17797 Tweets
Kirby
• 16874 Tweets
Ewers
• 15644 Tweets
設営完了
• 11377 Tweets
I DID SOMETHING BAD
• 10619 Tweets
Pinned Tweet
What better way to kick off the New Year than an episode of
@DarknetDiaries
with
@JackRhysider
? In this episode I absolutely unload on
#RomanceScams
,
#PigButchering
, and the true horrors of this crime. It's (literally) a bloody mess.
15
22
83
"But I'm never going to use math in the real world..."
Until some asshat puts trig in their malware. >_<
9
166
562
Last decade of
#infosec
in a tweet:
China is hacking everyone
Russia is hacking everyone
North Korea is hacking everyone
Israel is hacking everyone
US is hacking everyone
IoT is hacking everyone
Old exploits are hacking everyone
...And still no one patched their shit
27
123
385
Infosec protip:
It's freaking stressful right now, and you need a break. Seriously, take a break.
The world will still be on fire when you get back.
5
94
383
My facebook twitter coinbase account was hacked password reset.
If you want to look at bots
@elonmusk
start at this thread.
32
21
378
HEY
#INFOSEC
!!!!!!!
@Namecheap
is now responding to takedown responses over Twitter. Please do the internet a solid and pass ANY malicious domains you have over to them. Thanks everyone!!!!
5
72
214
3
22
196
If you weren't in infosec, what would you be doing?
I love cooking for people.
180
6
185
Good! If you only knew how many years (3) I have tried to find a security contact at Apple to help out with gift card fraud.
That's what you get for not wanting to help people out, Apple.
6
53
176
Incident response is cool and all, but have you ever heard of incident prevention? It's this thing where companies listen to professions and secure their organizations BEFORE a hack happens.
Proactive > Reactive.
15
12
123
@tarah
@GossiTheDog
@its_a_lisa
@Viss
@ISSAINTL
@dotMudge
Let's close port 445. (sasser) Let's close port 445 (blaster) let's close port 445 (MS08-067) let's close port 445 (EternalBlue)
1
64
122
Graphed some data talking about
#ransomware
#malware
trends, for those who may be curious.
#cloud
#bigdata
4
51
108
Does anyone else keep a notepad open just so you can copy / paste text then copy it again so you can paste it into something non-formatted?
20
12
99
Checked the box on the bucket list titled "see
@th3j35t3r
's laptop in the spy museum' . Fun walking through the cyber exhibit!
3
9
84
@tarah
@GossiTheDog
@its_a_lisa
@Viss
@ISSAINTL
@dotMudge
let's close port 445 (WannaCry) let's close port 445 (miners) And yes, I needed two tweets to write all of that. :-/
5
40
78
For those looking at the
#Vault8
stuff...
1. Download zip archive
2. make new directory, copy .git folder to there
3. cd to new directory
4. git reset --hard master
5. Hopefully saved you some time. ;)
1
24
71
My political stance in a 6-pane meme, which will probably be the hill I end up dying on.🙃
4
11
76
I'm seeing some chatter that
#ransomware
caused 144 million dollars in damages over 6.5 years. Here's < 4 years of
#BEC
losses, for comparison.
6
27
74
Three years ago we launched a mailing list to fight
#BEC
, and today are launching a TLP:White Slack chat to help combat this type of fraud. If you do nothing else, please share and re-tweet this to the moon. Come help and join the fight!
0
54
73
If you told 12 year old me that he would be in a book, he would have told you thay you were crazy. Super humbling to have made
@TribeOfHackers
blue team!
3
2
72
My instagram crypto coinbase cashapp facebook account was hacked test help password reset
12
8
56
Hey
@TwitterSupport
, how about we try and do something like, I don't know...not allow new accounts in the name of known celebrities?
I'm literally using your own tool to find the bots. And there's hundreds of these. And I expect to see a write up on these identified accounts.
7
14
58
I rarely post personal stuff on the Twitter's, but my wife wanted to redo my office from the boring white. This is what I get to look at every day now!!!
11
1
60
OMG I got accepted to speak
@InfosecOasis
. In VR. Next Saturday. Excited would be an understatement.
3
9
55
......... I shot myself with an arrow.
Very minor, more of an inconvenience at this point, really lucked out.... But I shot myself with an arrow.
14
0
51
@RealSexyCyborg
I'm so offended by this picture. They depict the cowgirl drinking Bailey's, but everyone knows that cowgirls drink of choice is beer or whiskey. :P :P :P
4
0
51
All credit card PIN codes have been leaked! Watch out!
9
44
48
Did you know that there are actually
#Nigerians
who are doing amazing work, are fighting the
#YahooBoys
, and are doing what they can to build a better Nigeria? :)
With
@Cofense
1
24
46
(1/5) Personally I've been a quiet observer of
@MalwareTechBlog
over the last several years, watching the news, arrests, tweets, support, not support, ban him, and everything else in between. It's both interesting and insane on how divided
#infosec
can be at times.
1
3
44
I have a bot that re-tweets everything POTUS says with "Dear Diary" added to the beginning (creds to
@mzbat
for the idea). I love angry deleted tweets that get re-posted hours later as if they were new
#GoogleYourself
3
6
42
I'm tired dad. Those neighbor dogs were overwhelming.
2
1
44
When you've been in pain for the last 4 months, change your diet, start exercising, loose almost 35 pounds, aren't in pain anymore, and finally get an (almost) clean bill of health from the doctor to keep doing what you're doing.
Pic very related. Take THAT gallbladder.
5
0
43
@SwiftOnSecurity
@briankrebs
People are so upset about ransomware, but when you look at the financial losses, emotional abuse, lives lost on all fronts, and the fact that we're now fighting ideology problems and not cyber problems....it really sucks articulating the hurt some days. :-/
1
5
44
Tracy is talking about how a government official was on a train, left his laptop, and she was able to fully identify name, division, and what part of USG he worked for.
Don't be fooled: this is what an APT looks like. :)
@InfoSecSherpa
2
5
43
Find me someone better dressed at
#RSAC
. I'll go first.
And yes, this is how I actually presented.
2
1
42
Be awesome to each other because we're all we've got.
0
7
41
I used to do massive posts about the IC3 report but this year I don't have the energy.
#BEC
was the top crime 7 years in a row and for the last two pig butchering has been top. We knew scammers were pivoting and with all of the warnings were still here today. Somethings gotta
2
11
42
I have seen SO MUCH BURNOUT in infosec over the last 6 months it isn't even funny. You can't help anyone if you don't watch out for your own health.
And I'm talking from experience on this one. Don't burn out like Ronnie did. :)
Ransomware groups did not take their normal holidays over the pandemic, leaving many infosec professionals burnt out.
Happy to hear Dr. Lockwood emphasizing the need for rest for physicians and health workers, but you all need it too.
Take your PTO.
6
40
218
5
4
42
Another day, another scam victim. Today's vic is 1.7 mil down and wanted to commit suicide. Took second mortgages out on his houses.
He said he'll be starting back at less than zero. Spend 2 hours waiting for LE only to get 5 minutes with an officer to go "I'm..." 1/n
6
7
38
Holy crap, and look who hit the number one spot for most financial losses not once, not twice, but THREE YEARS IN A ROW!!!!!!!!!!!!!!!!!!!!!!!!!!!!! PARTY TIME!!!!!!!!!!!!!!!!!! 🥳🥳🥳🥳🥳🥳🥳🥳🥳🥳🥳
8
10
42
Hey
@elonmusk
, now that you're the Twitter bot overlord, can you please take these fake accounts out? I tried for two months and got nowhere with
@TwitterSupport
.
There's hundreds of these.
5
12
39
Don't do something because it's easy. Do it because it's hard, and because it's never been done before.
2
12
40
So remember when I said I was keynoting? Go and see what your
#infosec
colleagues in Nigeria are doing!!!
Yep, we are back with another one!
@iHeartMalware
will be joining
#CyberStarters23
as a speaker.
He's a Principal Threat Advisor for
@cofense
. He collaborates with law enforcement on top crimes in the world.
You still won't get your tickets?
3
16
35
4
13
36
I still think one of my all-time go-to tools for RE is XORSearch by
@DidierStevens
. If you've never used it!
0
21
39
Oh no my Coinbase account was hacked! How do I recover my private key password???
1
1
33
IT'S HAPPENING!!!! ALL OF THE
#INFOSECOASIS
VIDEOS ARE NOW PUBLIC!!!!!
Go watch
@jaysonstreet
, old man
@Grifter801
,
@HackingDave
and a bunch of other people present in
#VR
!
There's even a
#TrevorForget
cameo somewhere. :)
1
13
37
With how bad
#Ransomware
is right now, the amount of losses we have seen on the Nigerian fraud side is unfortunately mountains (billions) more loss and damages than most realize. And this isn't me going "my crime is bigger than yours"...
5
3
35
Alright...now that it's officially official guess who's giving a 2 hour
#BEC
workshop at
#Defcon
@BlueTeamVillage
? THIS GUY!!!! Make sure to make sure to mark your calendars and come say hi!! Saying that I'm beyond stoked would be an understatement.
1
5
36
OMG I’m speaking at
@RSAConference
this year!!! Time to educate the world about how this
#BEC
thing actually works.
4
5
34
@SwiftOnSecurity
And to add to this, actors on all sides (Russian, North Korea, etc.) have used gift cards to skirt sanctions and launder money.
Great work, Apple.
0
7
33
Officially updating my resume. I have no idea what this next adventure will be but I'm thinking fire. Lots and lots of fire.
Fueled by the rage of a thousand scam victims.
2
2
35
Whois protected domains should be banned. The only people this helps are scammers, which leaves many researchers going ¯\_(ツ)_/¯
7
1
35
@MalwareTechBlog
Introverts unite! Tomorrow! In corners playing on our phones...texting each other...no wait, we don't do that.
0
2
35
Come and see
@HackingDave
,
@jaysonstreet
, and
@Grifter801
and a bunch of other speakers
@InfosecOasis
! It's gonna be a TON of fun on April 18th!!
#infosec
#InfosecOasis
We don't need to be in person for a conference. :)
1
19
34
OMG I'M SPEAKING AT
#RSAC
!!!!!!!!
Join our BEC expert Ronnie T. on April 27th at
@RSAConference
as he discusses the hidden truths behind
#cybercrime
, Business Email Compromise (
#BEC
),
#PigButchering
, and more.
Save your seat today!
0
2
6
4
6
33
@InfoSecPS
Absolutely none of us have our shit together, and if someone says they do they're lying. Or just don't know they don't have their shit together.
2
1
33
I did get to speak with him and talk him off the bridge, so as it stands he's in a better head space. He's obviously pissed at the current status quo but is ready to fight the scammers.
Because from his experience... no one else wants to right now.
We. Need. More. Help.
1
2
32
@LitMoose
- It doesn't have to be written in <insert popular language> if it works.
- KNOW how cat / grep / awk / sed /wc work. Seriously, know it like the front, back, and freckles on your hands.
- if you don't know, ask. The only dumb question is the unanswered one.
2
3
31
Halp, I've been pinned down by a 1 year old and can't get up.
5
1
29
Travel protip: have to iron a shirt in the morning? Grab a washcloth or towel and iron that first. Irons can sit for a while in a hotel and rust, and it's better to get that rust on a washcloth than a nice shirt. Pic related, saved a shirt.
4
3
30
We have known about Punchmade Dev for at least two years. And there are dozens of rappers just like him.
And zero arrests.
Security researcher who tracks clowns like this, AMA about why more isn't being done. :-/
4
3
29
Do yourself a favor and turn off social media, turn off the news, and don't watch the news for the next week.
You've been warned. :(
4
1
28
So I was playing with some resin and iron dust last night and literally captured a magnetic field.
4
2
31
@deviantollam
The funniest thing is that torrenting went down for such a long time, because prices and content were fair. Now that prices are going back up, everyone is like "yeaaaa getting my content other ways."
2
0
30
0
0
28
This is the most real thing I've ever seen on the internet.
Live view of USG cyber cooperation and coordination efforts:
24
73
423
0
3
29
A lot of you see me rambling about how
#NigerianFraud
and
#BEC
works, but I rarely tell the story publicly of how we got here. That story started as an idea and mailing list 6 years ago, and boy have we covered some ground.
Here's that story.
1
9
30
So this is a pretty big upgrade for me and I'm super excited to share this one. I've been editing so many videos lately that I purchased my own copy of Davinci Resolve, which came with a speed editor. Ronnie officially levels up today to create more video content!!!!!
3
1
30
We're launching a non-profit! Be on the lookout over the next few weeks.😎
3
7
28
I'm tired of dumping
#Dyre
configurations by hand. So I wrote a python script to do it. Enjoy folks!
http://t.co/eQ5ZH67yzg
#malware
1
23
28
@cantcomputer
Mostly frugal / only getting what I (personally) need. Obsessively researching a device to ensure I only have to buy one and not waste? You bet. Feeling guilty for spending that money and picturing all of the other things that could be purchased? Yuuuup.
1
0
27
Calling all
#infosec
#cooks
. If you cook and have a recipe you want to share...please share! Last call! Current goal is to have version 1 printed for Blackhat and Defcon. :D
@mzbat
@TheDevilsVoice
1
16
28
Last night
@JimSycurity
asked me if there was a
#BEC
playbook. I tried to write a few notes, but ended up finishing the playbook around 2 AM.
Why drop everything and write the playbook? Because Business Email Compromise HAS to stop.
0
8
29
Getting back to work after an extremely stressful Christmas, including 20 days of COVID and wife having to call the EMT's on me due to COVID complications.
As crazy as it sounds, it feels good to be able to sit at a desk again. But I'm back ya'll, snarky as ever. :)
5
1
29
And
@Namecheap
, I'm flagging some folks privately, so expect a bunch of domains to (hopefully) come across the internet.
My recommendation: take the intel and use those as pivot points to find related fraud domains. That will literally clean up the internet tomorrow!!! :D :D :D
0
1
28