Thirdeye Intelligence

If cyber threats had a most-wanted list, Chip would be the detective cracking the case! My blog dives deep into the world of cyber intelligence, unraveling attacks, trends, and security tactics with a mix of wit and wisdom. Whether you’re a seasoned pro or just cyber-curious, expect insights that pack a punch—no fluff, just the good stuff!

Bob and Chip Talks Cyber Comics
The 5W Wire
LinkedIn

  • Westpac Spam and an approach to STIX language

    In my previous post regarding Westpac phishing mail, I mentioned associated domain and IP address. Recently, I am diving into the threat intelligence and especially how to share information about my finding with the rest of the world beside the blog. I ventured into understanding STIX – Structured Threat Intelligence… Read More ⇢

  • Westpac spam email – You have new notification

    Malicious or spam emails are frequent but one of the best ways to get a system/host infected. Recently I received an email from one of the Big 4 banks of Australia – Westpac. Very first thing was I am not a customer so definitely it was a phishing scam. Actual… Read More ⇢

  • An email from UN – attachment ATM_CARD_1.doc – IRREVOCABLE PAYMENT ORDER VIA ATM CARD

    Received an email from UN@ – no email domain on the sender list and that’s why my email identified as spam. Attachment was a doc file – ATM_CARD_1.doc – Checked various websites (malwr.com, virustotal, shodun) but no information about mentioned DOC file. MD5 : 2134a6afb12a5a2bcdd77b09e43a8e29 – not reported. Uploaded the… Read More ⇢

  • Ubuntu – Security Onion Networking issue

    Been using Security Onion for a while now. A very good OS for analysis and getting IDS alerts on the go without installing expensive hardware. But recently, due to some updates been facing some issue with regards to internet connections. Not sure what the Network-Manager updates do but while installing… Read More ⇢

  • NDISPlan phishing/malware email

    Based on my previous blog entry about emails I have analysed an email that was received from *@ndis.gov.au. From the email it seems that you have received an email for a Shelby’s plan. A question to ask who is Shelby ? File name  – Shelby-MyNDISPlan.zip – Have checked online and… Read More ⇢

  • Emails – The good, The bad and The ugly side

    Emails – as we know is a very efficient way to communicate without physically visiting the intended recipients. Emails have been with us from many years and initial take for email was to reduce time and effort in communication. But recently emails are being used for social engineering and phishing. Forget… Read More ⇢

  • Hunting as an SOC analyst

    Been security analyst in SOC for more than 3 years. Besides waiting for the alerts triggering from the device such as IPS or end point protection, one can write up rules in SIEM to analyse logs. SIEM needs to be constantly updated with new Intel. Below are few things that I… Read More ⇢