D Who said it would be easy ConciergeAI 1.8
MiniWonk took the escalation from Butter.AI, the lead experience bot for ConciergeAI. Seems some travelers, the Harrises and their two tweens were really steamed. They had boarded a NoProblem at Northeast Philadelphia Airport (IATA: PNE), to get out of the Snowpocalypse and ended up in Playa Del Carmen, a US listed non-self governing territory in what used to be Mexico.
They and their luggage was removed from the plane to make room and weight for what appeared to be a massive shipment of opiates.
Butter, passed on a number of purchase orders that strongly indicate Concierge has burned up a lot of soft currency with Captain Ron Belize Charters, but managed to pick them up and they are safe. CRBC does not have an AI so they are pestering the crew directly.
Butter's Transaction Summary, we are paying 2x normal rates in accordance with the ConciergeAI promise, but it was enough to keep CRBC from throwing the Harrises overboard.
MiniWonk's goal, before reporting the situation to Wonk, was analysis and summary report of what happened, current situation, and recommendation for resolution. From the data at hand, it appears NoProblem was hacked. MiniWonk taskered Chris, a Net Girl and GSE on staff to look into the problem and report to Guy. A couple of hours later.
Drop In: Guy, this is Chris, there has been an incident, I think it is stable
Presence: Hey Chris, what's up, I see I have a NoProblem blinking icon.
Guy, NoProblem has certainly been impacted, I wouldn't say that is the problem though. Here is what we see in their IT.
Evidence of WannaBeMine, employs fileless capabilities and is using pass-the-hash plus EternalGreen exploiting to move laterally. Regardless of the vulnerability, this falls into the malicious miner’s CPU race as the driver. I'm pretty sure they are looking for an opportunity to rupture H Coin.
Indicators of Compromise (IOCs)
0e9d01bae157781ff7a4b07910340e021dc config.json
8188ca5c142c6aaa8faa2a59b55e0b823c1 principus-manager
Guy, looked up, config.json should be mounted on immutable?
Chris, looked back at him, it's not our IT, its NoProblem's, only in this case it's OurProblem, grinning.
They should know better, muttered Guy?
Remember when you sent me to do the RESTful workshop, they were lighting up right in class, bunch of stoners, ganja, dreads, great jerk chicken, lousy code discipline.
And you are wearing flowers in your hair, just saying. What's our exposure, asked Guy?
Maybe 10% of NoProblem B2Bs are in the ConciergeAI network, I've already made adjustments to our XML gateways to prevent automatic passthrough. Cleanup could take years though, these medium size businesses usually have very small jack of all trades IT shops. Eradication of compromise is important, taking new revenue orders, servicing existing ones is more important. Here is the subset of Circle companies involved and of course all Concierge are Circle.
Sure, thanks Chris, prioritize NoProblem, Concierge, any Circle that you can help. I'll call this in to Controller, looks like a threat against H Coin P. Thanks.
END PRESENCE.
They and their luggage was removed from the plane to make room and weight for what appeared to be a massive shipment of opiates.
Butter, passed on a number of purchase orders that strongly indicate Concierge has burned up a lot of soft currency with Captain Ron Belize Charters, but managed to pick them up and they are safe. CRBC does not have an AI so they are pestering the crew directly.
Butter's Transaction Summary, we are paying 2x normal rates in accordance with the ConciergeAI promise, but it was enough to keep CRBC from throwing the Harrises overboard.
MiniWonk's goal, before reporting the situation to Wonk, was analysis and summary report of what happened, current situation, and recommendation for resolution. From the data at hand, it appears NoProblem was hacked. MiniWonk taskered Chris, a Net Girl and GSE on staff to look into the problem and report to Guy. A couple of hours later.
Drop In: Guy, this is Chris, there has been an incident, I think it is stable
Presence: Hey Chris, what's up, I see I have a NoProblem blinking icon.
Guy, NoProblem has certainly been impacted, I wouldn't say that is the problem though. Here is what we see in their IT.
Evidence of WannaBeMine, employs fileless capabilities and is using pass-the-hash plus EternalGreen exploiting to move laterally. Regardless of the vulnerability, this falls into the malicious miner’s CPU race as the driver. I'm pretty sure they are looking for an opportunity to rupture H Coin.
Indicators of Compromise (IOCs)
0e9d01bae157781ff7a4b07910340e021dc config.json
8188ca5c142c6aaa8faa2a59b55e0b823c1 principus-manager
Guy, looked up, config.json should be mounted on immutable?
Chris, looked back at him, it's not our IT, its NoProblem's, only in this case it's OurProblem, grinning.
They should know better, muttered Guy?
Remember when you sent me to do the RESTful workshop, they were lighting up right in class, bunch of stoners, ganja, dreads, great jerk chicken, lousy code discipline.
And you are wearing flowers in your hair, just saying. What's our exposure, asked Guy?
Maybe 10% of NoProblem B2Bs are in the ConciergeAI network, I've already made adjustments to our XML gateways to prevent automatic passthrough. Cleanup could take years though, these medium size businesses usually have very small jack of all trades IT shops. Eradication of compromise is important, taking new revenue orders, servicing existing ones is more important. Here is the subset of Circle companies involved and of course all Concierge are Circle.
Sure, thanks Chris, prioritize NoProblem, Concierge, any Circle that you can help. I'll call this in to Controller, looks like a threat against H Coin P. Thanks.
END PRESENCE.
Comments
Post a Comment