why not 69% off.... just asking the real hard question no one is asking....

Wtf ? I can’t comment because of the ad’s . So you are saying that these new cyber weapons are mutual deterrence just like nuclear bombs due to the fact that we have them pointed at them as they do us. The internet is so open how could it not be true. Even the CCP is hacked into .

Read about Iran's cyber attacks on Albania. It has been going on for years now and every now and then they steal super sensitive data and publish it for free online because Albania is hosting a group of iranians that are against the Iran government. Every personal detail of every person in Albania is exposed. But you need to read about it yourself there is much more to the story

That was the fastest title change I've seen on KZbin. Did the feds threaten you to change it. Blink twice if you need help 💀💀 Edit: He did it again lmao 💀💀

The guy who leaked the NSA hacking tools has already been charged and incarcerated

I believe using a house is much better. It's more relatable

@@cryingwater Actually Castle-and-moat analogy model is widely know among those working with network security.

@@blackfoxstudioX House feels more personal and easier to understand for the layman

@@cryingwater a home or house is usally much smaller than a castle, and comparing small sites to really big sites is actually not relatable. If there's a crack in your home, you'll easily find out, but if there's a crack in a castle, it would take long before you find out, cos you cant be everywhere in a little space of time

@@faithfulnesstech Not necessarily. I'd argue there's lots of cracks hidden behind walls. There's a reason rats get into houses without prior notice. There's probably like

Yeah if any American company doesn't have a CVD statement, don't even bother. You're more likely to get sued than getting a thank you email

Exactly. Not everyone stays “blackhat” out of malicious intent… yet due to a simple fact that we too must eat.

Good to hear someone working toward protecting us all, thanks man.

Improve your writing! You have several typos.

Wait what seriously? C....comp...companies are greedy?

There’s been numerous sites on the dark web that seem to challenge people to hack them. It’s highly believed to be someone looking for excellent hackers to hire. I’ve heard speculation the government is looking for hackers before. It makes sense, why wouldn’t they?

Look up the story of the hacker Gummo. If he’s telling the truth, then it’s happened.

They have done that. Putting these brilliant minds in prison is a waste of their talent and skill sets. Better to give them a slap on the wrist and offer them a high-level job. Decent pay, benefits, interesting work, etc.

lucky, i only got the option to show how I did it. I asked for free tuition or working for them and they rejected both. Didn't get any punishment, just a 'mark zuckerberg' meeting with all the founders.

@@o1-previewwait and we’re they going to expel you if you didn’t show it to them?

Jesus, prayers for your mother and her treatment

Wow that's happening real time in sorry to hear that. I'll pray for your mom. ❤😢

sorry for your mum

I am sorry you had to feel the grips of this problem that not enough people talk or care about.

My mum also has cancer. Praying for yours.

well this is partly fiction, it was a water pump installed by erik von sabben at that facility. who died in a motorcycle accident 2 weeks after the installation in UAE.

Yeah it's a lot of fiction. Johnny is making assumptions that aren't verified. He acts like he's against something but really all he's standing for is trying to make money.

Seriously, my guy could make CHEMISTRY interesting

@@samstromberg5593 it wouldn't be chemistry if harris made a video. It would be pure fiction/alchemy video

Agreed. But I think our Military needs to fix their rape crisis if they want a good future. I not only know guys that got raped in real life but the DOD even reported that for year 2022 an average of 45 men and 53 women get raped/sexually assaulted EVERY DAY around the US Military

Good 4 u, NOC

Im a network engineer too and boy believe me, we are just holding dams by straws. I cant even begin to talk about how sophisticated and genius these attacks are. Its just a war between extremely talented ADHD fueled software nerds.

@@InfoSecMafia you do realize this is a comment about cybersecurity on a video about cybersecurity, right?

@@jawwadsabir4620😭😂

Yeah, everytime you put a new system online it started to be scanned to the more common vulneralibities systematically Its not like you need to commit a mistake to get a system hacked, you just need to not do the right thing one time and youre fucked, i worked in the telephony provider field and one day testing something an engineer left the password as a easy password, like p@ssword, made his test, and finnish his shift and went home forgetting to streightning the password back, at morning the telephony provider was 100 thousand dolars indebted with fraudlent calls

Took me a while to realized it was! Glad to see I’m not the only one

I was about to mention the same.

Glad im not the only one lol Johnny: My brain: "wait is that oscilloscope synced with his voice? Coooooooool"

Tame Impala did this during innerspeaker/lonerism tours with his guitars.

Yes. Very aesthetically pleasing. I like how immersive his desk setup is.

*frantic keyboard-typing-noises Followed by the famous phrase: “I’m in.”

They took this idea from Google's zero day series..

It felt like I was watching a spy movie😎🔍

Best hacker analogy is from Kung Fury Guy surfing his keyboard 😂

​@@HeyJuuude-05 He's in the mainframe!!

Thought it was jericho

Damascus is a wasteland at this point

Bro the 15 min video is released just a minute ago and you already have a opinion about it?😭

@@ritvikgaba__:Well,it seems tat some people are quite fast!

Jerusalem is the second and Varanasi in India is the third in that ranking.

He was not a Dutch/Iranian citizen, he was a Dutch citizen with an Iranian wife. He also died 2 years after the operation in a car accident in Dubai. The Dutch government did not know of this operation at all and even the AIVD, who helped the Americans/Israelis by recruiting him, were not informed that he would be used to implant the virus into the factory. Every single detail of this story sounds fishy to me.

KHAN

​@@VictorKing144 why would they let a dutch national into a factory like that

​@@thegamingwolf5612 because they need trained engineers and they had no concept that anything like Stuxnet was possible.

I got another fun fact. The hacking of USA elections and leaking of clintons data was discovered by Dutch intellence who stumbled upon a hackergroup called cozybear. They hacked the group and found out they worked from the kremlin. Reported by the volkskrant also

Not sure if it's explicitly stated in the video, but that vulnerability is exactly EternalBlue. The NSA has been keeping it secret for some time for their own use. Microsoft found out about it and started patching it when it was eventually leaked by the shadowbrokers, but by that point it was too late, given how powerful it was and how hard it is to update all the vulnerable computers, especially government infrastructure ones.

All very interesting and yet also concerning our government cyber weapons were leaked to everyone.. its hard to grasp if your sumone like me

Fun fact most of windows is just useless services put there by microsoft. The reason windows takes up 3gb of ram and linux takes up 300mb is because of these "services" microsoft puts in there

An unfortunate pattern that persists to this day. Microsoft has frequently released patches that don't fix the vulnerability, but render the proof-of-concept nonoperational. The person who found the Microsoft Exchange vulnerability was able to tweak his code to use the same exploit after multiple patches.

Honestly, that kind of screw up makes me wonder, did Microsoft leave this vulnerability in place intentionally? There's a precedent for the NSA using big tech companies as a platform for spying (see the Ed Snowden leaks and the PRISM program). Wouldn't be that much of a leap to have some sort of handshake agreement on some sort of vulnerability like this. Then again, knowing how most companies work, they'd be too incompetent and divided to pull it off and the more likely culprit is that a proper fix was too difficult/expensive to implement so they just closed their eyes, ignored it, and hoped it wouldn't come back to bite them in the rear end.

Also worth noting "APT" originally meant "Asia-Pacific Threat" (China)

The government contracts private organisation for this. They don't be making it all on their own

@johnny harris the zero day comparison for Bangladesh bank money heist is not the same. Over simplifying things are not a good journalism. Swift system in the heist was indeed a bulletproof system.

I swear I read APT as "Advanced Packaging Tool" then I watched the entire video and realized this

The people working within tailored access operations absolutely should be considered "great" relative to their peers across the industry, along with the developers of tools like Ghidra.

same here i don't understand people who actually watch most videos, like what are you watching? their mouth moving?

While playing fortnite

Yeah, but now they Russian heckers know his electronic voice signature 😳

You could just disconnect your PC from the internet before turning it on, if it was a wired connection. You could take out the wireless card if you were really worried and were using wifi.

@@__nog642 Yeah. Well, I remember I didn't have anything important on my PC so just not turning it on was the best idea

@@__nog642 You know for a code to execute it does not necessarily need the internet, all it needs is a terminal basically and it will execute commands.

​​​@@__nog642 dude's acting like there was some sort of "cyber-pandemic" lol You could, you know, format a computer and give it a clean slate. Don't install any of the internet card controllers, so it can never access anything on the web, then connect the HDD/SSD (that has the sensitive information, be it internal or external) and download all desired data and files into that isolated PC. There, your files are absolutely safe from any malware and you can access them, without worrying about that particular PC, ever being invaded. P.D: for an extra level of defense, learn how to partition storage drives and how to encrypt files. AES256 is currently, still a pretty safe and fiendishly difficult cypher to crack.

@@__nog642 Your PC might already have the virus though, and by turning it on, you're giving it the chance to proliferate.

3 2 1 is THE RULE of backups. 3 copies. On 2 mediums (ie. One on a hard drive and one on tape). And 1 off site

as someone with only intro level coding experience, how could i find a script for this?

@@lexp6589use chat gpt with python or powershell.

How do I go about this?

do you have the name of the program?

Same here, and I wonder

👀 i know. Might have to do the same. He might be doing some A/B live testing 😂

He's likely not changing anything. The bigger channels have an A/B testing features in KZbin.

They do this if the video isn't getting the traction they expect. Veratasium did a video on it a couple of years ago.

That's because this man has no clue what he's talking about and KZbin is a platform mainly aimed at entertainment and this video disregarded all scientific geopolitical factual evidence

It’s a wireframe castle. Settle down.

@@codycast yeah I didn't know what's it's called but I liked it.

​@@codycastoi, let people get excited about things

Vulns can be very complex and require a lot of conditions to exploit - for example recent regreSSHion vuln where very specific time requirements need to be met. This is not likely be stumbled upon by two different independent researchers and exploits could be coded to look for conditions like regional registry of the IP to target certain states. But 100% get your point - discovering a vuln creates opportunity for offense but then you have to weigh up the potential damage that could be done to yourself and if it should be raised for patching (You could also consider workaround patches that could be distributed confidentially to critical infrastructure however this will likely lead to leaks and increase likelihood of other researchers discovering vulnerability - very interesting). This is why I like the fact that a lot of security researches disclose publicly after 90 days of private disclosure even tho majority of sec people protest that it arms script kiddies to do monumental damage to hospitals etc but prevents nation states for holding onto vulns, that are discovered independently, for future leverage in wars or political gain. In light of the CrowdStrike stuff and how much damage it caused -I wonder if governments would call on companies like Microsoft to disable functionality for devices in enemy states. Really good video tho and has opened up my eyes a bit working in secops about the potential future - no wonder theres loads of schemes to encourage younger people into cyber coming from western governments.

Listen to dark net diaries

If you like podcasts check out Darknet Diaries, this video was basically a recap of some of their best episodes.

To really shake things up, we should get a redemption arc for anonymous😂

Then help me understand what is the point of a software that waste IO , cpu cycles , ram etc and increases attack surface with it's extraction of malware for behavior , signature analysis to it having root perms I don't use anti viruses almost at all any reason to even use those ?

There is not mucv reason to use antivirus software

@@doufmech4323who told you this? Antivirus is basic internet protection. Like a seatbelt.

@@hazeljust7001 wrong. Antivirus really doesn't help that much. Most anti virus will not even be able to mitigate malicous websites or ads. It just wastes performance and honestly acts like malware itself. Basic internet protection is adblock.

Just write everything important on paper

frfr

It convinced me to watch

Why do people do this?

because this is also a form of psyop@@furanduron4926

@@furanduron4926it’s called A/B testing. Trying different combinations of title and thumbnail to measure which get high click rates and increase the reach of the video.

Hmm .. Maybe not quite. Castles with windows / doors are deliberately left there. When we do build SW, most of us do not deliberately leave holes to be exploited, unless they are infiltrated by bad actors. I think it's more like when you pour concrete, there are air bubbles, if they are not well-settled (terminology), then you ended up having a small tiny hole that could get thru the wall.

I’m so jealous that you can understand how to code. My brain just can’t process the lines of code. Some people I guess can’t learn that stuff 😢

​Holes as is Doors or Windows can be seen as Users accessing your frontend of the software, since as a "guest" youre not allowed to access every room. But analogies can also be overanalysed ^^" ​@@eeyore345

@@Aussie-boi just keep trying dude

except also in this case, it's like if not only nations had nukes, but anonymous randos who spend the day working ordinary jobs like baking bread or selling clothes but moonlight having botnets exceeding the capacity of any nation's cyber unit.

Yeah mate its more than a 1 person team

Well said, I keept pushing the same agenda for years, but unfortunately, it is always ignored 😮

If you have a bank account you're on the Internet

It’s other things too like bank info, gov agencies you’ve possibly applied to Ssi Ui Medicare/medicaid

I'm aware other things are on the internet. I just don't need to have my eyeballs glued to it. The rest can be planned around.

​@@thewhitefalcon8539better buy you're net worth in gold and penny pinch at this point

And it's not really that weird, if you know your memes.

Can you explain more

@@Aaaaaaaaaaaaa558 yes

@@Aaaaaaaaaaaaa558 Just google "REEEEEEE" and follow the links down the Pepe rabbit hole.

Lmao. I drop when i saw that dumb password.

Wow thanks!

Whos nick bro hes johnny

@@TheAngryDoctor92 did you watch the video?

Nexxpo is similar

as well as BarelySociable

Not the same genre but... I really like Kyle Hill's _Half Life Histories_ series. He makes longer, detailed documentaries about basically all types of nuclear accidents and disasters. He also makes great fun science videos (so does Veritasium!) but if you want dark, real docs like this one, you might appreciate those ☢

@maibrown2755 make it a tree fiddy

I looked at his sources because I recognised a lot of the words and sandworm was a massive influence on this

Was upset that he didn’t shout out the guy who stopped it 😂🇬🇧

So he misspoke, chill. Lots of people say that instead of authentication. Its irritating but…It’s really not that funny.

@@ambitiously_Lol right! People forget You tubers are not perfect.

To be honest, he didn't dumb it down all that much. He just did a damned good job of explaining it.

A great comment.

AB testing … new YT feature

@@adnastu I see now makes complete sense

How simple are these books if a KZbin video that isn’t even about coding clarified things for you…?

One of my favorite podcasts!

cringe