Strap in this one is amazing. FBI forensics guy can’t get support for RDP he’s been dealing with for weeks. Random guy finds open RDP probably thinks he Jack potted masscan. Looks around the server sees all the CSAM, deletes 500TB(possibly after exporting a copy?), and leaves a message on the server telling them he’s reporting them to the FBI. FBI then find this guy’s report and convince him to get on a Zoom call and flash their badges to convince him they’re the FBI please don’t delete anything else. And to make it even funnier google cloud helped them recover 400TB, reads like internal IT didn’t even try 🤣
Strap in this one is amazing. FBI forensics guy can’t get support for RDP he’s been dealing with for weeks. Random guy finds open RDP probably thinks he Jack potted masscan. Looks around the server sees all the CSAM, deletes 500TB(possibly after exporting a copy?), and leaves a message on the server telling them he’s reporting them to the FBI. FBI then find this guy’s report and convince him to get on a Zoom call and flash their badges to convince him they’re the FBI please don’t delete anything else. And to make it even funnier google cloud helped them recover 400TB, reads like internal IT didn’t even try 🤣