Hello and welcome to the Monday, October 16, 2020,

edition of the Sandcent Storm Center's Stormcast.

My name is Johannes Ulrich, and then I'm recording from Jacksonville, Florida.

I wrote a quick diary last Friday, just talking a little bit about, again, sort of what's normal,

a little serious that I started recently.

And in this particular case, well, what's normal with Mac addresses?

There are a couple sort of odd things that you see with Mac addresses, once in a while,

like one IP address with multiple Mac addresses, or then also some, well, sort of temporary Mac addresses

that are not permanently assigned that sort of don't show up in standard databases.

Talked a little bit about this in this diary.

If there is anything that I missed in that respect, please let me know.

And then we have a little bit of mystery that Guy observed in his honeypot logs, that

the mysteries around passwords being used.

Now, we all know the standard top passwords, like no password, one to three, four, five,

and the like.

Well, one interesting thing that

Gio observed was passwords that included domain names. Now, not always sort of correct, like in

the form of an email address or such, like, for example, one, two, three, at, and then dot com. So,

not really a domain name like that. Not all of the domains that were used are resolvable,

but some of them are resolvable.

So just wondering if this is like a common sort of default password pattern for some,

it could be, and we have seen this sometimes,

...