-
Be sure to read this post! Beware of scammers. https://www.indianagunowners.com/threads/classifieds-new-online-payment-guidelines-rules-paypal-venmo-zelle-etc.511734/
Active shooter at Mandalay Bay in Las Vegas...
- Thread starter 1911ly
- Start date
The #1 community for Gun Owners in Indiana
Member Benefits:
Fewer Ads! Discuss all aspects of firearm ownership Discuss anti-gun legislation Buy, sell, and trade in the classified section Chat with Local gun shops, ranges, trainers & other businesses Discover free outdoor shooting areas View up to date on firearm-related events Share photos & video with other members ...and so much more!
Member Benefits:
DO NOT GO TO THIS SITE!
Anyone who has gone to that link needs to IMMEDIATELY do a complete and thorough deep A/V scan of their entire computer. Every file, every archive. No exceptions, no shortcuts, no skipped or bypassed files. Complete system scan. EVERYTHING.
The domain name is regstered anonymously via Go Daddy. The IP address it translates to is on a server physically located in Sofia, Bulgaria. The domain name in the URL is an alias. The underlying domain name is "sgvps.net" registered via Tucows to a firm (Siteground) in Panama. If someone wants the gory details on how I figured all this out, ask and I'll provide it.
Emails and postings on social media like these are called "phishing". They use social engineering to suck people in like flies to flypaper. The web sites they take you to will determine the exact web browser you are using (e.g. ie, Chrome, Firefox, Opera) including its version, plus any "helpers" it has, such as Javascript (not the same as Java) and Adobe Flash, and Adobe Reader, the operating system your PC is running, and assess any exploits that are possible from those details and then attack you through your browser. This type of attack is called a "drive by". It doesn't require you to download some file and open it. The phishing gets you to click on the link and then the hostile "drive by" site attacks your PC. The payload in the form of a tiny beachhead is delivered in the blink of an eye. That beachhead then downloads additional malware to facilitate a complete attack.
The first clue one should NOT follow a link like this is a less than straightforward domain name attempting to leverage on a well known news name, CNN. If it's CNN, it should be a web page on cnn.com, not some wacky convoluted different one that has CNN somewhere buried in the name. If in doubt on a news item like this, use Google with something like "Mandalay security guard arrested" or "Jesus Campos arrested" and see what that pulls up using the "news" option.
I'm hoping nobody has been hit by a virus or other malware as a result of this. It's a lesson in phishing and drive-by attacks.
John
DO NOT GO TO THIS SITE!
Anyone who has gone to that link needs to IMMEDIATELY do a complete and thorough deep A/V scan of their entire computer. Every file, every archive. No exceptions, no shortcuts, no skipped or bypassed files. Complete system scan. EVERYTHING.
The domain name is regstered anonymously via Go Daddy. The IP address it translates to is on a server physically located in Sofia, Bulgaria. The domain name in the URL is an alias. The underlying domain name is "sgvps.net" registered via Tucows to a firm (Siteground) in Panama. If someone wants the gory details on how I figured all this out, ask and I'll provide it.
Emails and postings on social media like these are called "phishing". They use social engineering to suck people in like flies to flypaper. The web sites they take you to will determine the exact web browser you are using (e.g. ie, Chrome, Firefox, Opera) including its version, plus any "helpers" it has, such as Javascript (not the same as Java) and Adobe Flash, and Adobe Reader, the operating system your PC is running, and assess any exploits that are possible from those details and then attack you through your browser. This type of attack is called a "drive by". It doesn't require you to download some file and open it. The phishing gets you to click on the link and then the hostile "drive by" site attacks your PC. The payload in the form of a tiny beachhead is delivered in the blink of an eye. That beachhead then downloads additional malware to facilitate a complete attack.
The first clue one should NOT follow a link like this is a less than straightforward domain name attempting to leverage on a well known news name, CNN. If it's CNN, it should be a web page on cnn.com, not some wacky convoluted different one that has CNN somewhere buried in the name. If in doubt on a news item like this, use Google with something like "Mandalay security guard arrested" or "Jesus Campos arrested" and see what that pulls up using the "news" option.
I'm hoping nobody has been hit by a virus or other malware as a result of this. It's a lesson in phishing and drive-by attacks.
John
Last edited:
JeremiahJohnson
Master
I'll take a crack at it.There are timeline issues. The security guard Jesus Campos is the one that investigated some drilling noises, noticed a emergency door blocked, called that in, and was shot apparently through the door - six minutes before the shooting started out the window into the crowd.I still haven't seen anything like security camera footage of this guy in the hotel/casino...Why did it take an hour for police to get to the room, since they obviously knew form the security guard where the trouble was - ?Lots of questions - no answers.
indiucky
Grandmaster
indiucky
Grandmaster
indiucky
Grandmaster
When they (and we all know who "they" are...Obviously it's "them" right?) say "shot through the door" does that mean the door was open or that he shot "through" the door as in with the door closed?
Oh yeah and this...
Cronkite? Maybe last year. What's a non-politics version of this
Also, some of you's are making threads I'd have lots of content and banter for, but putting them in the GenPol subforum when they're mostly non-political. Boo.
indiucky
Grandmaster
Also, some of you's are making threads I'd have lots of content and banter for, but putting them in the GenPol subforum when they're mostly non-political. Boo.
Good call putting the Weinstein thread in the Break Room by the way.....I am kind of obsessing about that story...It's just the gift that keeps on giving.....
The big question now is the six minutes during which the hotel knew shots had been fired down the hallway and what their security did with that knowledge. Regarding the "hour", the police were there very quickly, responding to the shooting at the concert crowd. As the shooting had stopped by the time they arrived on the 32nd floor, having mostly self-organized from event security, it was no longer an "active shooter" but a "barricade" so long as it did not resume, and they waited until SWAT was organized while the 31st - 33rd floors were evacuated before breaching the room. There was no urgency to stop a shooter. The only thing that changed was when the unarmed hotel security guard was shot at at 9:59 PM instead of 10:05 PM.
Current time line (subject to change) from Business Insider:
Las Vegas shooting: Timeline shows exactly how massacre unfolded - Business Insider
9:59 PM - Campos shot by rounds fired through door down hallway
10:05 - Shooting commences at concert crowd
10:13 - LEOs outside at event determine fire coming from Mandalay
10:15 - Shooting ceases at concert crowd
10:17 - LEOs arrive on 32nd floor (these are not SWAT); no shooting, becomes barricade event
10:18 - LEOs find Campos and LEOs get confirmation of shooter room
10:24 - LEOs have gathered near the shooter's room (no SWAT yet)
10:40 - LEOS told to wait for SWAT
11:20 - SWAT breaches room
11:20 - 2nd Door breached and scene secured
It's going to be difficult to make a credible claim that LEO arrival could have been much sooner. From before their arrival on the 32nd floor, the shooting had already ceased and did not resume. Therefore urgency in breaching the room was lowered and they could evacuate hotel guests, get SWAT into place and very deliberately breach the room.
John
I thought he had fired through the actual door and left a hole that police could see into the room throughWhen they (and we all know who "they" are...Obviously it's "them" right?) say "shot through the door" does that mean the door was open or that he shot "through" the door as in with the door closed?
Oh yeah and this...
HubertGummer
Master
I suspect there will be many...
Site Supporter
Latest posts
-
-
-
NWI INGO General Thread #27 - Fresh Pink Air On US-30 smells like...- Latest: Ballstater98
-
Members online
- rbhargan
- TennesseeWilliams
- Brian Ski
- wagyu52
- Flingarrows
- Work
- 223 Gunner
- mom45
- Meatstick
- jwamplerusa
- Leo
- Anonymous
- GunLuver0223
- ChrisK
- WebSnyper
- AmericanBob
- Doug
- Frank_N_Stein
- KARP
- Lifeform50
- slims2002
- Goodcat
- Mice54
- CallSign Snafu
- fender
- Bosshoss
- cmamath13
- IndianaRidgeRunner
- djlaundry2000
- mcapo
- XDragon117X
- Ingomike
- d.kaufman
- Machinist68
- wabashman
- HKFaninCarmel
- Relax_36
- Firehawk
- DestructionDan
- REM299
- Jojo_2000
- wildcatfan.62
- CAMO66
- JRHawkins1118
- IsThatLegal?
- Twinsen
- Beretta76
- morve80
- joshf63a
- Reale1741
