Insights · Kluetek
// kluetek.insights / field notes / toronto / since 2005

Insights.

Field notes from running IT for other people’s businesses. Long-form posts on the boring layer done right. Honest, specific, written by the engineers who carry the pager.

// long-form posts // runbooks & postmortems

// featured

// the one we’d hand a new client first
dfirfeatured

The breach that wasn’t on the laptop

A creative firm reported an email account doing things no one recognised. We were brought in to answer two questions — what actually happened, and is anything still inside. The answer was entirely cloud-side, and proving the endpoint was clean meant imaging a Mac that can’t be imaged the usual way.

by the kluetek ops desk·2026-05-28·9 min read
read the field note →

// latest posts

// most recent first · published natively in Squarespace
dfir

The breach that wasn’t on the laptop

An email account acting on its own — how we proved the laptop was clean and the breach lived entirely in the cloud account.

2026-05-28 9 min
security

2023 CrowdStrike Global Threat Report — the AI-generated summary

I asked ChatGPT to summarise the 2023 CrowdStrike Global Threat Report — ransomware, state actors, and AI on both sides.

2023-03-27 4 min
dfir

Old worms on new hooks — XSS as phishing’s hook, line, and sinker

Threat actors stopped scanning for XSS and started mailing you the malicious page as an HTML attachment. What that looks like.

2023-03-16 5 min
misc

Real life, summed up in 12 post-it note graphs

A re-share from the archive — Chaz Hutton’s deadpan first-world-problem graphs, drawn on sticky notes.

2023-03-16 2 min
ai

Polymorphic code and ChatGPT (read label before use!)

Language models can detect polymorphic malware by its patterns — and, as one PoC showed, can also synthesise it on the fly.

2023-03-15 4 min
security

Phishing kits as a service (attacks for sale!)

Phishing kits now ship as a $300–$1000 / month subscription, sending millions of malicious emails a day. How the model works.

2023-03-14 5 min
runbook

Revert Outlook 2016 autocomplete (replaced with ‘Recent People’)

A one-key registry fix to restore classic Outlook 2016 autocomplete after the ‘Recent People’ change.

2018-07-17 1 min
runbook

Chrome white screen on macOS — solved

Chrome on macOS loading blank white pages and ‘Aw, Snap!’ on every site — the repair steps that fixed it.

2016-10-28 2 min
misc

Lemelson-MIT ‘Use It!’ undergraduate winners

From the archive — two UW undergrads won the $10,000 Lemelson-MIT ‘Use It!’ prize for sign-language-to-speech gloves.

2016-04-27 1 min
misc

Researchers aim to store all of human knowledge for eternity — via DNA

ETH Zurich researchers want to encode civilisation’s knowledge into DNA and seal it in glass capsules — storage measured in millennia.

2015-11-29 2 min
// the kluetek.com archive, ported to the new template — newest first. The breach field note is featured above.