Malware News
15.1K subscribers
1.63K photos
7 videos
130 files
7.97K links
The latest NEWS about malwares, DFIR, hacking, security issues, thoughts and ...

Partner channel: @cveNotify

For ads: https://telega.io/c/malwr
Download Telegram
HID Attack using 1.5$ Arduino Rubber Ducky-ish
๐Ÿ—ฃjithins1610

A lot of people donโ€™t trust these cause the price but theyโ€™re a charm and so. Much. God. Damn. Fun.
๐Ÿ‘คmaximus1218

Pro tip though, get several Digisparks. Thereโ€™s probably a 20% chance they wonโ€™t work
๐Ÿ‘คmcbergstedt

The dollar sign goes first
๐Ÿ‘คLegitimateCrepe


๐ŸŽ–@malwr
10 Years of Linux Security - A Report Card
๐Ÿ—ฃcitypw

Keep in mind that grsecurity's business model relies on painting Linux, and in particular Linux security, in a negative light.

I'm not saying that makes any of this information invalid by itself, but it's worth considering the source.
๐Ÿ‘คawkisopen

I see words in that PDF but barely understand anything it's saying. Context is key.

This was clearly written by an engineer who had no idea whether or not the audience would understand the presentation.
๐Ÿ‘คToasterToasts

Well, that could have benefited from some explanation of acronyms.

Most of the recommendations seemed to be process or attitude things. How about recommending some simplification, throwing away old code even if it still mostly works ? I'm mostly talking about user-space code. Could we get rid of the init structure and commit to systemd ? Get rid of some old encryption and hashing and VPN modules, force people onto the new stuff ? Have DNS specified in 1 place instead of 5 ?
๐Ÿ‘คbilldietrich1


๐ŸŽ–@malwr
A buggy behavior located into CreateFile allows to hide malware from users and AV scanners. Microsoft will not fix it:
https://github.com/dalvarezperez/CreateFile_based_rootkit
#CreateFile #malware #rootkit #antivirus

โ„น๏ธ Sent from one of our members

๐ŸŽ–@malwr
[PDF ThaiCERT publishes "Threat Group Cards: A Threat Actor Encyclopedia" version 2.0 - Added 115 threat groups and many other updates - portal coming soon](https://www.dropbox.com/s/ds0ra0c8odwsv3m/Threat%20Group%20Cards.pdf?dl=0)
๐Ÿ—ฃdigicat


๐ŸŽ–@malwr
Microsoft launches free Memory Forensics and Rootkit Detection service for Linux systems
๐Ÿ—ฃdreamygeek

Perhaps read the official blog post before you all get your pitch forks out over the free service thats intended to make hard to find, in memory malware incredibly expensive to keep using for attackers without risk of exposure.

"Project Freta was designed and built with survivor bias at its core."

God forbid microsoft and their academic researchers do a good thing here and get any credit.

Yeesh ๐Ÿ™„

https://www.microsoft.com/en-us/research/blog/toward-trusted-sensing-for-the-cloud-introducing-project-freta/
๐Ÿ‘คjdwashere

Soooo... Volatility in the cloud?
๐Ÿ‘คYXZs

mmm... a rootkit that detects rootkits
๐Ÿ‘คskyl4nk


๐ŸŽ–@malwr