This media is not supported in your browser
VIEW IN TELEGRAM
π€£62π4π―4π₯2π€―1π1
The exploit has been sold. The buyer has not been publicly identified.
"Now how am I going to make new friends? Don't message me on qTox, I only have old friends )))" - Lockbit ransomware group administrative staff
"Now how am I going to make new friends? Don't message me on qTox, I only have old friends )))" - Lockbit ransomware group administrative staff
π€―38π18π€2β€1π1π1π«‘1
We've updated our Windows malware paper collection.
- 2012-11-01 - SizeOfStackReserve As Anti-Attaching Trick
- 2021-01-20 - Process on a diet anti-debug using job objects
- 2023-05-02 - Preventing application creation by IFEO keys
Check it out here: https://www.vx-underground.org/windows.html
- 2012-11-01 - SizeOfStackReserve As Anti-Attaching Trick
- 2021-01-20 - Process on a diet anti-debug using job objects
- 2023-05-02 - Preventing application creation by IFEO keys
Check it out here: https://www.vx-underground.org/windows.html
π12β€3π€―1π1π€£1
A Threat Actor leaked the private GitHub repos from Panopta, a company recently acquired by Fortinet.
The breached appears to take place before or on December 22nd, 2022.
The breached appears to take place before or on December 22nd, 2022.
π29π«‘4π1
The mayor of Augusta, Georgia, told local media outlet WRDW_WAGT they were not a victim of BlackByte ransomware group
This is an incredibly bold move - denying being a victim, while data is actively being leaked and distributed, is a galaxy brain moment
https://www.wrdw.com/2023/05/25/mayor-denies-getting-ransom-demand-fix-computer-outage/
This is an incredibly bold move - denying being a victim, while data is actively being leaked and distributed, is a galaxy brain moment
https://www.wrdw.com/2023/05/25/mayor-denies-getting-ransom-demand-fix-computer-outage/
WRDW
Mayor denies $50M ransom demand amid city computer outage
Despite rumors to the contrary, several Augusta officials wouldn't characterize the city's computer outage as a ransomware attack.
π€£23π€ͺ6π3π1π«‘1
We've updated our Russian malware paper collection
- 2022-06-13 - ΠΠ½ΡΡΡΠ΅Π½Π½ΠΈΠ΅ ΠΊΠΎΠΌΠΏΠΎΠ½Π΅Π½ΡΡ Windows IPC RPC 2
- 2022-11-03 - Π‘Π΅ΡΠ΅Π΄ΠΈΠ½Π½ΡΠΉ Π²ΡΠ·ΠΎΠ² API ΡΡΠ½ΠΊΡΠΈΠΉ
- 2023-05-22 - ΠΠΎΡΠ½Π΅ΡΠΎΠ²ΡΠΊΠ°Ρ ΠΊΡΠ»ΠΈΠ½Π°ΡΠΈΡ ΡΠ°ΡΡΡ 1
Check it out here: https://www.vx-underground.org/russian.html
- 2022-06-13 - ΠΠ½ΡΡΡΠ΅Π½Π½ΠΈΠ΅ ΠΊΠΎΠΌΠΏΠΎΠ½Π΅Π½ΡΡ Windows IPC RPC 2
- 2022-11-03 - Π‘Π΅ΡΠ΅Π΄ΠΈΠ½Π½ΡΠΉ Π²ΡΠ·ΠΎΠ² API ΡΡΠ½ΠΊΡΠΈΠΉ
- 2023-05-22 - ΠΠΎΡΠ½Π΅ΡΠΎΠ²ΡΠΊΠ°Ρ ΠΊΡΠ»ΠΈΠ½Π°ΡΠΈΡ ΡΠ°ΡΡΡ 1
Check it out here: https://www.vx-underground.org/russian.html
π₯21π7β€βπ₯3π1π€ͺ1π1
Hello.
This is a message to the many up and coming ransomware groups we see.
STOP. USING. BABUK.
It is buggy. It fails decrypting large files and other edge cases. If you're going to be a criminal group, do it correctly. Your victims won't be able to recover files, dumbie.
This is a message to the many up and coming ransomware groups we see.
STOP. USING. BABUK.
It is buggy. It fails decrypting large files and other edge cases. If you're going to be a criminal group, do it correctly. Your victims won't be able to recover files, dumbie.
π90π11β€6π«‘5π±4π€ͺ4β€βπ₯1π₯1π1
We've updated our Windows malware paper collection
- 2019-04-07 - Loading and calling VB from C++
- 2019-07-21 - In-memory execution of VBScript, JavaScript or JScript
Check it out here: https://www.vx-underground.org/windows.html
- 2019-04-07 - Loading and calling VB from C++
- 2019-07-21 - In-memory execution of VBScript, JavaScript or JScript
Check it out here: https://www.vx-underground.org/windows.html
π19β€2β€βπ₯2π1
This media is not supported in your browser
VIEW IN TELEGRAM
*Hacker voice*: "I'm in".
π₯73π€£48β€2β€βπ₯2π2π1π€―1π1
It's that time of the year again when state-sponsored Threat Actors are assigned the task of targeting Twitter nerds.
GermΓ‘n FernΓ‘ndez unveiled a campaign where Threat Actors are targeting researchers on Twitter.
Thread: https://twitter.com/1ZRR4H/status/1661793801730490374
GermΓ‘n FernΓ‘ndez unveiled a campaign where Threat Actors are targeting researchers on Twitter.
Thread: https://twitter.com/1ZRR4H/status/1661793801730490374
X (formerly Twitter)
GermΓ‘n FernΓ‘ndez (@1ZRR4H) on X
π¨ 1/ Ongoing campaign primarily targeting security researchers here on Twitter.
Possibly they are trying to exploit some vulnerability in Internet Explorer and database tools like Navicat. I haven't been able to get the malicious payload yet, but somethingβ¦
Possibly they are trying to exploit some vulnerability in Internet Explorer and database tools like Navicat. I haven't been able to get the malicious payload yet, but somethingβ¦
π20π5π€ͺ4π«‘3π₯1π1
We've updated the vx-underground bulk malware download collection.
- Virusshare.00470
- Virusshare.00471
- 60,000+ unique malware samples
- Named using Kaspersky naming convention
Check it out here: https://samples.vx-underground.org/samples/Blocks/
- Virusshare.00470
- Virusshare.00471
- 60,000+ unique malware samples
- Named using Kaspersky naming convention
Check it out here: https://samples.vx-underground.org/samples/Blocks/
π12β€4β€βπ₯1π1
Steve Hutchesson (a.k.a. Hutch), the creator of the MASM32 SDK, has passed away from pancreatic cancer.
Rest in peace. Thank you for your wonderful contribution to the programming community, Hutch.
Information shared via fearless0.
Rest in peace. Thank you for your wonderful contribution to the programming community, Hutch.
Information shared via fearless0.
π’100π«‘66β€4π2
We've updated our Windows malware paper collection
- 2020-02-29 - Windows Kernel Ps Callbacks Experiments
- 2020-08-02 - Removing Kernel Callbacks Using Signed Drivers
- 2023-05-20 - Demonstrating using SMS as a C2
Check it out here: https://www.vx-underground.org/windows.html
- 2020-02-29 - Windows Kernel Ps Callbacks Experiments
- 2020-08-02 - Removing Kernel Callbacks Using Signed Drivers
- 2023-05-20 - Demonstrating using SMS as a C2
Check it out here: https://www.vx-underground.org/windows.html
β€βπ₯20π4π1
Your chances of being a victim of ransomware increases over 250% if your organization owns a computer.
Do not use computers.
[Reposted, apparently people didn't get the joke]
Do not use computers.
[Reposted, apparently people didn't get the joke]
π€£100π7π―4β€3π3π3π±3π«‘2β€βπ₯1π1
The RaidForums database has been leaked online. It has information on 478,000+ users.
It was leaked on Exposed - an up-and-coming forum wanting to fill the void Breached left.
The administrative staff of Exposed would not tell us the source of the RaidForums database leak.
It was leaked on Exposed - an up-and-coming forum wanting to fill the void Breached left.
The administrative staff of Exposed would not tell us the source of the RaidForums database leak.
π€42π20π€£15π€―5π3π3π«‘2β€1π1