vx-underground
Weird stuff going on. This is a CRAZY anime arc. I beg you to read this post. This shit is crazy. Check this shit out June 16th, 2025: Phrack reports suspected offensive state-sponsored activity from China and/or North Korea targeting South Korea. They notifyβ¦
Oh, for the record, I actually don't know what's going on. I don't know if malware is making batteries explode burning down places, or paid arsons, or truly insane coincidence.
All I know is that this is a weird story and it makes me go "Hmmmmm"
All I know is that this is a weird story and it makes me go "Hmmmmm"
π€41π₯°9π€4β€1π1π’1
vx-underground
WHOAOAOAOAOAOA!!!!! LET PERPLEXITY SCRAPE EVERY DROP OF DATA OFF YOUR MACHINE AND DISCORD WILL GIVE YOU ORBS!!!! WHAT ARE UOU WAITING FOR???
Hahahahaha
π104π€£61π15β€4π€©3π₯°1π’1
This media is not supported in your browser
VIEW IN TELEGRAM
π€£100π±9π₯°5π’3π€―2π―2π€2π1π1
This media is not supported in your browser
VIEW IN TELEGRAM
π₯°60π’16π4β€3π1
Some shit head piece of shit was shit faced talking shit. He thought he was tough shit and the shit for going apeshit on some dipshit. It's all bullshit for shit heads to get involved in shit like that. I told bro to get his shit together because when shit happens none of these shit for brains are going to give a shit when shit hits the fan
Believe it or not this does make sense to a native English speaker
Believe it or not this does make sense to a native English speaker
π€£104β€13π€12π―8π7π₯3π3π2π₯°1π1π«‘1
A group of Threat Actors operating under the moniker "FulcrumSec" claim to have compromised an electronics manufacturer named Avnet
Fulcrum contacted me regarding the compromise.
Under normal circumstances I'd probably ignore the e-mail, or look into the group more, and wait and see what happens. However, they were nice enough to provide me with an autobiography, a breakdown of the data they possess, their motives for the compromise, information on their logo design (and why their logo was chosen), a complete file listing from the compromise, a breakdown of the files (what it is, what they are, what they contain), images of the files, an onion domain, a clearnet domain, large samples of the data ...
They pretty much did the full fuckin' write up and research for me. I was able to verify pretty much everything they wrote. It doesn't appear like they're lying.
I've never had a Threat Group notify me of a compromise and do every bit of research and write up for me. What the fuck is this shit? Here's a picture of the e-mail they sent me. I'm trimming it because it's a massive e-mail and they explain every little piece of data they possess
Fulcrum contacted me regarding the compromise.
Under normal circumstances I'd probably ignore the e-mail, or look into the group more, and wait and see what happens. However, they were nice enough to provide me with an autobiography, a breakdown of the data they possess, their motives for the compromise, information on their logo design (and why their logo was chosen), a complete file listing from the compromise, a breakdown of the files (what it is, what they are, what they contain), images of the files, an onion domain, a clearnet domain, large samples of the data ...
They pretty much did the full fuckin' write up and research for me. I was able to verify pretty much everything they wrote. It doesn't appear like they're lying.
I've never had a Threat Group notify me of a compromise and do every bit of research and write up for me. What the fuck is this shit? Here's a picture of the e-mail they sent me. I'm trimming it because it's a massive e-mail and they explain every little piece of data they possess
π€£101π₯25β€9π€5π2π―2π’1π1
vx-underground
A group of Threat Actors operating under the moniker "FulcrumSec" claim to have compromised an electronics manufacturer named Avnet Fulcrum contacted me regarding the compromise. Under normal circumstances I'd probably ignore the e-mail, or look into theβ¦
It literally says in the e-mail pictured they used ChatGPT to summarize the data. It says they used the stolen OpenAI key from Avnet
People messaging me like, "yo dat looks like chatgpt"
People messaging me like, "yo dat looks like chatgpt"
π73π€£50π₯5β€4π3π€3π’1
When you have enough computers you don't need a heater. It's like, 45f outside (7c) and my office is 75f (23c).
π₯64β€7π₯°7π5π2π’1
Chat, we are cooked
Discord is being extorted by the people who compromised their Zendesk instance
They've got 1.5TB of age verification related photos. 2,185,151 photos
tl;dr 2.1m Discord users drivers license and/or passport might be leaked. Unknown number of e-mails
Discord is being extorted by the people who compromised their Zendesk instance
They've got 1.5TB of age verification related photos. 2,185,151 photos
tl;dr 2.1m Discord users drivers license and/or passport might be leaked. Unknown number of e-mails
π€£222π€―21π₯13β€βπ₯10β€9π±5π3π2π2π2π1
Yesterday I briefly spoke with the Threat Actor(s) responsible for compromising Discord's Zendesk.
They said they were able to compromise Discord Zendesk by compromising a "BPO Agent" (outsourced support).
They never specified how they compromised them.
They said they were able to compromise Discord Zendesk by compromising a "BPO Agent" (outsourced support).
They never specified how they compromised them.
π₯°42π€8β€7π2π1
vx-underground
Yesterday I briefly spoke with the Threat Actor(s) responsible for compromising Discord's Zendesk. They said they were able to compromise Discord Zendesk by compromising a "BPO Agent" (outsourced support). They never specified how they compromised them.
Of course, as is tradition, it is also entirely possible they're lying and they compromised their helpdesk system in some other way. It's not uncommon for Threat Actors to lie to obfuscate how they achieved access.
Interesting times
Interesting times
π€52π€11β€9π―5π1π’1
Dawg, I'm trying to fucking work and I've got notifications about the Salesforce compromise, the RedHat compromise, the Discord compromise, this fucking Asuraisjfjsjfiw botnet fucking DDoS shit going on
Threat Actors, will you CHILL THE FUCK OUT. God damn
Threat Actors, will you CHILL THE FUCK OUT. God damn
π€£94β€12π₯°7π’2π₯1
vx-underground
Dawg, I'm trying to fucking work and I've got notifications about the Salesforce compromise, the RedHat compromise, the Discord compromise, this fucking Asuraisjfjsjfiw botnet fucking DDoS shit going on Threat Actors, will you CHILL THE FUCK OUT. God damn
I can't sit down for 2 seconds without some crazy shit happening the past few days. One of y'all's mfers needs to hit the pause button or something wtf bro
I'm on mobile, but if I had an angry cat picture readily available I'd post it
I'm on mobile, but if I had an angry cat picture readily available I'd post it
π€£62β€11π―7π’3π₯°1
Thank you, Riverbank, for sending me an angry cat picture. But it's too late. No one gets a cat picture
π’104π±7π€3β€2
Bro, I've got people messaging me saying they're worried they're in the Discord leaks and if their photo and/or drivers license is leaked they're going to kill themselves because it'll out them for being gay, or it'll potentially expose them to stalkers again
Wtf
Wtf
π€£102π’41π±10β€5π―3π2π2π2π1π€1
This Discord Zendesk compromise has gotten more silly.
Previously, the Threat Actors responsible for the Discord Zendesk compromise claimed they had gotten access by compromising a BPO (Business Process Outsource) employee.
They were not lying.
It turns out that in August the Threat Actors who compromised Discord began sending emails to Discord outsourced employees offering them money in exchange for access to Discords internals.
The people they emailed was a very small team located in Southeast Asia. This particular office only has a handful of employees assigned to working Discord helpdesk (including age verification). This team is assigned to primarily handle back log work. This team had a great deal of access and were believed to be "trusted".
One of the emails this small team received offered $500 compensation to prove they're a Discord BPO employee. They offered an additional "several thousand dollar" lump sum payment in exchange for giving them access.
The Discord BPO employees were told to ignore the emails. Unfortunately, it appears one of these BPO employees did not ignore the emails and accepted the bribe.
$500 in this Southeastern Asian country is an astronomical amount of money. The "several thousand dollar" lump sum payment would be enough for this person to live comfortably for several years in their country.
Previously, the Threat Actors responsible for the Discord Zendesk compromise claimed they had gotten access by compromising a BPO (Business Process Outsource) employee.
They were not lying.
It turns out that in August the Threat Actors who compromised Discord began sending emails to Discord outsourced employees offering them money in exchange for access to Discords internals.
The people they emailed was a very small team located in Southeast Asia. This particular office only has a handful of employees assigned to working Discord helpdesk (including age verification). This team is assigned to primarily handle back log work. This team had a great deal of access and were believed to be "trusted".
One of the emails this small team received offered $500 compensation to prove they're a Discord BPO employee. They offered an additional "several thousand dollar" lump sum payment in exchange for giving them access.
The Discord BPO employees were told to ignore the emails. Unfortunately, it appears one of these BPO employees did not ignore the emails and accepted the bribe.
$500 in this Southeastern Asian country is an astronomical amount of money. The "several thousand dollar" lump sum payment would be enough for this person to live comfortably for several years in their country.
π₯°66π«‘20β€16π€£5π’4π1π1π€1