vx-underground
Holy shit, Arion Kurtaj, the guy from LAPSUS who did the Rockstar Games compromise, smuggled a phone into prison (This is all over Rockstar forums, bro burned himself again)
Ah, it appears he knew it was going to get seized
π€£137π₯8π₯°6β€4π1
It's International Women's Day.
Thank women for raising the age of consent.
One of the biggest activists groups for raising the age of consent was the Womenβs Christian Temperance Union.
In the 1800's the age of consent in the United States was 10. In some states, such as Delaware, it was 7.
The WCTU pushed heavily to protect women from sexual exploitation, prostitution, and physical violence.
Obviously the history is more complex than just one group of women did something, but they were a major driving force.
Pic unrelated
Thank women for raising the age of consent.
One of the biggest activists groups for raising the age of consent was the Womenβs Christian Temperance Union.
In the 1800's the age of consent in the United States was 10. In some states, such as Delaware, it was 7.
The WCTU pushed heavily to protect women from sexual exploitation, prostitution, and physical violence.
Obviously the history is more complex than just one group of women did something, but they were a major driving force.
Pic unrelated
β€177π25π€14π’8π₯°6π€3π€―3π₯1
If you're curious what a basic position independent polymorphic mutation engine looks like in C (compiled as C++), this is what it looks like.
I'll do a write up later.
https://gist.github.com/vxunderground/75993f13f4e53fe1c551508cf2ddafe1
I'll do a write up later.
https://gist.github.com/vxunderground/75993f13f4e53fe1c551508cf2ddafe1
β€51π₯°11π€―5π₯1π1
vx-underground
If you're curious what a basic position independent polymorphic mutation engine looks like in C (compiled as C++), this is what it looks like. I'll do a write up later. https://gist.github.com/vxunderground/75993f13f4e53fe1c551508cf2ddafe1
Also, VirusTotal AI summary thingy was able to piece part of it together
https://www.virustotal.com/gui/file/5164562448d3a5196cb1477f63082d7c9ed73a40c73dff2b46031db1cc83ebbf
https://www.virustotal.com/gui/file/5164562448d3a5196cb1477f63082d7c9ed73a40c73dff2b46031db1cc83ebbf
π₯°30π€6π3β€2π2π€1
I just used AI to make a hyper dimensional quantum telepathic crystalization machine powered by soy sauce with dog fooding red white black trees
π₯°74π±19π€£15π11β€8π₯3π3π€3π«‘3π€2
Yesterday Florida Attorney General James Uthmeier confirmed legislation has passed which explicitly forbids individuals under the age of 14 from being on social media.
However, no information has been produced which states how social media and/or tech companies will reliably ensure people under the age of 14 are not on social media.
The most likely answer is social media and/or tech companies will do age verification using drivers license and/or passport.
If companies do not comply with the new legislation they will be sued and/or criminally prosecuted.
This will inevitably result in social media and/or tech companies in general to advocate for age verification at the Operating System level (as Mark Zuckerberg has already stated multiple times on the record).
This will shift legal liability away from them.
If the social media websites successfully persuade government authorities to move toward OS-based age verification, this will bind your identity to your Operating System in the age of AI.
However, no information has been produced which states how social media and/or tech companies will reliably ensure people under the age of 14 are not on social media.
The most likely answer is social media and/or tech companies will do age verification using drivers license and/or passport.
If companies do not comply with the new legislation they will be sued and/or criminally prosecuted.
This will inevitably result in social media and/or tech companies in general to advocate for age verification at the Operating System level (as Mark Zuckerberg has already stated multiple times on the record).
This will shift legal liability away from them.
If the social media websites successfully persuade government authorities to move toward OS-based age verification, this will bind your identity to your Operating System in the age of AI.
π’78π₯°10π±7β€6π3
Does your child check the weather?
Well think again, because pedophiles also check the weather. If your child checks the weather they may be a victim of sexual exploitation.
Yesterday Troy Hunt shared this photo online. You have to do age verification to check the weather.
Well think again, because pedophiles also check the weather. If your child checks the weather they may be a victim of sexual exploitation.
Yesterday Troy Hunt shared this photo online. You have to do age verification to check the weather.
π₯°105π54π€£53π±21β€14π’11π2π€―1
In you case you missed it: Accenture has purchased Ookla (SpeedTest and DownDetector) for $1.2 Billion
https://newsroom.accenture.com/news/2026/accenture-to-acquire-ookla-to-strengthen-network-intelligence-and-experience-with-data-and-ai-for-enterprises
https://newsroom.accenture.com/news/2026/accenture-to-acquire-ookla-to-strengthen-network-intelligence-and-experience-with-data-and-ai-for-enterprises
Accenture
Accenture to Acquire Ookla to Strengthen Network Intelligence and Experience with Data and AI For Enterprises
Accenture has entered into an agreement to acquire Ookla, a global leader in network intelligence, competitive benchmarking and customer experience analytics.
π±76π’33π€£17π«‘13β€4π€―3π₯°2π1
Fuck Telegram and them not formatting my messages correctly.
I'll cross post my schizo rant later.
I'll cross post my schizo rant later.
β€114π’34π15π10π₯°5π€4π3π€―2π₯1
This media is not supported in your browser
VIEW IN TELEGRAM
π€£102π₯°29β€11π―4π3π3π€©3π’1
International Cyber News Digest, or whatever the account was called, got banned from Xitter. It is currently not known why. His ban is mysterious like a mysterious guy in a mysterious thing (I'm good with analogies).
He was banned in the wake of the Threat Actors who compromised the Syrian government social media profiles.
Him and I were banned at roughly the same time. However, I was immediately unbanned. He was not unbanned.
He has filed multiple appeals yet they are denied. Additionally, he is not provided a reason why is banned from the platform.
He has been messaging every day since the ban trying to make sense of his ban. He has formally requested I assist him. He told him me if I can determine why is banned, or help him get unbanned, he will provide me with pizzas. Yes, this is plural. This is more than one pizza.
Hence, I am now using my large platform to state something akin to "Free my boy, International Cyber News Digestion, he's innocent, he didn't do anything wrong!"
I unironically believe his ban was incorrect and the result of a botched AI system. However, my protest is driven by my desire to consume foods high on saturated fat and grease.
FREE MY BOY INTERNATIONAL CYBERSECURITY NEWS DIGESTIVE SYSTEM
HE DIDNT DO ANYTHING WRONG
He was banned in the wake of the Threat Actors who compromised the Syrian government social media profiles.
Him and I were banned at roughly the same time. However, I was immediately unbanned. He was not unbanned.
He has filed multiple appeals yet they are denied. Additionally, he is not provided a reason why is banned from the platform.
He has been messaging every day since the ban trying to make sense of his ban. He has formally requested I assist him. He told him me if I can determine why is banned, or help him get unbanned, he will provide me with pizzas. Yes, this is plural. This is more than one pizza.
Hence, I am now using my large platform to state something akin to "Free my boy, International Cyber News Digestion, he's innocent, he didn't do anything wrong!"
I unironically believe his ban was incorrect and the result of a botched AI system. However, my protest is driven by my desire to consume foods high on saturated fat and grease.
FREE MY BOY INTERNATIONAL CYBERSECURITY NEWS DIGESTIVE SYSTEM
HE DIDNT DO ANYTHING WRONG
β€97π₯°31π21π7π«‘4
Can I go a WEEK without one of you NERDS involving me in some sort of international cybersecurity incident?
Someone compromised something owned by NSO Group (Israeli spyware company) and added vx-underground to the development team
I'M TRYING TO BE SEMI-NORMAL. I HAVE A BABY.
Someone compromised something owned by NSO Group (Israeli spyware company) and added vx-underground to the development team
I'M TRYING TO BE SEMI-NORMAL. I HAVE A BABY.
π₯123π76π€£67β€8π5π€―4π€4π±3β€βπ₯1π₯°1π’1
vx-underground
Can I go a WEEK without one of you NERDS involving me in some sort of international cybersecurity incident? Someone compromised something owned by NSO Group (Israeli spyware company) and added vx-underground to the development team I'M TRYING TO BE SEMIβ¦
IDF, Netanyahu, don't bomb my house. I DIDN'T DO FUCKING SHIT
π€£185π42β€13π5π₯°4π3
vx-underground
"hey smelly how do i learn malware reverse engineering?" I DONT KNOW. I never took classes, I barely read any books on it. I learned C, malware dev, then I somehow magically learned asm and reverse engineering I learned backwards. You figure out a betterβ¦
I'm not joking. I actually have no idea how I learned. It just magically clicked once I learned a bunch of other stuff. It's partially why I suck at reverse engineering, I have huge knowledge gaps due to lack of actually studying
π₯°74β€11π―9π4π₯2π2
This media is not supported in your browser
VIEW IN TELEGRAM
A really really big company was confirmed to have been compromised. They primarily handle work-force outsourcing and call-center stuff.
The amount of data this company possessed was SICKENING and over ONE PETABYTE of data was stolen.
I'll do a write-up on it later. It'll take me 45 minutes to discuss everything that was stolen and how many things it impacts.
Dawg, we have GOT TO STOP giving random companies user data.
The amount of data this company possessed was SICKENING and over ONE PETABYTE of data was stolen.
I'll do a write-up on it later. It'll take me 45 minutes to discuss everything that was stolen and how many things it impacts.
Dawg, we have GOT TO STOP giving random companies user data.
β€81π±34π―19π€£11π5π₯°1
Today BleepinComputer published a story on a company named Telus Digital being compromised by a Threat Group operating under the moniker "ShinyHunters', a reference to Pokemon.
GTIG (Google Threat Intelligence Group) has been tracking ShinyHunters under the label UNC6395.
UNC6395 has been targeting enterprise organizations since at least August, 2025 by exploiting compromised OAuth tokens to gain access to company SalesForce instances. Upon successful compromise, UNC6395 attempts vertical or horizontal movement by combing through the compromised SalesForce data.
At a currently unknown time, UNC6395 successfully compromised Telus' SalesForce instance which allowed them to pivot elsewhere within the organization.
The amount of data UNC6395 claims to have compromised is astronomical. They claim to have exfiltrated over ONE PETABYTE of data (compressed as .tar.xz). While Telus has confirmed the compromise, the exfiltration of ONE PETABYTE of data indicates the compromise may have occurred weeks, possibly months, ago. Telus as of this writing has not given additional details on the compromise (more on that later).
I am unable to confirm the validity of the data, primarily because I do have the means to reliably comb through a petabyte of data. However, "snippets" and "samples" have been shared. Based off data seen, the compromised appears authentic. Here is a high-level overview of what was allegedly compromised and successfully exfiltrated.
- Employee Full Legal Name
- Employee National ID Number and/or SSN
- Telus hashed passwords, API keys, OAuth tokens
- Call record details
- Call meta data
- Telecom customer PII (First Name, Last Name, Address)
- HR records
- Agent performance records
- SalesForce accounts, contacts, leads, and records
- Financial records (ACH routing numbers, etc)
- GitHub repository access to an additional 20 organizations adjacent to Telus (20,000 internal source code projects)
- Customer and Agent call records in .wav
- 14,139 customer database instances, all containing customer PII (unspecified)
- GLEAN TELUS background check files. UNC6395 has access to FBI, RCMP, and CISA background checks.
- GLEAN TELUS confidential reports on investigations
- GLEAN TELUS confidential reports on tax filings (?)
- ... just search "GLEAN" on Google
If what UNC6395 states is true, this breach impacts approx. 230M companies across the globe. Based on information seen publicly, ... it looks bad.
However, as of this writing, Telus has not done anything other than confirm the compromise with some journalists. I suspect they're currently performing a DFIR (Digital Forensics and Incident Response) and forming a strategy to combat this technologically, legally, logistically, and PR-wise.
Is UNC6395 telling the truth? Is this compromise as severe as it appears to be? When will TELUS provide more details? Will impacted customers be notified? Is law enforcement mad their background checks are allegedly compromised?
Find out next time on Dragon Ball Z
GTIG (Google Threat Intelligence Group) has been tracking ShinyHunters under the label UNC6395.
UNC6395 has been targeting enterprise organizations since at least August, 2025 by exploiting compromised OAuth tokens to gain access to company SalesForce instances. Upon successful compromise, UNC6395 attempts vertical or horizontal movement by combing through the compromised SalesForce data.
At a currently unknown time, UNC6395 successfully compromised Telus' SalesForce instance which allowed them to pivot elsewhere within the organization.
The amount of data UNC6395 claims to have compromised is astronomical. They claim to have exfiltrated over ONE PETABYTE of data (compressed as .tar.xz). While Telus has confirmed the compromise, the exfiltration of ONE PETABYTE of data indicates the compromise may have occurred weeks, possibly months, ago. Telus as of this writing has not given additional details on the compromise (more on that later).
I am unable to confirm the validity of the data, primarily because I do have the means to reliably comb through a petabyte of data. However, "snippets" and "samples" have been shared. Based off data seen, the compromised appears authentic. Here is a high-level overview of what was allegedly compromised and successfully exfiltrated.
- Employee Full Legal Name
- Employee National ID Number and/or SSN
- Telus hashed passwords, API keys, OAuth tokens
- Call record details
- Call meta data
- Telecom customer PII (First Name, Last Name, Address)
- HR records
- Agent performance records
- SalesForce accounts, contacts, leads, and records
- Financial records (ACH routing numbers, etc)
- GitHub repository access to an additional 20 organizations adjacent to Telus (20,000 internal source code projects)
- Customer and Agent call records in .wav
- 14,139 customer database instances, all containing customer PII (unspecified)
- GLEAN TELUS background check files. UNC6395 has access to FBI, RCMP, and CISA background checks.
- GLEAN TELUS confidential reports on investigations
- GLEAN TELUS confidential reports on tax filings (?)
- ... just search "GLEAN" on Google
If what UNC6395 states is true, this breach impacts approx. 230M companies across the globe. Based on information seen publicly, ... it looks bad.
However, as of this writing, Telus has not done anything other than confirm the compromise with some journalists. I suspect they're currently performing a DFIR (Digital Forensics and Incident Response) and forming a strategy to combat this technologically, legally, logistically, and PR-wise.
Is UNC6395 telling the truth? Is this compromise as severe as it appears to be? When will TELUS provide more details? Will impacted customers be notified? Is law enforcement mad their background checks are allegedly compromised?
Find out next time on Dragon Ball Z
π€£84β€24π€―18π₯8π2π₯°2
vx-underground
Today BleepinComputer published a story on a company named Telus Digital being compromised by a Threat Group operating under the moniker "ShinyHunters', a reference to Pokemon. GTIG (Google Threat Intelligence Group) has been tracking ShinyHunters under theβ¦
I have been informed I misread and used the wrong UNC number. Now people are calling me a doofus and a dumb cat (I'm not a fucking cat wtf)
π₯°69π€£36π€6β€3