Fosstodon

B'ad Samurai 🐐Solid combo in today's USPS media mail 🐢 delivery.<a href="https://infosec.exchange/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a>

DanVX Underground Zine Black Mass Volume III <a href="https://mini-01-s3.vx-underground.org/samples/Papers/Other/VXUG%20Zines/2025-07-22%20-%20Black%20Mass%20Volume%20III.pdf" rel="nofollow noopener" translate="no" target="_blank">https://mini-01-s3.vx-underground.org/samples/Papers/Other/VXUG%20Zines/2025-07-22%20-%20Black%20Mass%20Volume%20III.pdf</a> <a href="https://chaos.social/tags/zine" class="mention hashtag" rel="nofollow noopener" target="_blank">#zine</a> <a href="https://chaos.social/tags/vx" class="mention hashtag" rel="nofollow noopener" target="_blank">#vx</a> <a href="https://chaos.social/tags/vxunderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#vxunderground</a> <a href="https://chaos.social/tags/vxscene" class="mention hashtag" rel="nofollow noopener" target="_blank">#vxscene</a>

Xavier Ashe :donor:A picture of my wrist has been posted to the <a href="https://infosec.exchange/tags/vxunderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#vxunderground</a> chat (along with a funny message my watch gave me at the time). Does this make me an <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> rockstar now? Or should I be worried about <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> counting my freckles and doxing me? <a href="https://t.me/vxunderground/6456" rel="nofollow noopener" translate="no" target="_blank">https://t.me/vxunderground/6456</a>

Plugged Potatovx-underground's extracted cat picture torrent is so large, Linux Mint's file manager is struggling to open it. I think I'm in heaven<a href="https://vx-underground.org/Torrents" rel="nofollow noopener" translate="no" target="_blank">https://vx-underground.org/Torrents</a><a href="https://infosec.exchange/tags/caturday" class="mention hashtag" rel="nofollow noopener" target="_blank">#caturday</a> <a href="https://infosec.exchange/tags/vxunderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#vxunderground</a> <a href="https://infosec.exchange/tags/cat" class="mention hashtag" rel="nofollow noopener" target="_blank">#cat</a> <a href="https://infosec.exchange/tags/torrent" class="mention hashtag" rel="nofollow noopener" target="_blank">#torrent</a> <a href="https://infosec.exchange/tags/linuxmint" class="mention hashtag" rel="nofollow noopener" target="_blank">#linuxmint</a>

Xavier Ashe :donor:<a href="https://infosec.exchange/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> has posted a "best of" page with their favorite papers. I think some of these should be required reading for red teamers, malware researchers, or vulnerability researchers. Thoughts? <a href="https://vx-underground.org/Best%20Of" rel="nofollow noopener" translate="no" target="_blank">https://vx-underground.org/Best%20Of</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#redteam</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/malware_research" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware_research</a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerability</a>

stfi like the fediverse, but i miss <a href="https://chaos.social/tags/vxunderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#vxunderground</a>

Tarnkappe.info📬 Banshee Stealer Quellcode geleakt: macOS-Malware unschädlich gemacht <a href="https://social.tchncs.de/tags/ITSicherheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITSicherheit</a> <a href="https://social.tchncs.de/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a> <a href="https://social.tchncs.de/tags/BansheeStealer" class="mention hashtag" rel="nofollow noopener" target="_blank">#BansheeStealer</a> <a href="https://social.tchncs.de/tags/ElasticSecurityLabs" class="mention hashtag" rel="nofollow noopener" target="_blank">#ElasticSecurityLabs</a> <a href="https://social.tchncs.de/tags/macOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#macOS</a> <a href="https://social.tchncs.de/tags/macOSMalware" class="mention hashtag" rel="nofollow noopener" target="_blank">#macOSMalware</a> <a href="https://social.tchncs.de/tags/QuellcodeLeak" class="mention hashtag" rel="nofollow noopener" target="_blank">#QuellcodeLeak</a> <a href="https://social.tchncs.de/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> <a href="https://sc.tarnkappe.info/ad2a32" rel="nofollow noopener" translate="no" target="_blank">https://sc.tarnkappe.info/ad2a32</a>

Pyrzout :vm:NationalPublicData.com Hack Exposes a Nation’s Data <a href="https://krebsonsecurity.com/2024/08/nationalpublicdata-com-hack-exposes-a-nations-data/" rel="nofollow noopener" translate="no" target="_blank">https://krebsonsecurity.com/2024/08/nationalpublicdata-com-hack-exposes-a-nations-data/</a> <a href="https://social.skynetcloud.site/tags/NationalPublicDatabreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#NationalPublicDatabreach</a> <a href="https://social.skynetcloud.site/tags/NationalCriminalDataLLC" class="mention hashtag" rel="nofollow noopener" target="_blank">#NationalCriminalDataLLC</a> <a href="https://social.skynetcloud.site/tags/AtlasDataPrivacyCorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#AtlasDataPrivacyCorp</a> <a href="https://social.skynetcloud.site/tags/TrinityEntertainment" class="mention hashtag" rel="nofollow noopener" target="_blank">#TrinityEntertainment</a> <a href="https://social.skynetcloud.site/tags/HaveIBeenPwnedcom" class="mention hashtag" rel="nofollow noopener" target="_blank">#HaveIBeenPwnedcom</a> <a href="https://social.skynetcloud.site/tags/TwistedHistoryLLC" class="mention hashtag" rel="nofollow noopener" target="_blank">#TwistedHistoryLLC</a> <a href="https://social.skynetcloud.site/tags/InstantCheckmate" class="mention hashtag" rel="nofollow noopener" target="_blank">#InstantCheckmate</a> <a href="https://social.skynetcloud.site/tags/ALittleSunshine" class="mention hashtag" rel="nofollow noopener" target="_blank">#ALittleSunshine</a> <a href="https://social.skynetcloud.site/tags/recordschecknet" class="mention hashtag" rel="nofollow noopener" target="_blank">#recordschecknet</a> <a href="https://social.skynetcloud.site/tags/SalvatoreVerini" class="mention hashtag" rel="nofollow noopener" target="_blank">#SalvatoreVerini</a> <a href="https://social.skynetcloud.site/tags/TheComingStorm" class="mention hashtag" rel="nofollow noopener" target="_blank">#TheComingStorm</a> <a href="https://social.skynetcloud.site/tags/JericoPictures" class="mention hashtag" rel="nofollow noopener" target="_blank">#JericoPictures</a> <a href="https://social.skynetcloud.site/tags/ShadowgladeLLC" class="mention hashtag" rel="nofollow noopener" target="_blank">#ShadowgladeLLC</a> <a href="https://social.skynetcloud.site/tags/PeopleConnect" class="mention hashtag" rel="nofollow noopener" target="_blank">#PeopleConnect</a> <a href="https://social.skynetcloud.site/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> <a href="https://social.skynetcloud.site/tags/DataBreaches" class="mention hashtag" rel="nofollow noopener" target="_blank">#DataBreaches</a> <a href="https://social.skynetcloud.site/tags/TruthFinder" class="mention hashtag" rel="nofollow noopener" target="_blank">#TruthFinder</a> <a href="https://social.skynetcloud.site/tags/InfraGard" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfraGard</a> <a href="https://social.skynetcloud.site/tags/SalVerini" class="mention hashtag" rel="nofollow noopener" target="_blank">#SalVerini</a> <a href="https://social.skynetcloud.site/tags/TroyHunt" class="mention hashtag" rel="nofollow noopener" target="_blank">#TroyHunt</a> <a href="https://social.skynetcloud.site/tags/USDoD" class="mention hashtag" rel="nofollow noopener" target="_blank">#USDoD</a> <a href="https://social.skynetcloud.site/tags/SXUL" class="mention hashtag" rel="nofollow noopener" target="_blank">#SXUL</a> <a href="https://social.skynetcloud.site/tags/fbi" class="mention hashtag" rel="nofollow noopener" target="_blank">#fbi</a>

Pyrzout :vm:Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested <a href="https://krebsonsecurity.com/2024/06/alleged-boss-of-scattered-spider-hacking-group-arrested/" rel="nofollow noopener" translate="no" target="_blank">https://krebsonsecurity.com/2024/06/alleged-boss-of-scattered-spider-hacking-group-arrested/</a> <a href="https://social.skynetcloud.site/tags/NoahMichaelUrban" class="mention hashtag" rel="nofollow noopener" target="_blank">#NoahMichaelUrban</a> <a href="https://social.skynetcloud.site/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#ScatteredSpider</a> <a href="https://social.skynetcloud.site/tags/NeerDoWellNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#NeerDoWellNews</a> <a href="https://social.skynetcloud.site/tags/TylerBuchanan" class="mention hashtag" rel="nofollow noopener" target="_blank">#TylerBuchanan</a> <a href="https://social.skynetcloud.site/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> <a href="https://social.skynetcloud.site/tags/DataBreaches" class="mention hashtag" rel="nofollow noopener" target="_blank">#DataBreaches</a> <a href="https://social.skynetcloud.site/tags/SIMSwapping" class="mention hashtag" rel="nofollow noopener" target="_blank">#SIMSwapping</a> <a href="https://social.skynetcloud.site/tags/MurciaToday" class="mention hashtag" rel="nofollow noopener" target="_blank">#MurciaToday</a> <a href="https://social.skynetcloud.site/tags/SIMswapping" class="mention hashtag" rel="nofollow noopener" target="_blank">#SIMswapping</a> <a href="https://social.skynetcloud.site/tags/WebFraud20" class="mention hashtag" rel="nofollow noopener" target="_blank">#WebFraud20</a> <a href="https://social.skynetcloud.site/tags/Mailchimp" class="mention hashtag" rel="nofollow noopener" target="_blank">#Mailchimp</a> <a href="https://social.skynetcloud.site/tags/DoorDash" class="mention hashtag" rel="nofollow noopener" target="_blank">#DoorDash</a> <a href="https://social.skynetcloud.site/tags/lastpass" class="mention hashtag" rel="nofollow noopener" target="_blank">#lastpass</a> <a href="https://social.skynetcloud.site/tags/0ktapus" class="mention hashtag" rel="nofollow noopener" target="_blank">#0ktapus</a> <a href="https://social.skynetcloud.site/tags/Caesars" class="mention hashtag" rel="nofollow noopener" target="_blank">#Caesars</a> <a href="https://social.skynetcloud.site/tags/GroupIB" class="mention hashtag" rel="nofollow noopener" target="_blank">#GroupIB</a> <a href="https://social.skynetcloud.site/tags/KingBob" class="mention hashtag" rel="nofollow noopener" target="_blank">#KingBob</a> <a href="https://social.skynetcloud.site/tags/signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#signal</a> <a href="https://social.skynetcloud.site/tags/TheCom" class="mention hashtag" rel="nofollow noopener" target="_blank">#TheCom</a> <a href="https://social.skynetcloud.site/tags/Okta" class="mention hashtag" rel="nofollow noopener" target="_blank">#Okta</a> <a href="https://social.skynetcloud.site/tags/Sosa" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sosa</a> <a href="https://social.skynetcloud.site/tags/fbi" class="mention hashtag" rel="nofollow noopener" target="_blank">#fbi</a> <a href="https://social.skynetcloud.site/tags/MGM" class="mention hashtag" rel="nofollow noopener" target="_blank">#MGM</a>

Baker Street ForensicsIf you’re writing YARA rules or doing other kinds of detection engineering, you’ll want to have a test bed that you can run your rules against.  This is known as a corpus. For your corpus you’ll want to have both Goodware (known good operating system files), as well as a library of malware files.One source to get a lot of malware samples is from <a href="https://vx-underground.org/" rel="nofollow noopener" target="_blank">VX-Underground</a>.  What I really appreciate about VX-Underground is that in addition to providing lots of malware samples, they also produce an <a href="https://vx-underground.org/APTs/Yearly%20Archives" rel="nofollow noopener" target="_blank">annual archive</a> of samples and papers. You can download a whole year’s worth of samples and papers, from 2010 to 2023.Pandora’s BoxJust to understand the structure here, I have a USB device called “Pandora.” On the root of the drive is a folder called “APT”, and within that is a “Samples” directory. Inside the samples directory is the .7z download for 2023 from VX-Underground. There’s also a python script… we’ll get to that soon enough.The first thing we’ll need to do is unzip the download with the usual password.<pre><code>7zz x 2023.7z</code></pre>Once the initial extraction is complete you can delete the original 2023.7z archive.Within the archive for each year, there is a directory for the sample, with sub-directories of ‘Samples’ and ‘Papers.’  Every one of the samples is also password protected zip file.This makes sense from a safety perspective, but it makes it impossible to scan against all the files at once.Python to the RescueWe can utilize a Python script to recursively go through the contents of our malware folder and unzip all the password protected files, while keeping those files in their original directories.You may have noticed in the first screenshot that I have a script called ExtractSamples.py in my APT directory. We will use this for the recursive password protected extractions.<pre><code>Python ExtractSamples.py</code></pre>A flurry of code goes by, and you congratulate yourself on you Python prowess. Now if we look again at our contents, we’ve got the extracted sample and the original zip file. Let’s get rid of all the zip files as we don’t need them cluttering up the corpus.We can start by running a find command to identify all the 7zip files.<pre><code>find . -type f -name '*.7z' -print</code></pre>After you’ve checked the output and verified the command above is only grabbing the 7z files you want to delete, we can update the command to delete the found files.<pre><code>find . -type f -name '*.7z' -delete </code></pre>One more a directory listing to verify:Success. All the 7z files are removed and all the sample files are intact.GitHub Link: <a href="https://github.com/dwmetz/Toolbox/blob/main/ExtractSamples.py" rel="nofollow noopener" target="_blank">ExtractSamples.py</a>Time to go write some new detections!<a href="https://bakerstreetforensics.com/2024/02/01/growing-your-malware-corpus/" rel="nofollow noopener" target="_blank">https://bakerstreetforensics.com/2024/02/01/growing-your-malware-corpus/</a><a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://bakerstreetforensics.com/tag/7zip/" target="_blank">#7zip</a> <a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://bakerstreetforensics.com/tag/dfir/" target="_blank">#DFIR</a> <a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://bakerstreetforensics.com/tag/malware/" target="_blank">#Malware</a> <a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://bakerstreetforensics.com/tag/python/" target="_blank">#Python</a> <a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://bakerstreetforensics.com/tag/security/" target="_blank">#security</a> <a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://bakerstreetforensics.com/tag/vx-underground/" target="_blank">#VXUnderground</a> <a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://bakerstreetforensics.com/tag/yara/" target="_blank">#yara</a>

gtbarryUbisoft says it's investigating reports of a new security breach Ubisoft is investigating whether it suffered a breach after images of the company's internal software and developer tools were leaked online. <a href="https://mastodon.social/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> <a href="https://mastodon.social/tags/ubisoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#ubisoft</a> <a href="https://mastodon.social/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#microsoft</a> <a href="https://mastodon.social/tags/sharepoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#sharepoint</a> <a href="https://mastodon.social/tags/games" class="mention hashtag" rel="nofollow noopener" target="_blank">#games</a> <a href="https://mastodon.social/tags/gaming" class="mention hashtag" rel="nofollow noopener" target="_blank">#gaming</a> <a href="https://mastodon.social/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#databreach</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://mastodon.social/tags/hackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#hackers</a> <a href="https://mastodon.social/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://mastodon.social/tags/hacked" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacked</a><a href="https://www.bleepingcomputer.com/news/security/ubisoft-says-its-investigating-reports-of-a-new-security-breach/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/ubisoft-says-its-investigating-reports-of-a-new-security-breach/</a>

nopcornCame across this article from last year about VXUG. Learned some new stuff from it. How vx-underground is building a hacker’s dream library <a href="https://therecord.media/how-vx-underground-is-building-a-hackers-dream-library" rel="nofollow noopener" translate="no" target="_blank">https://therecord.media/how-vx-underground-is-building-a-hackers-dream-library</a><a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a>

🛡 H3lium@infosec.exchange/:~# :blinking_cursor:📣 Exciting News! 📚 VXunderground has just dropped the highly anticipated Black Mass Volume 2 book and the best part? You can download it for FREE! (or support them and buy a physical copy on Amazon for exampleEver wanted to have a coloring picture of a Ransomware operator or a SOC employee sprinkled in between your Infosec articles? Well here's your chance! 👉 Get your copy here: <a href="https://samples.vx-underground.org/root/Papers/Other/VXUG%20Zines/2023-09-19%20-%20Black%20Mass%20Volume%20II.pdf" rel="nofollow noopener" target="_blank">Black Mass Volume II PDF</a>Dive into the world of underground knowledge, hacking, and security with this latest release. It's a treasure trove of insights, research, and information that you won't want to miss. Whether you're a seasoned hacker or just curious about the world of cybersecurity, this book has something for everyone.Spread the word and share the love for VXunderground's commitment to open knowledge! <a href="https://infosec.exchange/tags/BlackMassVolume2" class="mention hashtag" rel="nofollow noopener" target="_blank">#BlackMassVolume2</a> <a href="https://infosec.exchange/tags/VXunderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXunderground</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/FreeDownload" class="mention hashtag" rel="nofollow noopener" target="_blank">#FreeDownload</a> 📖💻🔒

Just Another Blue TeamerThe next installment of the SentinelOne and <a href="https://ioc.exchange/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> blog series features Millie Nym as they demonstrate their unique reverse engineering techniques as they analyze a sample of ArechClient2. Enjoy and Happy Hunting!***As usual, for this <a href="https://ioc.exchange/tags/miniCTF" class="mention hashtag" rel="nofollow noopener" target="_blank">#miniCTF</a>, I am going to leave out a piece of information and it is your job to find it! DM me with the answer or leave a comment! Hint: Check the links in the article!***Notable MITRE ATT&CK TTPs: TA0005 - Defense Evasion T1055.? - Process Injection: [fill in this blank] T1562 - Impair Defenses: Disable or Modify Tools T1112 - Modify RegistryTA0009 - Collection T1005 - Data from Local SystemTA0011 - Command and Control T1102 - Web Service<a href="https://ioc.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://ioc.exchange/tags/ITSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITSecurity</a> <a href="https://ioc.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://ioc.exchange/tags/BlueTeam" class="mention hashtag" rel="nofollow noopener" target="_blank">#BlueTeam</a> <a href="https://ioc.exchange/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatIntel</a> <a href="https://ioc.exchange/tags/ThreatHunting" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatHunting</a> <a href="https://ioc.exchange/tags/ThreatDetection" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatDetection</a> <a href="https://ioc.exchange/tags/HappyHunting" class="mention hashtag" rel="nofollow noopener" target="_blank">#HappyHunting</a> <a href="https://ioc.exchange/tags/readoftheday" class="mention hashtag" rel="nofollow noopener" target="_blank">#readoftheday</a> Reverse Engineering Walkthrough | Analyzing A Sample Of Arechclient2 <a href="https://www.sentinelone.com/blog/reverse-engineering-walkthrough-analyzing-a-sample-of-arechclient2/" rel="nofollow noopener" target="_blank">https://www.sentinelone.com/blog/reverse-engineering-walkthrough-analyzing-a-sample-of-arechclient2/</a>

Just Another Blue Teamer<a href="https://ioc.exchange/tags/HappyMonday" class="mention hashtag" rel="nofollow noopener" target="_blank">#HappyMonday</a> everyone! I am back from a weeklong "vacation" with an article from the SentinelOne blog but the research was conducted by Pol Thill. There was a challenge thrown down by <a href="https://ioc.exchange/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> and SentinelOne looking for research that was conducted but not previously published, which I think is a really interesting concept and needs to happen more often!Anyways, here is Pol's research on Neo_Net, the Kingpin of Spanish eCrime! Enjoy and Happy Hunting!Link in the comments!Notable MITRE ATT&CK TTPs and Behaviors: Mobile Matrix: TA0035 - Collection T1636.004 - Protected User Data: SMS MessagesTA0037 - Command and Control T1437.001 - Application Layer Protocol: Web Protocols T1481.003 - Web Service: One-Way Communication<a href="https://ioc.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://ioc.exchange/tags/ITSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITSecurity</a> <a href="https://ioc.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://ioc.exchange/tags/BlueTeam" class="mention hashtag" rel="nofollow noopener" target="_blank">#BlueTeam</a> <a href="https://ioc.exchange/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatIntel</a> <a href="https://ioc.exchange/tags/ThreatHunting" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatHunting</a> <a href="https://ioc.exchange/tags/ThreatDetection" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatDetection</a> <a href="https://ioc.exchange/tags/HappyHunting" class="mention hashtag" rel="nofollow noopener" target="_blank">#HappyHunting</a> <a href="https://ioc.exchange/tags/readoftheday" class="mention hashtag" rel="nofollow noopener" target="_blank">#readoftheday</a>Neo_Net | The Kingpin of Spanish eCrime <a href="https://www.sentinelone.com/blog/neo_net-the-kingpin-of-spanish-ecrime/" rel="nofollow noopener" target="_blank">https://www.sentinelone.com/blog/neo_net-the-kingpin-of-spanish-ecrime/</a>

Tarnkappe.info📬 Lesetipps: LockBit-Ransomware vs. MacOS und tote Vögel als Drohnen <a href="https://social.tchncs.de/tags/Lesetipps" class="mention hashtag" rel="nofollow noopener" target="_blank">#Lesetipps</a> <a href="https://social.tchncs.de/tags/ElonMusk" class="mention hashtag" rel="nofollow noopener" target="_blank">#ElonMusk</a> <a href="https://social.tchncs.de/tags/kattascha" class="mention hashtag" rel="nofollow noopener" target="_blank">#kattascha</a> <a href="https://social.tchncs.de/tags/PentagonLeak" class="mention hashtag" rel="nofollow noopener" target="_blank">#PentagonLeak</a> <a href="https://social.tchncs.de/tags/PiaLamberty" class="mention hashtag" rel="nofollow noopener" target="_blank">#PiaLamberty</a> <a href="https://social.tchncs.de/tags/pompompurin" class="mention hashtag" rel="nofollow noopener" target="_blank">#pompompurin</a> <a href="https://social.tchncs.de/tags/RichardRoberson" class="mention hashtag" rel="nofollow noopener" target="_blank">#RichardRoberson</a> <a href="https://social.tchncs.de/tags/TiloJung" class="mention hashtag" rel="nofollow noopener" target="_blank">#TiloJung</a> <a href="https://social.tchncs.de/tags/VolkerWissing" class="mention hashtag" rel="nofollow noopener" target="_blank">#VolkerWissing</a> <a href="https://social.tchncs.de/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> <a href="https://tarnkappe.info/lesetipps/lesetipps-lockbit-ransomware-vs-macos-und-tote-voegel-als-drohnen-273053.html" rel="nofollow noopener" target="_blank">https://tarnkappe.info/lesetipps/lesetipps-lockbit-ransomware-vs-macos-und-tote-voegel-als-drohnen-273053.html</a>

Brett Callow<a href="https://infosec.exchange/tags/vxunderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#vxunderground</a> has met the same fate as <a href="https://infosec.exchange/tags/BreachForums" class="mention hashtag" rel="nofollow noopener" target="_blank">#BreachForums</a> - and about time too. Kudos to the Cybercrime Unit of the canton of Vaud and all the other agencies involved in the action. <a href="https://infosec.exchange/tags/TangoDown" class="mention hashtag" rel="nofollow noopener" target="_blank">#TangoDown</a> vx-underground.org

Tarnkappe.info📬 Lesetipps: Und wann klopfen die Hacker auch bei euch an die Tür? <a href="https://social.tchncs.de/tags/Anonymous" class="mention hashtag" rel="nofollow noopener" target="_blank">#Anonymous</a> <a href="https://social.tchncs.de/tags/Cyberangriffe" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyberangriffe</a> <a href="https://social.tchncs.de/tags/DarkCommerce" class="mention hashtag" rel="nofollow noopener" target="_blank">#DarkCommerce</a> <a href="https://social.tchncs.de/tags/Datenschutz" class="mention hashtag" rel="nofollow noopener" target="_blank">#Datenschutz</a> <a href="https://social.tchncs.de/tags/Empfehlungen" class="mention hashtag" rel="nofollow noopener" target="_blank">#Empfehlungen</a> <a href="https://social.tchncs.de/tags/Internet" class="mention hashtag" rel="nofollow noopener" target="_blank">#Internet</a> <a href="https://social.tchncs.de/tags/ITSicherheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITSicherheit</a> <a href="https://social.tchncs.de/tags/Kurios" class="mention hashtag" rel="nofollow noopener" target="_blank">#Kurios</a> <a href="https://social.tchncs.de/tags/Lesetipps" class="mention hashtag" rel="nofollow noopener" target="_blank">#Lesetipps</a> <a href="https://social.tchncs.de/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> <a href="https://social.tchncs.de/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a> <a href="https://social.tchncs.de/tags/Podcast" class="mention hashtag" rel="nofollow noopener" target="_blank">#Podcast</a> <a href="https://social.tchncs.de/tags/ReverseEngineering" class="mention hashtag" rel="nofollow noopener" target="_blank">#ReverseEngineering</a> <a href="https://social.tchncs.de/tags/Videos" class="mention hashtag" rel="nofollow noopener" target="_blank">#Videos</a> <a href="https://social.tchncs.de/tags/Bildungszwecke" class="mention hashtag" rel="nofollow noopener" target="_blank">#Bildungszwecke</a> <a href="https://social.tchncs.de/tags/Gcam" class="mention hashtag" rel="nofollow noopener" target="_blank">#Gcam</a> <a href="https://social.tchncs.de/tags/GhostSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#GhostSec</a> <a href="https://social.tchncs.de/tags/HomeGallery" class="mention hashtag" rel="nofollow noopener" target="_blank">#HomeGallery</a> <a href="https://social.tchncs.de/tags/JackRhysider" class="mention hashtag" rel="nofollow noopener" target="_blank">#JackRhysider</a> <a href="https://social.tchncs.de/tags/MediaGoblin" class="mention hashtag" rel="nofollow noopener" target="_blank">#MediaGoblin</a> <a href="https://social.tchncs.de/tags/novaGallery" class="mention hashtag" rel="nofollow noopener" target="_blank">#novaGallery</a> <a href="https://social.tchncs.de/tags/OpBalochistan" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpBalochistan</a> <a href="https://social.tchncs.de/tags/qTox" class="mention hashtag" rel="nofollow noopener" target="_blank">#qTox</a> <a href="https://social.tchncs.de/tags/RalfRosanowski" class="mention hashtag" rel="nofollow noopener" target="_blank">#RalfRosanowski</a> <a href="https://social.tchncs.de/tags/truecrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#truecrime</a> <a href="https://social.tchncs.de/tags/uTOX" class="mention hashtag" rel="nofollow noopener" target="_blank">#uTOX</a> <a href="https://social.tchncs.de/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> <a href="https://social.tchncs.de/tags/Wyroczen" class="mention hashtag" rel="nofollow noopener" target="_blank">#Wyroczen</a> <a href="https://tarnkappe.info/lesetipps/lesetipps-und-wann-klopfen-die-hacker-auch-bei-euch-an-die-tuer-265998.html" rel="nofollow noopener" target="_blank">https://tarnkappe.info/lesetipps/lesetipps-und-wann-klopfen-die-hacker-auch-bei-euch-an-die-tuer-265998.html</a>

Tarnkappe.info📬 Activision gehackt: Leak geheimer Call of Duty-Dokumente <a href="https://social.tchncs.de/tags/Cyberangriffe" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cyberangriffe</a> <a href="https://social.tchncs.de/tags/Gaming" class="mention hashtag" rel="nofollow noopener" target="_blank">#Gaming</a> <a href="https://social.tchncs.de/tags/ActivisionBlizzard" class="mention hashtag" rel="nofollow noopener" target="_blank">#ActivisionBlizzard</a> <a href="https://social.tchncs.de/tags/Activisiongehackt" class="mention hashtag" rel="nofollow noopener" target="_blank">#Activisiongehackt</a> <a href="https://social.tchncs.de/tags/CallofDuty" class="mention hashtag" rel="nofollow noopener" target="_blank">#CallofDuty</a> <a href="https://social.tchncs.de/tags/PhishingAngriff" class="mention hashtag" rel="nofollow noopener" target="_blank">#PhishingAngriff</a> <a href="https://social.tchncs.de/tags/PhishingAttacke" class="mention hashtag" rel="nofollow noopener" target="_blank">#PhishingAttacke</a> <a href="https://social.tchncs.de/tags/Sicherheitsvorfall" class="mention hashtag" rel="nofollow noopener" target="_blank">#Sicherheitsvorfall</a> <a href="https://social.tchncs.de/tags/VXUnderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#VXUnderground</a> <a href="https://tarnkappe.info/artikel/gaming/activision-gehackt-leak-geheimer-call-of-duty-dokumente-265832.html" rel="nofollow noopener" target="_blank">https://tarnkappe.info/artikel/gaming/activision-gehackt-leak-geheimer-call-of-duty-dokumente-265832.html</a>

Tyler DurdenThe one thing I miss on mastodon is vx-underground :-/ <a href="https://social.c3l.lu/tags/vx" class="mention hashtag" rel="nofollow noopener" target="_blank">#vx</a> <a href="https://social.c3l.lu/tags/virus" class="mention hashtag" rel="nofollow noopener" target="_blank">#virus</a> <a href="https://social.c3l.lu/tags/vxunderground" class="mention hashtag" rel="nofollow noopener" target="_blank">#vxunderground</a> <a href="https://social.c3l.lu/tags/itsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#itsec</a> <a href="https://social.c3l.lu/tags/itsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#itsecurity</a>

Recent searches

Search options

Administered by:

Server stats:

#VXUnderground