We've updated the vx-underground APT collection.
2013.03.20/The Teamspy Story
2013.03.20/Teamspy - Technical Report
2016.03.02/New selfβprotecting USB trojan able to avoid detection
2019.04.10/Gaza Cybergang Group1, operation SneakyPastes
2017.04.13/Teamspy - A deeper look into malware abusing TeamViewer
2017.04.14/PlexingEagle: A surprise encounter with a Telco APT
2019.11.05/DarkUniverse β the mysterious APT framework #27
2022.04.06/Continued Targeting of Indian Power Grid Assets by Chinese State-Sponsored Activity Group
2022.09.15/F5 BIG-IP Vulnerability (CVE-2022-1388) Exploited by BlackTech
2022.09.30/Amazonβthemed campaigns of Lazarus in the Netherlands and Belgium
2022.10.11/The Russian SpyAgent (Teamspy) β a Decade Later and RAT Tools Remain at Risk
2022.10.12/WIP19 Espionage | New Chinese APT Targets IT Service Providers and Telcos With Signed Malware
2022.10.12/Winnti APT group docks in Sri Lanka for new campaign
2022.10.13/Budworm: Espionage Group Returns to Targeting U.S. Organizations
2022.10.13/Alchimist: A new attack framework in Chinese for Mac, Linux and Windows
2022.10.14/New βPrestigeβ ransomware impacts organizations in Ukraine and Poland
2022.10.17/DiceyF deploys GamePlayerFramework in online casino development studio
2022.10.18/Unknown Actor: Powershell Backdoor disguising itself as part of a Windows update process
2022.10.18/Spyder Loader: Malware Seen in Recent Campaign Targeting Organizations in Hong Kong (Winnti)
2022.10.20/Domestic Kitten campaign spying on Iranian citizens with new FurBall malware
2022.10.21/WarHawk: the New Backdoor in the Arsenal of the SideWinder APT Group
Check it out here: https://vx-underground.org/malware.html
2013.03.20/The Teamspy Story
2013.03.20/Teamspy - Technical Report
2016.03.02/New selfβprotecting USB trojan able to avoid detection
2019.04.10/Gaza Cybergang Group1, operation SneakyPastes
2017.04.13/Teamspy - A deeper look into malware abusing TeamViewer
2017.04.14/PlexingEagle: A surprise encounter with a Telco APT
2019.11.05/DarkUniverse β the mysterious APT framework #27
2022.04.06/Continued Targeting of Indian Power Grid Assets by Chinese State-Sponsored Activity Group
2022.09.15/F5 BIG-IP Vulnerability (CVE-2022-1388) Exploited by BlackTech
2022.09.30/Amazonβthemed campaigns of Lazarus in the Netherlands and Belgium
2022.10.11/The Russian SpyAgent (Teamspy) β a Decade Later and RAT Tools Remain at Risk
2022.10.12/WIP19 Espionage | New Chinese APT Targets IT Service Providers and Telcos With Signed Malware
2022.10.12/Winnti APT group docks in Sri Lanka for new campaign
2022.10.13/Budworm: Espionage Group Returns to Targeting U.S. Organizations
2022.10.13/Alchimist: A new attack framework in Chinese for Mac, Linux and Windows
2022.10.14/New βPrestigeβ ransomware impacts organizations in Ukraine and Poland
2022.10.17/DiceyF deploys GamePlayerFramework in online casino development studio
2022.10.18/Unknown Actor: Powershell Backdoor disguising itself as part of a Windows update process
2022.10.18/Spyder Loader: Malware Seen in Recent Campaign Targeting Organizations in Hong Kong (Winnti)
2022.10.20/Domestic Kitten campaign spying on Iranian citizens with new FurBall malware
2022.10.21/WarHawk: the New Backdoor in the Arsenal of the SideWinder APT Group
Check it out here: https://vx-underground.org/malware.html
π4π₯3π1
Individuals from the Commonwealth of Independent States make up approximately 35% of our web traffic.
We have begun aggregating Russian papers from forums such as XSS, or from individuals who have translated papers for vx-underground.
Check it out here: https://www.vx-underground.org/russian.html
We have begun aggregating Russian papers from forums such as XSS, or from individuals who have translated papers for vx-underground.
Check it out here: https://www.vx-underground.org/russian.html
π₯°6π3
RJ Young, a company which provides managed IT solutions and "smart" security devices for businesses and schools, is being extorted by ALPHV ransomware group. ALPHV claims to possess 4TB of their data.
This is yet another example of ransomware groups targeting schools.
This is yet another example of ransomware groups targeting schools.
π’15π6π2
vx-underground Telegram chatroom link: https://t.iss.one/+njfLzUrqos01ZWNh
Behave and be polite.
Have a nice day.
Behave and be polite.
Have a nice day.
π19π2π1π©1
We've updated the vx-underground Malware Analysis collection. We've added 45 new malware analysis papers from the month of October.
We hope everyone is enjoying their Monday. Have a nice day.
Check it out here: https://www.vx-underground.org/malware_defense.html#malware_analysis
We hope everyone is enjoying their Monday. Have a nice day.
Check it out here: https://www.vx-underground.org/malware_defense.html#malware_analysis
π10β€8π₯2π1
Today the United States Department of Justice (DoJ) released documents regarding Mark Sokolovsky, 26, a Ukrainian national, for his alleged role in an international cybercrime operation known as 'Raccoon Infostealer'.
More information can be read here: https://www.justice.gov/usao-wdtx/pr/newly-unsealed-indictment-charges-ukrainian-national-international-cybercrime-operation
More information can be read here: https://www.justice.gov/usao-wdtx/pr/newly-unsealed-indictment-charges-ukrainian-national-international-cybercrime-operation
www.justice.gov
Newly Unsealed Indictment Charges Ukrainian National with
π€10π5π€‘1π1
Lockbit now has an anonymous pastebin and anonymous file sharing platform
π₯17π€7π2β€1π1
The staff of XSS appear to be mildly frustrated with Threat Intelligence companies scraping their forum.
They are now allowing companies the ability to scrape the forum for an annual fee of $2,000.
They are now allowing companies the ability to scrape the forum for an annual fee of $2,000.
π₯13π3π2β€1π1π1
We've made some cool additions to vx-underground
The Windows Malware paper collection now contains the Microsoft Windows Internals Video Series. This is a series of videos produced by Microsoft explaining various components of Windows!
Check it out here: https://www.vx-underground.org/windows.html#windows_internals_video_series
The Windows Malware paper collection now contains the Microsoft Windows Internals Video Series. This is a series of videos produced by Microsoft explaining various components of Windows!
Check it out here: https://www.vx-underground.org/windows.html#windows_internals_video_series
π15π3β€1π1
vx-underground
> crowdsource $2,000 annual XSS scraping fee > aggregate XSS content into vx-underground > make free and available to the public > anger every Threat Intel company on the planet
Meanwhile, XSS staff and forum members reading this message
π27π€‘9β€3π1
The New York Post has reported today they've been breached.
https://twitter.com/nypost/status/1585629621521100801
https://twitter.com/nypost/status/1585629621521100801
π₯°11π3π1
vx-underground
The New York Post has reported today they've been breached. https://twitter.com/nypost/status/1585629621521100801
How the New York Post discovered it had been breached
π€£41π7π3π2π₯°1π1