Multiple Threat Intelligence and Anti-virus vendors have noted the rise of the MaaS Rhadamanthys Stealer. Rhadamanthys is noted as trafficking itself through malicious Google ads targeting AnyDesk, Zoom, Bluestacks, Notepad++, OBS, and more.

It also has a hard to remember name

Interview with a Russian ransomware operator arrested in Russia for attacking Western organizations

2023 is going to be a big year for vx-underground. Besides the continual increase in malware samples, source code, and papers, we also intend on publishing 2 (maybe even 3!) books.

Also, as a reminder, we offer free malware database access to students of all ages

We are also discussing changing the website (again) to accommodate it's growth. Pages are too big and have too long of lists. The website will remain as grungy HTML, no flashy BS, WordPress, whatever. We just need to be better organized.

Have a nice day.

T mobile confirms it was breached (again) for the 6th.. or 8th time? Since 2018? We've lost count.

As Threat Actors continue utilizing Google-based malvertising campaigns - vx-underground has decided to step up to the plate and unveil a 1 of a kind solution to stop these nerds. Introducing ... an adblocker!

tl;dr we've done it, we've stopped cyber crime and saved the planet

Threat Actors when they see Google has laid off 12,000 employees, some of which are probably responsible for Google adwords

Current projects:

- Papers will be listed with an associated date of release (see attached image below)
- Continue archiving "The Old New Thing"
- Work on syncing data with HatchingTriage and HybridAnalysis
- Give more people access to our Malware Database

People new to Information Security will put literally anything on their LinkedIn to get more credibility

We've made some small updates the vx-underground Malware Source Code repository on GitHub

- Win32.SkypeSpam
- Win32.FakeEmulator
- Domain.Solaris.DarkWebForum

https://github.com/vxunderground/MalwareSourceCode

Recently an incredibly large Information Security company contacted vx-underground about sponsoring us.

As you can see from the attached image below - we are the pinnacle of professionalism.

We have closed the Telegram chatroom. Too many people argued, evaded the rules, or continued to express racist ideologies. We do not have the time or resources to moderate a chatroom closely.

tl;dr you nerds couldn't behave and now it is closed.

Have a nice day.

Grand Theft Auto V has been assigned CVE-2023-24059 for containing a partial Remote Code Execution exploit

More information: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24059

Grand Theft Auto Online community discussion: https://www.reddit.com/r/gtaonline/comments/10hsosu/mass_reporting_the_dangerous_pc_exploit/

Due to the absurd volume of people DMing me - we have re-opened the chatroom. We are in search of moderators who will actively monitor chatroom and nuke nerds who disobey the rules.

Here, have your dumb chatroom back, please stop asking us about it: https://t.iss.one/+80U_oTH2thk3ZDYx

APT groups do not need to commit espionage to monitor foreign military threats. All that is required is making a WarThunder forum account

January 18th: Microsoft announces 10,000 employees will be terminated

January 23rd: Microsoft to invest $10,000,000,000 into ChatGPT

Yesterday someone claimed to have successfully breached vx-underground.

They sent us footage of the attack. We have no idea what is going on in this footage.

Video link: https://streamable.com/6nnhd3