Why does vx-underground archive The Old New Thing? This is why:

Yesterday Yandex's Git repository was leaked. It has resulted in dozens of hardcoded credentials being exposed.

Since we shared news on the Riot games breach we have seen a flood of League of Legends players. They are funny.

HIVE ransomware group's Tor domain has been seized by EUROPOL

*No official announcement yet from United States Department of Justice or EUROPOL

The United States Department of Justice has stated in their official press conference, regarding the disruption of HIVE ransomware group infrastructure, that they "hacked the hackers" to disrupt their operations and infrastructure. They state they have decrypted 1,500 companies.

This is the 2nd time, that we are aware of, that the United States Department of Justice, has admitted to using offensive operations to take down, or disrupt, ransomware groups.

The DoJ has announced that they are now focusing their efforts on HIVE affiliates and developers.

The United States government has admitted, for the 2nd time, to utilizing offensive operations against ransomware groups

tl;dr ransomware group with 24/7 SOC

Conspiracy theories galore online right now as people speculate that the NSA used a 0day exploit to compromise HIVE. Others suggest it was an inside job - an admin at HIVE leaked information to EUROPOL agents.

Reality: Phishing (probably)

Ransomware group comment to the HIVE take down:

ALPHV: This would not work on us, we have too strong security and we do not store anything on our servers

BianLian: Too bad. I think they will be restored under a new name

Lockbit: Nice news. I love when FBI pwn my competitors

The Yandex leak has shown that Yandex uses racial slurs as variable names.

Text translation:

Github: We renamed Master to Main so it is not associated with racism

Yandex:

What the hell is wrong with you nerds?

It is of the utmost importance we relay this information to all of you:

Yandex confirms usage of racial slurs in company source code. Yandex states the code which uses racial slurs did not affect company services (?), and was only used internally. They stated the racial slurs violate company policy and have apologized

https://cyberscoop.com/racial-slurs-discovered-in-leaked-yandex-source-code/

We've updated the vx-underground malware sample collection

- Virusshare.00456
- Virusshare.Android.APK.2022
- 36,260 new malicious binaries added
- All named using Kaspersky naming convention

Check it out here: https://samples.vx-underground.org/samples/Blocks/

General updates:

- 45TB+ of data delivered in the past 28 days
- 95% completion of The Old New Thing archive
- 15% of malware collection synced with Tria.ge
- ???

Sebastien Raoult, an alleged member of ShinyHunters group, has been extradited from Morocco following a request from the United States government. He is currently in Seattle, Washington.

He is facing 116 years in prison. He has plead not guilty.

https://www.justice.gov/usao-wdwa/pr/alleged-french-cybercriminal-appear-seattle-indictment-conspiracy-computer-intrusion

There is a very real possibility that sometime in the future, your children, or grandchildren, will ask if you've ever heard of vx-underground.

You can happily tell them you followed us from our beginnings on Telegram.

They will respond with: "what the hell is a Telegram?"