Today the UKs National Crime Agency criticized Meta (formerly Facebook) for rolling out E2E encryption in their messenger. They state they will no longer be able to protect children... with encrypted Facebook Messenger
tl;dr fear mongering, can't spy on people as easily
https://twitter.com/NCA_UK/status/1732791116267704649
tl;dr fear mongering, can't spy on people as easily
https://twitter.com/NCA_UK/status/1732791116267704649
X (formerly Twitter)
National Crime Agency (NCA) (@NCA_UK) on X
Today, Meta has chosen to rollout end-to-end-encryption on Facebook Messenger, which means they will no longer be able to keep children safe on their platform.
Today, our role in protecting children from sexual abuse just got harder.
Full statement here:β¦
Today, our role in protecting children from sexual abuse just got harder.
Full statement here:β¦
π78π12π€£11π8π€6π―3π€1π€1
Our giveaway lineup:
December 8th: The Art of Malware Analysis course giveaway. 10 Tickets.
December 11th: Hands-On Kusto Query Language for Security Analysts. 2 Tickets.
December 12th: Certified Red Team Professional for on-prem Active Directory exploitation. 3 Tickets
December 13th: Certified Azure Red Team Professional for Azure exploitation. 3 Tickets.
December 14th: Evilginx Mastery Course. 10 Tickets
December 15th: $500 worth-of-books giveaway
Total money donated on educational courses so far: $32,108.64
December 8th: The Art of Malware Analysis course giveaway. 10 Tickets.
December 11th: Hands-On Kusto Query Language for Security Analysts. 2 Tickets.
December 12th: Certified Red Team Professional for on-prem Active Directory exploitation. 3 Tickets
December 13th: Certified Azure Red Team Professional for Azure exploitation. 3 Tickets.
December 14th: Evilginx Mastery Course. 10 Tickets
December 15th: $500 worth-of-books giveaway
Total money donated on educational courses so far: $32,108.64
β€120π₯22π12π€£6π€2π€―1
We brought 22 computer harddrives to the UPS store today 30 minutes before they closed.
The supervisor became visibly angry and refused to do it.
Hard drives will be mailed tomorrow =D
The supervisor became visibly angry and refused to do it.
Hard drives will be mailed tomorrow =D
π€£127π20π€5β€4
We are very disappointed with some of you. 5 individuals who were won the C5W DFIR course and exam prize did not reply and their prize was forfeited.
Β―\_(γ)_/Β―
Rerolling. Pay attention!
Β―\_(γ)_/Β―
Rerolling. Pay attention!
π±90π₯17π’12π€―10π€£5π3
vx-underground
We are happy to announce the winner to the CRTO course, exam, and lab! "seal", a teenager from Australia, is a great kid with a lot talent and drive. Congratulations on your win and future endeavours Extra special thanks to RastaMouse for sponsoring thisβ¦
We also want to give a shoutout to the many hundreds, over a thousand..., people who sent us e-mails. So many of you are incredible people who are passionate, driven, and wildly intelligent (probably way smarter than us...)
Shout out to:
- cyz1gy, we also love smelly cats, but not CS:GO
- Zoogs
- Liam, we can relate to you a lot more than you think and we love your honesty
- David - the nerd from New Jersey who is into video game hacking
- CooperTheFox7, for being way more intelligent and talented than all of us, congratulations on your academic achievements
- Sae3, you deserve so much and more, we promise to hook you up with something, we admire your ambition and drive
- Leonardo from Brazil, even though you didn't reply!
- Nicolas from Quebec, we understood you despite being tri-lingual
- Vincent from Sweden for swearing he isn't using ChatGPT
- David from Germany - we love you to death and we swear to hook you up something you deserve to be in IT
- Shreyas from India - shout out to you and your Father for the hardwork you both do. We know how hard it can be running a small-business.
- Hudson, even though you didn't reply to us!
- Mati from Argentina, we read your super long e-mail and we appreciate all of the kind things you said, it means a lot
- Smagul, we have a lot of friends in Kazahkstan and we promise to hook you up something. You deserve it.
Shout out to:
- cyz1gy, we also love smelly cats, but not CS:GO
- Zoogs
- Liam, we can relate to you a lot more than you think and we love your honesty
- David - the nerd from New Jersey who is into video game hacking
- CooperTheFox7, for being way more intelligent and talented than all of us, congratulations on your academic achievements
- Sae3, you deserve so much and more, we promise to hook you up with something, we admire your ambition and drive
- Leonardo from Brazil, even though you didn't reply!
- Nicolas from Quebec, we understood you despite being tri-lingual
- Vincent from Sweden for swearing he isn't using ChatGPT
- David from Germany - we love you to death and we swear to hook you up something you deserve to be in IT
- Shreyas from India - shout out to you and your Father for the hardwork you both do. We know how hard it can be running a small-business.
- Hudson, even though you didn't reply to us!
- Mati from Argentina, we read your super long e-mail and we appreciate all of the kind things you said, it means a lot
- Smagul, we have a lot of friends in Kazahkstan and we promise to hook you up something. You deserve it.
β€86π€£7π±6π5π€2
Hello, we're on giveaway #6 of ??? for this Holiday season. Once again, check out Twitter and blah blah blah, you get it. More giveaway spam.
https://twitter.com/vxunderground/status/1733407331893792862
https://twitter.com/vxunderground/status/1733407331893792862
X (formerly Twitter)
vx-underground (@vxunderground) on X
Giveaway #6
Hey, are you a nerd wanting to get into malware analysis? Cool, because we're doing a giveaway of "The Art of Malware Analysis", a course aimed for beginners and intermediate individuals.
We're giving away 10 vouchers. Comment below for a chanceβ¦
Hey, are you a nerd wanting to get into malware analysis? Cool, because we're doing a giveaway of "The Art of Malware Analysis", a course aimed for beginners and intermediate individuals.
We're giving away 10 vouchers. Comment below for a chanceβ¦
β€34π3
We have this weird fantasy where in the next 1 - 5 years there is a bunch of cyber security professionals who career started because of a bunch of nerds, with a shitty website, managed to gain enough internet clout to giveaway absurd amounts of educational material
β€βπ₯137β€18π14π«‘12π€8π₯°5π₯2
We have finally updated vx-underground. We are behind on several projects due to our holiday season giveaway stuff.
Summary of whats new:
1. We are aware our search functionality is botched. It is a work in progress. Relax, we will fix it (eventually).
2. New content additions:
- 20,000+ new malware samples courtesy of our friends at virussign
- 2019-11-12 - Threat Hunting In Calltrace
- 2021-01-29 - Hunting in the Sysmon Call Trace
- 2023-09-05 - Demonstrating MockingJay with a POC and BOF
3. New section created: we are working on archiving the research of zachxbt with a category labeled "Cryptocurrency Analysis" in /Papers/Other
Have a nice day.
Summary of whats new:
1. We are aware our search functionality is botched. It is a work in progress. Relax, we will fix it (eventually).
2. New content additions:
- 20,000+ new malware samples courtesy of our friends at virussign
- 2019-11-12 - Threat Hunting In Calltrace
- 2021-01-29 - Hunting in the Sysmon Call Trace
- 2023-09-05 - Demonstrating MockingJay with a POC and BOF
3. New section created: we are working on archiving the research of zachxbt with a category labeled "Cryptocurrency Analysis" in /Papers/Other
Have a nice day.
β€47π11π«‘4π2
The Windows Projected File System (ProjFS) is ripe for the pickin' (for malware)
https://learn.microsoft.com/en-us/windows/win32/projfs/projected-file-system
https://learn.microsoft.com/en-us/windows/win32/projfs/projected-file-system
Docs
Windows Projected File System - Win32 apps
Overview of the Windows Projected File System (ProjFS)
π38β€4
We've had a dozen or so people ask us about ALPHV and their sudden website outage.
1. We have NOT heard rumors of them being arrested, we also have NOT heard rumors of their servers being seized. The only mentions of these rumors are from other people asking us about these rumors. We cannot comment the legitimacy of these claims because we have no way to substantiate them.
2. ALPHV informed us they are experiencing hardware failure on their server. This is the 2nd or 3rd time this has happened (to the best of our knowledge). However, similar to bulletin #1, we cannot provide evidence of these claims other than this is what ALPHV has informed us.
It is our opinion that ALPHV is indeed experiencing issues with their hosting provider. But, this is just an opinion and we have been wrong many times.
tl;dr Β―\_(γ)_/Β― only time will tell
1. We have NOT heard rumors of them being arrested, we also have NOT heard rumors of their servers being seized. The only mentions of these rumors are from other people asking us about these rumors. We cannot comment the legitimacy of these claims because we have no way to substantiate them.
2. ALPHV informed us they are experiencing hardware failure on their server. This is the 2nd or 3rd time this has happened (to the best of our knowledge). However, similar to bulletin #1, we cannot provide evidence of these claims other than this is what ALPHV has informed us.
It is our opinion that ALPHV is indeed experiencing issues with their hosting provider. But, this is just an opinion and we have been wrong many times.
tl;dr Β―\_(γ)_/Β― only time will tell
π37π11β€7π€£3
vx-underground
We've had a dozen or so people ask us about ALPHV and their sudden website outage. 1. We have NOT heard rumors of them being arrested, we also have NOT heard rumors of their servers being seized. The only mentions of these rumors are from other people askingβ¦
In the spirit of full disclosure: we are busy with hard drives, performing these giveaways, and preparing for the general holiday season. We are not particularly concerned with a ransomware blog having technical issues
π38π8π€8π₯°5π4π€£3
Breaking!!!! 1336 hack in CS allows HAXKErs to do XSSg!!! SUPER DANGEROUS!!! donT CONNECT TO THE internet for They COuld steal YOUR skins!!!!
SOMEBODY DO SOMETHING
SOMEBODY DO SOMETHING
π€£154π±11π€9π8π€8β€7π€―6π5π₯2π«‘2π―1
Our DMs are completely destroyed. It is exceptionally difficult to have conversations and reply to people at the moment.
1. We have more giveaways coming (5+ more)
2. DO NOT DM US ASKING FOR STUFF
3. DO NOT DM US ASKING FOR STUFF
4. DO NOT DM US ASKING FOR STUFF
1. We have more giveaways coming (5+ more)
2. DO NOT DM US ASKING FOR STUFF
3. DO NOT DM US ASKING FOR STUFF
4. DO NOT DM US ASKING FOR STUFF
π38π―17π€£17π₯5π±3β€2
vx-underground
Our DMs are completely destroyed. It is exceptionally difficult to have conversations and reply to people at the moment. 1. We have more giveaways coming (5+ more) 2. DO NOT DM US ASKING FOR STUFF 3. DO NOT DM US ASKING FOR STUFF 4. DO NOT DM US ASKING FORβ¦
Seriously, we say 'comment on the tweet for a chance to win'. If you DM us a whole shakespearean speech on why you deserve to win we will orbital nuke you
π€£85π₯15β€7π5π₯°5π’2
Giving away $800 of vx-underground merch on Twitter for Christmas / holiday season
https://twitter.com/vxunderground/status/1734673266357186847
https://twitter.com/vxunderground/status/1734673266357186847
X (formerly Twitter)
vx-underground (@vxunderground) on X
Who wants vx-underground merch for Christmas?
(It'll probably arrive way past Christmas due to increased volume in shipping, but whatever)
Comment on this tweet with what you want and what size. We'll give away like, $800 in merch or something
(It'll probably arrive way past Christmas due to increased volume in shipping, but whatever)
Comment on this tweet with what you want and what size. We'll give away like, $800 in merch or something
β€48π4β€βπ₯1π₯°1π€1
Researcher discovers XSS/CSRF abusing undocumented features in Twitter analytics.
Thread shows full JS exploit chain to hijack users accounts by having them click a link.
Β―\_(γ)_/Β― Another day in Shangri-La
https://twitter.com/shoucccc/status/1734802168723734764
Thread shows full JS exploit chain to hijack users accounts by having them click a link.
Β―\_(γ)_/Β― Another day in Shangri-La
https://twitter.com/shoucccc/status/1734802168723734764
π€£55π₯10π«‘7π€2π1π1
1. We are now selecting individuals to win vx-underground merch. We are choosing random people in blocks of 10. Pay attention!
2. More giveaways tomorrow
3. Yes, we know the RansomwareNewsBot on Twitter is still down. The developer traveled to the UAE and disappeared. Not joking.
2. More giveaways tomorrow
3. Yes, we know the RansomwareNewsBot on Twitter is still down. The developer traveled to the UAE and disappeared. Not joking.
β€74β€βπ₯10π±8π5π5π€2π1