tl;dr 49,000,000 customer records stolen from DELL. Additional information and statistics in attached link.
May 9th DELL began sending notifications to customers stating their personal information was stolen in breach. Data stolen includes customer order data, warranty information, service tags, customer names, installation locations, customer phone number, and order number.
BleepingComputer spoke with the Threat Actor, operating under the moniker Menelik, who initially tried selling the stolen data. In summary, they became an authorized partner in 24hrs - 48hrs using (using presumably bogus information) and began brute forcing the DELL partner API with 7-digit service tags looking for valid data.
They reportedly were sending 5,000 API requests a minute for 3 weeks. DELL took no action stopping the API brute forcing.
Read the full story and get more information here: https://www.bleepingcomputer.com/news/security/dell-api-abused-to-steal-49-million-customer-records-in-data-breach/
May 9th DELL began sending notifications to customers stating their personal information was stolen in breach. Data stolen includes customer order data, warranty information, service tags, customer names, installation locations, customer phone number, and order number.
BleepingComputer spoke with the Threat Actor, operating under the moniker Menelik, who initially tried selling the stolen data. In summary, they became an authorized partner in 24hrs - 48hrs using (using presumably bogus information) and began brute forcing the DELL partner API with 7-digit service tags looking for valid data.
They reportedly were sending 5,000 API requests a minute for 3 weeks. DELL took no action stopping the API brute forcing.
Read the full story and get more information here: https://www.bleepingcomputer.com/news/security/dell-api-abused-to-steal-49-million-customer-records-in-data-breach/
BleepingComputer
Dell API abused to steal 49 million customer records in data breach
The threat actor behind the recent Dell data breach revealed they scraped information of 49 million customer records using an partner portal API they accessed as a fake company.
π€£84π9π₯7π€―6π5β€4π3π±2
vx-underground
tl;dr 49,000,000 customer records stolen from DELL. Additional information and statistics in attached link. May 9th DELL began sending notifications to customers stating their personal information was stolen in breach. Data stolen includes customer orderβ¦
When we initially heard the news about this breach it seemed insignificant because it was removed from Breached. Shout out to Lawrence Abrams and Bleeping Computer for doing their due diligence and researching this compromise more.
π47β€6π6π€£2π’1
One thing we have learned over the years is nerds hate ads. Nerds will fight you to death over ads.
We say this because it's been announced EA games will soon begin putting ads inside of their video games.
More information: https://www.tomshardware.com/video-games/ea-is-looking-at-adding-in-game-ads-in-aaa-games-well-be-very-thoughtful-as-we-move-into-that-says-ceo
We say this because it's been announced EA games will soon begin putting ads inside of their video games.
More information: https://www.tomshardware.com/video-games/ea-is-looking-at-adding-in-game-ads-in-aaa-games-well-be-very-thoughtful-as-we-move-into-that-says-ceo
Tom's Hardware
EA is looking at putting in-game ads in AAA games β 'We'll be very thoughtful as we move into that,' says CEO
"Advertising has an opportunity to be a meaningful driver of growth for us."
π€―81π’22π€£17β€7π3π€3π2π2
We've recently had an influx of people asking if @LockbitRewards on Telegram is the Federal Bureau of Investigation. Yes, it is actually the FBI. If you Google "LockbitRewards" you'll find it listed by the United States Department of Justice and United States Department of State.
If you decide to message them we advise you do not self-snitch. It is poor practice to openly admit crimes directly to the FBI.
(someone thought it was a gag account and was actually self-snitching)
If you decide to message them we advise you do not self-snitch. It is poor practice to openly admit crimes directly to the FBI.
(someone thought it was a gag account and was actually self-snitching)
π€£114π€36π9β€7π3π±3β€βπ₯2π«‘1
Hello, how are you?
Next week we have hundreds of malware reverse engineering papers to add, some malware development papers, and thousands of malware samples.
But, today is the day of rest. We will see all of you on Monday
Please don't do anything crazy.
Love you
Next week we have hundreds of malware reverse engineering papers to add, some malware development papers, and thousands of malware samples.
But, today is the day of rest. We will see all of you on Monday
Please don't do anything crazy.
Love you
β€130π14π7π€£4π«‘3β€βπ₯2π€2π₯°1π€1
Hello,
We've updated the vx-underground paper collection. We've added 118 new malware analysis papers courtesy of our friends at malpedia. It's too much to list, but it's a doozy.
New malware development papers:
- 2012-09-19 - Knockin on Heavens Gate - Dynamic Processor Mode Switching
- 2020-02-03 - Hooking Heavens Gate - a WOW64 hooking technique
- 2022-07-16 - Process Injection using QueueUserAPC Technique in Windows
We've updated the vx-underground paper collection. We've added 118 new malware analysis papers courtesy of our friends at malpedia. It's too much to list, but it's a doozy.
New malware development papers:
- 2012-09-19 - Knockin on Heavens Gate - Dynamic Processor Mode Switching
- 2020-02-03 - Hooking Heavens Gate - a WOW64 hooking technique
- 2022-07-16 - Process Injection using QueueUserAPC Technique in Windows
β€51π₯16π8π4π«‘1
Hello,
Exciting news.
In case you missed it, earlier today an individual requested a refund via PayPal for a vx-underground harddrive. They failed to read the e-mails we sent them. The PayPal inquiry hurt our wallet, because we don't have a lot of money.
In an extreme act of kindness many of you came together and donated money to us to make up for our loss. We made our money back in less than 30 minutes.
May 19th, on our 5 year anniversary, we are going to giveaway $1,000 of the limited edition vx-underground 5 year anniversary shirt (5 horsemen of the apocalypse, the attached image) and 1 vx-underground HDD (13TB of malware, all our papers, etc).
Thank you everyone for the supreme act of kindness. See you Sunday π«‘π«‘π«‘
Exciting news.
In case you missed it, earlier today an individual requested a refund via PayPal for a vx-underground harddrive. They failed to read the e-mails we sent them. The PayPal inquiry hurt our wallet, because we don't have a lot of money.
In an extreme act of kindness many of you came together and donated money to us to make up for our loss. We made our money back in less than 30 minutes.
May 19th, on our 5 year anniversary, we are going to giveaway $1,000 of the limited edition vx-underground 5 year anniversary shirt (5 horsemen of the apocalypse, the attached image) and 1 vx-underground HDD (13TB of malware, all our papers, etc).
Thank you everyone for the supreme act of kindness. See you Sunday π«‘π«‘π«‘
β€312β€βπ₯53π«‘38π€10π₯8π3π3π2π2π€1π€©1
Hello, how are you?
We've updated the vx-underground malware collection. Additionally, per request, we have shared some more photos of peoples pets. They asked that we share them and we happily obliged. Animals are cool and badass
Newly added:
- InTheWild.0123
- InTheWild.0122
- Virussign.2024.05.09
- Virussign.2024.05.10
- Virussign.2024.05.11
- Virussign.2024.05.12
- Virussign.2024.05.13
- Virussign.2024.05.14
- Virussign.2024.05.15
Total: 61,000+- malware samples
Have a nice day.
We've updated the vx-underground malware collection. Additionally, per request, we have shared some more photos of peoples pets. They asked that we share them and we happily obliged. Animals are cool and badass
Newly added:
- InTheWild.0123
- InTheWild.0122
- Virussign.2024.05.09
- Virussign.2024.05.10
- Virussign.2024.05.11
- Virussign.2024.05.12
- Virussign.2024.05.13
- Virussign.2024.05.14
- Virussign.2024.05.15
Total: 61,000+- malware samples
Have a nice day.
β€63π€16β€βπ₯8π₯°3π2π1π’1
Today a Threat Actor operating under the moniker IntelBroker, and (presumably) his associates, claimed to compromised Patriot Mobile.
Patriot Mobile has self-described itself as "America's only Christian, Conserative wireless provider" β based out of Grapevine, Texas.
The data exfiltrated is roughly 65,000 users PII which includes:
- Account PIN
- Full name
- Email
- Credit Score
- Address
- Date of Birth
- Last 4 digits of social security number
- Account balance
- Referrer
and more...
The information disclosed is not something terribly detrimental to the security of customers of Patriot Mobile. It's primary usage for abuse would be aiding in doxxing someone.
Although unrelated, this is the 2nd time recently where a conservative organization (the first being conservative news outlet The Post Millennial) was compromised.
After reviewing some of the exfiltrated data it is also mildly interesting that the website has checkout discount codes labeled: "Glenn Beck", "Donald Trump Jr.", "Blaze", and "Rightside Broadcast Network (Trump Rally)"
Patriot Mobile has self-described itself as "America's only Christian, Conserative wireless provider" β based out of Grapevine, Texas.
The data exfiltrated is roughly 65,000 users PII which includes:
- Account PIN
- Full name
- Credit Score
- Address
- Date of Birth
- Last 4 digits of social security number
- Account balance
- Referrer
and more...
The information disclosed is not something terribly detrimental to the security of customers of Patriot Mobile. It's primary usage for abuse would be aiding in doxxing someone.
Although unrelated, this is the 2nd time recently where a conservative organization (the first being conservative news outlet The Post Millennial) was compromised.
After reviewing some of the exfiltrated data it is also mildly interesting that the website has checkout discount codes labeled: "Glenn Beck", "Donald Trump Jr.", "Blaze", and "Rightside Broadcast Network (Trump Rally)"
π€£76π’14β€9π5π₯5π5π4π€1
Good morning,
Yes, we have heard the news about the owner of Doxbin allegedly being kidnapped and beaten. Yes, we have also received messages saying its a paid actor and an attempt to 'detrace' himself.
Thank you to everyone who notified us.
Love you β₯οΈ
Yes, we have heard the news about the owner of Doxbin allegedly being kidnapped and beaten. Yes, we have also received messages saying its a paid actor and an attempt to 'detrace' himself.
Thank you to everyone who notified us.
Love you β₯οΈ
π€55π€£19π€18β€10π8π’2
vx-underground
Good morning, Yes, we have heard the news about the owner of Doxbin allegedly being kidnapped and beaten. Yes, we have also received messages saying its a paid actor and an attempt to 'detrace' himself. Thank you to everyone who notified us. Love you β₯οΈ
Note: we don't know what's the truth and what isn't. It's Wednesday, my dudes
π€£63β€8π€8π4π±3π₯°2π2π1
Last post of the morning. We've got work to do.
tl;dr nerds enumerated the merch site trying to pre-buy the 5 year anniversary shirt. Some of you found it. If you try to buy it and it's botched that's on you. You can tell it's in the preview phase because BradleyVX wrote it's delivered by horse.
Why would you want to pre-buy an item that may not even be working? It says its delivered by a horse like it's the 1700's
You're all degenerates and we love you for it.
tl;dr nerds enumerated the merch site trying to pre-buy the 5 year anniversary shirt. Some of you found it. If you try to buy it and it's botched that's on you. You can tell it's in the preview phase because BradleyVX wrote it's delivered by horse.
Why would you want to pre-buy an item that may not even be working? It says its delivered by a horse like it's the 1700's
You're all degenerates and we love you for it.
π€62π€£32β€16π6
BreachForum has been seized again.
The current display page states the forum is now in control of the United States Federal Bureau of Investigation and is being reviewed.
It also displays a photo of the current administrators Telegram profile pictures, but behind bars.
The current display page states the forum is now in control of the United States Federal Bureau of Investigation and is being reviewed.
It also displays a photo of the current administrators Telegram profile pictures, but behind bars.
π€£197π’47β€12π₯8β€βπ₯5π€5π1π1π1π«‘1
Today has been a whirling wind of chaos.
tl;dr we don't know anything. We need solid proof.
First, earlier this morning the current owner of Doxbin, Operator, was allegedly beaten and kidnapped. Footage released by the would-be kidnappers shows, presumably Operator, tied to a pole and being punched and kicked. However, many viewers immediately expressed doubt on the footage and some said it's a 'detrace' operation β essentially an exit strategy for Operator.
We do not know the truth. We can only speculate. It is strange.
Secondly, BreachForum was seized today. Following the takedown there were lots of rumors floating around about Breach being a honey-pot, that key members have been arrested, etc. While this may certainly be true, there is no confirmation from law enforcement agencies on arrests or indictments. ShinyHunter, the other administrator of the website, has stated the other administrator, Baphomet, has been arrested. While we don't doubt this (ShinyHunter of all people would probably know), we would like an official Department of Justice announcement or court document confirming these statements.
What we can say though is that although Breach is gone, we are certain another forum will appear (eventually) to fill the power vacuum. It's only a matter of time.
Anyway, looking forward to Breach and/or Raid rebrand number 4!
tl;dr we don't know anything. We need solid proof.
First, earlier this morning the current owner of Doxbin, Operator, was allegedly beaten and kidnapped. Footage released by the would-be kidnappers shows, presumably Operator, tied to a pole and being punched and kicked. However, many viewers immediately expressed doubt on the footage and some said it's a 'detrace' operation β essentially an exit strategy for Operator.
We do not know the truth. We can only speculate. It is strange.
Secondly, BreachForum was seized today. Following the takedown there were lots of rumors floating around about Breach being a honey-pot, that key members have been arrested, etc. While this may certainly be true, there is no confirmation from law enforcement agencies on arrests or indictments. ShinyHunter, the other administrator of the website, has stated the other administrator, Baphomet, has been arrested. While we don't doubt this (ShinyHunter of all people would probably know), we would like an official Department of Justice announcement or court document confirming these statements.
What we can say though is that although Breach is gone, we are certain another forum will appear (eventually) to fill the power vacuum. It's only a matter of time.
Anyway, looking forward to Breach and/or Raid rebrand number 4!
β€90π€―20π18π€£17π«‘7π’5π₯3π€1π€1
User vxdb on Twitter is not associated with vx-underground. They just by chance have the letters "vx" in their name.
We have no affiliation with them.
Please stop asking us about their posts because we have no idea.
But, it is a cool Twitter handle though
We have no affiliation with them.
Please stop asking us about their posts because we have no idea.
But, it is a cool Twitter handle though
π75π€16β€12π7π«‘2π’1