We understand and apologize to our non-Native English speaking friends.
We realize English can be weird when sentences like this make sense:
"Those fuckin' muthafuckers, always fuckin' fucking around. Fuckin' fucking with their fuckin' fucked shit.".
We realize English can be weird when sentences like this make sense:
"Those fuckin' muthafuckers, always fuckin' fucking around. Fuckin' fucking with their fuckin' fucked shit.".
π136π€£57β€14β€βπ₯7π7π€―7π€5π€3π’1π«‘1
Today the Dutch National Police, in conjunction with the FBI, disrupted the operations of Redline information stealer and Meta information stealer.
It was named Operation Magnus and it had an official website.
operation-magnus.com
It was named Operation Magnus and it had an official website.
operation-magnus.com
π60π’18π€8π4β€1
vx-underground
Today the Dutch National Police, in conjunction with the FBI, disrupted the operations of Redline information stealer and Meta information stealer. It was named Operation Magnus and it had an official website. operation-magnus.com
It has an official website***
Way too early for European law enforcement to be taking down MaaS operations.
Way too early for European law enforcement to be taking down MaaS operations.
π€£55β€6π5π2π’1
Media is too big
VIEW IN TELEGRAM
The video released by the Dutch National Police and United States Federal Bureau of Investigation comes across as like, a TikTok video or something.
10/10 "VIP, Very Important to Police"
10/10 "VIP, Very Important to Police"
π95π€£41π6β€3π₯°3π3π₯1π’1
vx-underground
We reached out to the law enforcement officials behind Operation Magnus (we sent them a silly picture of a cat).
Hahahahahahahaha
π€£282β€14π9π€4π’2
The Simland Telegram channel was banned on Telegram β although a new one has already been created.
Following the arrest of Pavel Durov in France, Telegram users are reporting a significant increase in Telegram taking action on crime-related channels.
Following the arrest of Pavel Durov in France, Telegram users are reporting a significant increase in Telegram taking action on crime-related channels.
π’142π€£61π19π«‘11π€7β€5π3π―3π€3π1
Through a series of unfortunate events, additions to vx-underground are going to be dead in the water.
We've got 99 problems and they're all things not on the internet. Our AFK-ness could extend for a week, maybe 2.
We'll just shit post when we have the time.
Thanks,
We've got 99 problems and they're all things not on the internet. Our AFK-ness could extend for a week, maybe 2.
We'll just shit post when we have the time.
Thanks,
π122π’67π«‘37β€33π€£7π±6π6π€3π€3π2π€―1
vx-underground
Through a series of unfortunate events, additions to vx-underground are going to be dead in the water. We've got 99 problems and they're all things not on the internet. Our AFK-ness could extend for a week, maybe 2. We'll just shit post when we have theβ¦
We're not shutting down.
We're just going to be AFK so additions are suspended for a little bit.
We got a few DMs from people acting like the world is ending (it's not)
We're just going to be AFK so additions are suspended for a little bit.
We got a few DMs from people acting like the world is ending (it's not)
β€153π€£19π€15π«‘8π’7π±5π―5β€βπ₯4π₯3π€1
The Russian Federation has fined Google $20,000,000,000,000,000,000,000,000,000,000,000.
To point that into perspective: yo momma
To point that into perspective: yo momma
π281π€£145π€36π16β€10π₯10π’4π«‘4β€βπ₯3π3π±2
wtf just found lumma stealer in candy
π€124π±46π37π₯8π€8β€5π€―4π«‘4π―3π’2π2
This media is not supported in your browser
VIEW IN TELEGRAM
please do not feed the NFT influencers
π76π36π₯10π€£10β€6π₯°2π2π€2π’2π―1π«‘1
October 30th Okta disclosed a vulnerability whereas individuals could bypass AD/LDAP Delegated Authentication by providing a username greater than 52 characters.
It required a cached previous success login attempt.
tl;dr employees with long last names are a security threat
It required a cached previous success login attempt.
tl;dr employees with long last names are a security threat
π€£144π₯7π―7π«‘3β€2π2π’1
vx-underground
October 30th Okta disclosed a vulnerability whereas individuals could bypass AD/LDAP Delegated Authentication by providing a username greater than 52 characters. It required a cached previous success login attempt. tl;dr employees with long last names areβ¦
Hispanic users with 30 last names (all hypenated) && Eastern Europeans users with ski and/or vich and/or ska in their name
π€£123π«‘13π9π2π€2β€1π₯°1π1π’1π1
Only a few more days of misinformation campaigns in the United States (it'll be back shortly after)
π62π18π―9π€£6π€4π₯°2π’2π1π1π€1
Interesting things that happened lately:
October 31st: safe0x17 released RustVEHSyscalls, a Rust port for LayeredSyscalls β performs indirect syscalls while generating legitimate API call stack frames by abusing VEH
October 30th: FeribHellscream released a paper on forming a shell company and attempting to purchase an EV code sign cert (it's not fun)
October 29th: 404mediaco received a leaked document from the largest New York hospital system β the document encourages physicians to use Artificial Intelligence to summarize clinical evaluations, diagnose medical issues, and parse health records
October 29th: BratvaCorp noted based on the recent United States Department of Justice indictment of Redline information stealer developers β the authors of Redline connected to their platform from their home IP addresses and linked assets to their personal iCloud accounts.
October 27th: MalDevAcademy released a proof-of-concept code illustration of extracting an encrypted and embedded PE file from a PNG file and executing it via a LNK file.
October 23rd: SttyK released a talk on how he discovered North Korean state-sponsored spys on Discord.
October 22nd: 0gtweet released a paper on on how to read BitLocker numerical passwords via the Windows API.
October 22nd: mez0 via TrustedSec released a paper on malware development via the Groovy programming language and it's usage in network enumeration.
October 19th: Hexacorn discovered a new malware persistence technique by abusing the UserInstStubWrapper API in advpacker.dll and IEAdvpacker.dll
October 18th: Hexacorn notes the discovery of 'ClickedOnRAT' windows API function from Windows XP. It's not related to malware, the API name is silly and misleading.
October 18th: Hexacorn unveiled a prankware technique by abusing NdfRunDllDuplicateIPDefendingSystem and NdfRunDllDuplicateIPOffendingSystem
October 31st: safe0x17 released RustVEHSyscalls, a Rust port for LayeredSyscalls β performs indirect syscalls while generating legitimate API call stack frames by abusing VEH
October 30th: FeribHellscream released a paper on forming a shell company and attempting to purchase an EV code sign cert (it's not fun)
October 29th: 404mediaco received a leaked document from the largest New York hospital system β the document encourages physicians to use Artificial Intelligence to summarize clinical evaluations, diagnose medical issues, and parse health records
October 29th: BratvaCorp noted based on the recent United States Department of Justice indictment of Redline information stealer developers β the authors of Redline connected to their platform from their home IP addresses and linked assets to their personal iCloud accounts.
October 27th: MalDevAcademy released a proof-of-concept code illustration of extracting an encrypted and embedded PE file from a PNG file and executing it via a LNK file.
October 23rd: SttyK released a talk on how he discovered North Korean state-sponsored spys on Discord.
October 22nd: 0gtweet released a paper on on how to read BitLocker numerical passwords via the Windows API.
October 22nd: mez0 via TrustedSec released a paper on malware development via the Groovy programming language and it's usage in network enumeration.
October 19th: Hexacorn discovered a new malware persistence technique by abusing the UserInstStubWrapper API in advpacker.dll and IEAdvpacker.dll
October 18th: Hexacorn notes the discovery of 'ClickedOnRAT' windows API function from Windows XP. It's not related to malware, the API name is silly and misleading.
October 18th: Hexacorn unveiled a prankware technique by abusing NdfRunDllDuplicateIPDefendingSystem and NdfRunDllDuplicateIPOffendingSystem
π€53π€13β€5β€βπ₯4π4π’3