Today Mastercard bought Cyber Threat Intelligence company RecordedFuture.
Why did a payment service provider acquire a threat intelligence company? Well, it's very simple — we don't understand it at all, but we assure you it's very simple, probably.
"They're putting infostealers in the water, they're making the frogs rich" - Alex Jones if he worked in Cyber Threat Intelligence
Читать полностью…Today the United States Department of Justice announced the conviction of Remy St. Felix. St. Felix is accused of being the mastermind behind a string of violent home invasions targeting individuals possessing large quantities of cryptocurrency.
Prosecutors state St. Felix targeted crypto holders in North Carolina, Florida, Texas, and New York.
Due to the violence of the actions — including assaulting victims, zip-tying them, holding them at a gunpoint, and threatening to murder their family, St. Felix is facing charges for; conspiracy, kidnapping, Hobbs Act robbery, wirefraud, and brandishing a firearm in furtherance of a crime of violence. He is facing a maximum sentence of life in prison.
More information: https://www.justice.gov/opa/pr/man-convicted-violent-home-invasion-robberies-steal-cryptocurrency
tl;dr it's cool and badass when your car parses your conversations to determine vehicle passengers, passengers name, locations, traveling speed, objects of interest around them, road conditions, traffic, etc. then sells it to advertisers and data collection groups
Читать полностью…Updates:
Administrative:
- We're still in the process of correcting our downstream mass-oopsie we performed. We identified over 500,000 corrupt malware samples we shared ... we accidentally prepended 'file=' in the raw binary data. Oops. We're almost done restoring all the damage we've caused. It's only taken us 8 days++--;
- All harddrive purchases from April, 2024 have been finalized. Moving forward all drives will be pre-cloned so there is no waiting period — we just mail it out. We're learning, kind of.
Families:
- AgentTesla
- Android.Anubis
- Android.Joker
- Android.SpyNote
- AsyncRAT
- BatchWiper
- FormBook
- GPCodeRansomware
- LockbitRansomware
- Mirai
- RedLine
- Remcos
- SkuldStealer
- SnakeKeylogger
- Turla
- XenoRAT
- XWorm
Schools need to stop teaching kids malware is like, 'trojans', and 'worms', etc. It's not 1996 anymore.
New malware types:
- Ransomware
- Loaders
- Information Stealers
- Piles of shit that doesn't work
- RATs
Good morning, evening, or night.
Instead of working today we're just going to scream out the window as loud as possible.
Thanks,
This person is lying on their resume and claiming to work for vx-underground. It makes zero sense.
1. vx-underground doesn't have contractors.
2. We don't have a security strategy
3. We don't have any sort of policies... or policy management
4. We don't do risk management, or risk assessments
5. We don't do compliance stuff. We have nothing to comply with
6. We don't do incident response
7. We don't do security awareness training
8. We don't deal with vendors
9. We don't do security monitoring, there is nothing to monitor
10. We don't do any sort of security governance, there is no one to report security governance to
11. We don't do continuous improvement
vx-underground is a free website, not a fortune 500 company.
BREAKING: We've just been informed this was stolen from nixcraft and given to us. Nixcraft, we're so sorry, please don't beat us up after school
Читать полностью…Hello,
Just because you did 1 thing for me 1 time does not make you a core contributor, volunteer, or member. It does not mean you're my friend, it does not mean you can list me as a reference.
Wake up. Stop making this weird.
We've had like, 6 people now say they're part of vx-underground because they personally assisted me like, one time, 3 years ago.
It's called doing someone a favor. It doesn't mean you can put it on a resume.
Also, these companies do background checks, and when they contact me via e-mail, or Telegram, or Discord, and say "do you know this person?" and send me your resume and photo, it makes you look like a giant jackass when I have to say "I have no idea who that is"
-smelly
Updates to vx-underground:
*Note: Image of cat used per request. Not all requests are granted, but this is a wizard kitty.
Archive:
- The Old New Thing, July 2024
- The Old New Thing, August 2024
Papers:
- 2024-09-04 - Rundll32 and Phantom DLL lolbins, 32-bit version
- 2024-08-10 - Sneaking around with Web Assembly
- 2024-08-04 - WhenFS - Using Google Calender as a Filesystem
- 2024-08-02 - Using Windows Setup for persistence
- 2024-07-01 - Booting Linux off of Google Drive
- 2024-06-11 - Lets Go into the rabbit hole part 2 - the challenges of dynamically hooking Golang programs
- 2023-10-03 - Lets Go into the rabbit hole - the challenges of dynamically hooking Golang programs
The United Kingdom's National Crime Agency released a statement today.
On September 5th, the individual believed to be responsible for compromising TfL (Transport for London) has been apprehended.
More information:
https://www.nationalcrimeagency.gov.uk/news/arrest-made-in-nca-investigation-into-transport-for-london-cyber-attack
how to write cool malware
1. come up with idea
2. write basic shit code, hurts eyes
3. refine it, make less ugly
4. slowly increase complexity
5. refine it, make it beautiful
6. release it, pretend to understand it
Hello,
We've finished correcting the colossal oopsie we created. We're in the process of correcting the MalwareIngestion bulk releases.
Files are being synced on VirusTotal again.
tl;dr back to getting millions of malwares
Someone tailgating you? Sitting in traffic and bored? Say no more, fam. Thanks to HengersCS you can now educate people on the password while driving.
Читать полностью…Today TheRecordMedia released an article regarding Ford's new patent: targeted advertisements by actively monitoring and listening to passengers conversations.
It sounds bad, but reading the article it's actually x100 worse.
More information: https://therecord.media/ford-patent-application-in-vehicle-listening-advertising
Win32.PileOfShit.xy-4aed2e104fbcf37c57b6f1039541de2d8e0898b26353f5dab9bc5a9a10f47744
Читать полностью…"why do you guys make such weird posts??"
Because we've been discussing malware, collecting malware, writing malware, reversing malware, reviewing malware, reading about malware — anything and everything malware for years.
It has fundamentally corrupted our minds
Airliners now let you sit on the wings of the aircraft (or maybe this is a bug in the ticket purchasing software, hard to tell)
Читать полностью…Dear gay4smellyvx,
It was a truly epic gamer move that you were cheating in Call of Duty. We're sorry for your loss.
R.I.P.
Babyvx is currently compiling. However, the compiler is poorly optimized and the estimated time remaining is roughly 6.5 months.
Читать полностью…Dear 'gay4smellyvx'
Yes, we can see your friend request and user activity. We will allow you to continue using your Call of Duty account — you're a funny person.
One time a high ranking official for the United States National Security Agency made a post on Twitter about memes.
We sent them a private message. They never responded.
This is the video we sent: