14367
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
We don't do any exploit stuff, but anytime we leave malware-city and swing on down to exploit-dev-and-blue-team-ville we always see people discussing pretty much the same stuff.
Читать полностью…
Potentially related to cybersecurity, illustrative of the shift toward AI and the impact it makes on people.
Yesterday and today multiple media outlets have begun publishing articles surrounding the death of a 14-year-old boy in Florida who took his own life after falling in love with a Game of Thrones role-playing AI.
The young man had expressed suicidal ideologies toward the AI in which the chat bot informed him to 'come home'. The young man took his own life using his step-fathers gun.
The teenagers mother is suing the AI company, Character-dot-ai for unspecified damages. The company has offered their condolences to the family. People online have had mixed reactions, some blame the company, others blame the parents.
Principal**
Sorry, we can't spell or read or write
wtf the family and i just went to mcdonalds and we found c++ boost libraries in our food
Читать полностью…
We're not going to do cybercrime to pay for medical bills. We're joking — attempting to convey how bad it feels to see these outrageous medical bills
Regardless, we wouldn't do ransomware. We have standards. We would be like normal everyday Americans and commit violent crimes.
Microsoft is introducing "AI employees"
/me sighs
https://www.theguardian.com/technology/2024/oct/21/microsoft-launches-ai-employees-that-can-perform-some-business-tasks
Today the United States Securities and Exchange Commission charged four companies for intentionally misleading investors about the severity of the SolarWinds breach.
In or around September 2019, APT29 a/k/a Cozy Bear a/k/a Turla Group compromised United States-based network monitoring company SolarWinds. The compromise resulted in one of the largest Supply-Chain attacks in history when the state-sponsored group began slipstreaming malicious payloads into the SolarWinds Orion toolset updates.
The United States Securities and Exchange Commission has issued the following fines:
- Unisys, an information technology service and consulting company : $4,000,000 fine
- Avaya, a company with provides cloud services and workplace collaboration services: $1,000,000 fine
- Check Point Software, a provider for hardware and software cyber security solutions: $995,000 fine
- Mimecast, a cloud-based email management company: $990,000 fine
wHy DoNt u Do UpDatEs DaiLy
Because we're constantly ingesting malware and papers. We prefer to do a weekly, or bi-weekly, or whatever, large update. It's easier.
In the meanwhile we'll just talk about criminal stuff and post dumb pictures.
Thank you for your support.
Also, thank you to the people for sending us photos of their critters. We have seen your messages. We appreciate you and your animals thinking of us.
- ahhahahhhaha
- 0xAm03113
- SariBezliGurme
- Z3r0n37
- jamiedukee
- _Catal1n
- enigmatikk_
- DevourYourNan
- BigDeuce814
- Chromium_uwu
- w2ppx
- _sem_e
- NSAShips
- ballsplate
- aylacroft
- rtaqqqq
- ArkovFR
- brend000000
- Biggiefat39
- 0xDEC0DED
- thy_cs6
- VesiRott_
We have a profound respect for the video game cheat makers and video game reverse engineers.
The video game cheat producers and video game reverse engineers are very much disenfranchised by the information security community.
There is an innate bias and condescending tone directed toward them because of the dislike of video game cheaters and the false belief that this skillset (video game reverse engineering) is not an applicable skillset in real-world scenarios. This cannot be further from the truth.
Individuals capable of reverse engineering video games and developing cheats for them are lethal. These people can easily transfer and apply this skillset to targeted application exploitation or weaponization.
We've had the privilege of conversing with some truly special and gifted young people. Unfortunately, we are not privy with this community in totality, but we wanted to take this moment to express our gratitude to people such as daaximus, JustasMasiulis, and namazso.
We have witnessed these individuals make considerable contributions to recent trendy research topics and, in our opinion, have been given insufficient credit for their work. Very few people seem to realize these people have been core contributors to recently re-discovered (or newly announced?) process injection techniques. Additionally, Namazso is in essence the primary person who produced code and information on the recent trend of stack spoofing.
Much love and respect to these people. We see you. We hope others do too. 🫡
Good morning, evening, or night.
We've made a large update to vx-underground. The initial update posted resulted in two posts — sorry.
Attached is a list of all additions.
Have a nice day,
why can't i hold all these malicious windows binaries
Читать полностью…
If you nerds forgot: there was indeed ransomware which targeted chastity belts. We have the source code.
It's Trojan-Ransom.Python.ChastityLock in the Python directory.
https://github.com/vxunderground/MalwareSourceCode
Today Namecheap launched the new TLD .locker
They state it is for people involved in Bitcoin, DeFi apps, and online gaming. In other words, it is perfect for ransomware groups.
Very cool.
> make thousands of typos
> no one bats an eye
> confuse Principle or Principal
> get eaten alive in the comments
We've been informed teenagers are now carving vx-underground into their desks at school.
We're going to report you to the Principle >:(
Malware is illegal and for nerds
Just kidding, we're tubby, no violent crimes either.
Relax, FBI.
It's all over for early-to-mid-2000's mall goths.
A Threat Actor operating under the moniker 'Satanic' claims to have compromised HOTTOPIC and exfiltrated information on 350,000,000 customers.
https://www.infostealers.com/article/largest-retail-breach-in-history-350-million-hot-topic-customers-personal-and-payment-data-exposed-as-a-result-of-infostealer-infection/
> be american
> need medical stuff done
> get estimated cost of $70,000 (with insurance)
this ransomware thing is starting to make a whole lot more sense
Someone found more vx-underground graffiti in Bletchley, England.
You nerds are gonna make law enforcement think we're a cult or a gang 😭😭😭
Xitter Grok AI summary of vx-underground.
Everything listed in this was mentioned in some capacity over the years of our existence. Someone, somewhere, is training off our stuff.
Thank you to the person who made this. It is very cute. It is appreciated.
Читать полностью…
We were told that our memes are "cringe" and read like they're written by a middle-aged man. Those criticisms are accurate — they are indeed cringe and the average age of vx-underground staff members is like, 35. We're not cool and young, we're old and achy
Читать полностью…
We're sending somewhere between 10 to 20 files per second to VirusTotal — a little over 2,000,000 API requests per day.
Читать полностью…