14367
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
Our engagement numbers have dropped a staggering 27% this month. The primary difference has been a shift away from discussing cybercrime (primarily due to fatigue).
You're all degenerates and thoroughly enjoy internet cybercrime TMZ.
God bless them, we're happy you got a job. But don't forget your roots (poor, depressed, addicted to amphetamines and pushing good work).
Читать полностью…
In honor of Cybersecurity Awareness Month we are issuing a challenge!
All of you (yes, even you) have to get 1 malware.
1 malware = 1 awareness
Good luck!!!!!1
Hello.
It is now Cybersecurity Awareness Month. Some organizations less privy to Cybersecurity often label this month "CSAM" month.
Please do not call it CSAM month. Call it CSA month. CSAM is something entirely different.
Thanks,
SEE THIS? UR FUNDING THIS MANS CAMPING TRIPS WITH HIS FRIENDS AND FAMILY. THEY EVEN GOT A BOAT AND A USED JEEP CHEROKEE
Читать полностью…
Someone told us to check it out and give our input. It's not related to malware, not a compromise or anything.
It's also giant walls of text from all over the place.
tl;dr not reading all that
Hi,
If you like what we do (the free malware papers, samples, whatever) please consider being a monthly donor. Or do a 1 time donation. Or buy a shirt or something and scare your family.
Thanks,
Thank you to everyone for the love and support on Telegram.
We've broken 40,000 subscribers. That's a lot.
We look forward to continually serving you with malware source code, samples, papers, news, and shitposts.
Love you
A few years ago there was a person who got a scholarship for their contributions to open source software.
This person spent a majority of their time changing indentations and correcting typos. The university never reviewed the contributions.
We still think about it sometimes.
x2 fun multiplied!
Bonus points is when someone heavily borrows from your code, or copy pastas, but markets it heavily on LinkedIn and gets nominated for an award and wins it.
It's about doing it for the love of the game — not the money, fame, and anime.
Anyway, we've got a large update coming soon. It's gonna be another big one, so hold onto your horses, or whatever they say.
Читать полностью…
🚨BREAKING 🚨
Kitten Tempest has been observed enhancing it's TTPs.
Trying to use a different tool**.
Apologies — currently posting from Walgreens restroom.
Edit: we're being told EvilSocket didn't define the vulnerability as a 9.9, someone else did (RedHat) and they went with it. No idea if that's true, we don't know whats real anymore because everyone is yappin.
We're going back to bed
The cycle of the malware researcher:
> randomly appears on social media
> showcases their research
> publishes a few high quality articles
> gets offered job
> disappears
> no more public research
We've seen this probably 50 times now, no exaggeration.
TIL: CSA is also a no-no acronym. New solution: dissolve Cybersecurity Awareness Month altogether
Читать полностью…
More arrests for Lockbit today.
Evidence unveiled shows a relationship between Lockbit and EvilCorp. However, the details remain a little fuzzy.
None of this is surprising, it's part of the cybercrime ecosystem.
It's Monday.
Today the United States Federal Bureau of Investigation and United Kingdom National Crime Agency decided to continue hitting Lockbit ransomware group with sticks.
As the image illustrates: they've arrested more Lockbit affiliates and taken down more infrastructure
While we understand what the FBI is trying to convey — is owning a camper and a small boat really that luxurious? That seems like, a slightly above average, moderately successful lifestyle. But it isn't flashy or extreme.
Читать полностью…
Update time.
It's so large I've gotta put it in a text file for Telegram
Our upcoming update to vx-underground is so large it may require a text file upload on Telegram, and an article written on Xitter.
Just writing all the additions will take time 😭😭😭
Hacking is boring.
Wanna know what's fun? Browsing MSDN documentation at 2 o'clock in the morning, looking for APIs to potentially abuse in malware. It'll also probably never go in the wild and it'll go unappreciated for several months or even years.
That's where the fun is
> see cups vulnerability trending on xitter
> *click*
> nothing but arguing and name calling
> *scroll*
> printers not working on linux memes
> *scroll*
This is misinformation.
This is actually Kitten Tempest. A financially motivated Threat Actor being monitored by Microsoft Threat Intelligence.
Hello,
We're aware of a long standing issue where trying to extract vx-underground files with the default MacOS tooling fails.
We don't remember why, but it does.
Our proposed solution is introducing your device to thermite, or trying to a different tool.
Thanks,
Summary of the Linux RCE 9.9 CVE
The vulnerability write up and disclosure is confusing. Initially the write up was scheduled for release in October. However, the write up and proof-of-concept was leaked onto Breached (???) which then resulted in the researcher / author to do an official write up (maybe?).
- Self described as 9.9, not officially declared 9.9
- Attacks CUPS
We haven't looked at it because we don't do exploit stuff and also Linux is for nerds