14367
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
Here is "Jeff" my Windows Component Object Model-only (kind of) keylogger.
https://vx-api.gitbook.io/vx-api/my-projects/jeff-com-only-keylogger
The Doxbin drama has concluded — the administrative staff posted an update on their official channel regarding the defacement.
Note: we censored stuff related to doxxing, and some small alias and/or name drops.
Note: The victim was not murdered. Mr. Tinajero was apprehended while plotting the murder.
Читать полностью…
"Hey, I'm working on a meme coin project. Do you want to get scammed now or later?" — every DM we've received in the past week
(This is nonstop spam on Twitter)
Moments ago Doxbin was compromised.
A group named "Tooda" has taken credit for the compromise.
In summary, administrative staff from Doxbin got into a verbal altercation with members of Tooda. Doxbin administration accused a Tooda member of being a pedophile.
Tooda retaliated by compromising Doxbin.
Upon compromise of Doxbin, Tooda members did the following (in maybe different steps):
- Dumped every account
- Purged all accounts on the website
- Locked the administrative accounts
- Released Doxbin (alleged) administration PII
- Leaked a so-called "blacklist" — a collection of people who have allegedly paid to not have their information posted on Doxbin
Tooda has claimed online they intend to release the dumped details of Doxbin users. This document is believed to contain roughly 136,000 e-mails and usernames on Doxbin.
Additionally, Tooda has released photos of the Doxbin administrative panel. We have censored some of the content within the panel to protect the privacy of others.
Thank you to "Tongue /🔪", VXDB, and the dozen other people who spammed us online to notify us of the compromise.
This is a new record. On average we've seen ransomware affiliates receive 20 - 40 years in prison.
Previously, the record holder for time faced was Alexander Moucka a/k/a Waifu with his charge of 100 years in prison.
130 years is the new record.
See you in 2155, 8base
Hi,
I've resumed work on my "VX-API".
It's basically a collection of my malware coding snippets I wrote. Feel free to copy-paste from it or study it.
This is incomplete. I'll add more later.
- smelly smellington
https://vx-api.gitbook.io/vx-api
Day 7/???
Restoring virus-dot-exchange.
We have malware
We got curious about this and did some investigating.
When we Googled these images it brought up web articles that first popped up around 2020. This is an old computer store located in Norman, Oklahoma. This store, "Computer Factory Outlet", was located in a strip mall where the property owner had a series of financial problems which resulted in the place being shutdown. Due to legal issues, the store was left in a weird limbo-like-state since at least 2007.
We contacted some of our colleagues at the University of Oklahoma and asked if they're capable of visiting the store. We were curious what it's current state is.
This afternoon they visited the store. Unfortunately, the store has been cleared out. All the old-school cool computer stuff is long gone.
Note: The big 3 — Conti (and subgroups), Lockbit, and RansomHub (and previous rebrands), have each stolen and/or done damages in the billions of dollars.
$16,000,000 is remarkably low for a ransomware group.
Finding malware in the wild is like finding a penny on the side walk.
It's free, it's good luck, and you shouldn't detonate it on your computer
According to these so-called "doctors" it is a poor decision for me to consume 1.25g of caffeine a day and it's "most likely" the cause of my chest pains.
Читать полностью…
Of course the prevailing theory at the moment is the super scary R-word. It rhymes with SchmansomeSchmare. There is little that supports this.
Читать полностью…
Day 5/???
Restoring virus-dot-exchange.
We have malware
Lucas Sohn is a christian, he didnt do anything wrong
free lucas sohn 🙏
pray for his kitty cats 🙏
On Monday the United States Department of Justice did a press release on the takedown of 8base ransomware group.
Two Russian nationals residing in Thailand, Roman Berezhnoy (33) and Egor Nikolaevich Glebov (39), deployed Phobos ransomware (under the branding of 8base) to over 1,000 public and private entities. Their ransom profits exceeded $16,500,000.
From May, 2019 to October, 2024, Mr. Berezhnoy and Mr. Glebov deployed their ransomware payload most notably to children's hospitals, healthcare facilities, and educational institutes.
The United States government, in conjunction with international partners in Europe (notably, Germany), disrupted over 100 servers related to 8base ransomware group or their affiliates.
Mr. Berezhnoy and Mr. Glebov are facing the following charges:
- Wire fraud conspiracy (20 years)
- Wire fraud (20 years)
- Conspiracy to commit computer fraud and abuse (10 years)
- Causing intentional damage to protected computers (x3) (10 years per count)
- Extortion in relation to damage to a protected computer (x3) (10 years per count)
- Transmitting a threat to impair the confidentiality of stolen data (5 years)
- Unauthorized access and obtaining information from a protected computer (5 years)
Mr. Berezhnoy and Mr. Glebov are facing a maximum sentence of 120 years in prison.
Today Jairo Jaime Tinajero, 25, of Kentucky, United States, plead guilty to a series of charges in relation to online activity in a group named "764".
The court details are pretty bad. In summary, Mr. Tinajero and a currently unidentified co-conspirator enticed an underage woman to produce CSAM (child sexual abuse material) for them. When the victim refused to produce more CSAM, Mr. Tinajero and the co-conspirator decided to murder the victim.
Court details show Mr. Tinajero discussing the murder on Telegram and Mr. Tinajero trying to recruit others on Telegram to assist in the murder of the underage victim.
No information is available on how the United States Federal Bureau of Investigation retrieved his private Telegram messages between other people.
Due to the severity of the crimes Mr. Tinajero is being charged with the following:
- Racketeering Conspiracy (20 years)
- Online Enticement (10 years)
- Production of child sexual abuse material (x3) (15 - 30 years per count)
- Distribution of child sexual abuse material (CSAM) (x3) (5 years - 30 years per count)
- Interstate communications of threats (x5) (5 years per count)
- Cyberstalking (5 years)
- Conspiracy to murder in aid of racketeering (10 years)
Due to the severity of the crimes, and a plea deal, Mr. Tinajero is applicable for additional sentencing under U.S.S.G. § 3A1.4 n. 4. This charge means Mr. Tinajero (in some capacity) aided or promoted terrorism which enhances his sentencing. If the charge is applied, this would add an additional 75 years - life.
Mr. Tinajero is facing (at maximum), 3 life sentences, or 325 years in prison.
Updates to the Doxbin compromise:
tl;dr tl;dr entire conflict is the result of two people fighting over losing access to accounts (?)
We received a notification from a disposable e-mail notifying us of a message from yet another disposable alias "PunchMadeHacks" (?)
In summary: A person familiar with the current Doxbin compromise asserts the site was not "compromised" in the traditional sense. Rather "Tooda", the group claiming responsibility for the "compromise", only successfully retrieved credentials to the Doxbin administrator login. Implying "Tooda" does not have backend access and are limited to what the administrative panel allows.
The remainder of the message from "PunchMadeHacks" provide backstory and insight into the conflict taking place. They claim information on the so-called "blacklist" has been circulating prior to this ... "compromise" (?) and details on the userbase have also been leaked. The message continues to heavily criticizes "Tooda", the previous Doxbin administration, and other monikers we're not familiar with.
The message concludes with "PunchMadeHacks" criticizing us, calling us "clowns" for highlighting the "worst parts of the actual event" — likewise they criticized us for our discussion of "Waifu".
Actually, there was a couple who was producing CSAM of their child and selling it online. The husband and wife were sentenced to 10,000 years in prison to ensure they'd never be paroled.
The judge also did this because he could not impose the death penalty
> go online
> check new doj press release on 8base
> says 8base attacked children's hospital
> says 8base is facing 130 YEARS IN PRISON
Holy cannoli. Feds are NOT playing fam
Today the State of California sentenced Alan Filion to 4 years in prison for being a "serial swatter".
This case is notable in that a majority of the crimes committed by Mr. Filion occurred when he was a minor. He also plead guilty to seek leniency.
https://www.justice.gov/opa/pr/california-teenager-sentenced-48-months-prison-nationwide-swatting-spree
Earlier today we made a post regarding the arrest of 8base ransomware group. We have deleted that post due to misinformation. This is a correction post.
Note: Our original source of the 8base ransomware group takedown was incorrect. Thank you to "Deleted Account" (their name, literally), for correcting us and providing accurate sources of information.
On February 10th, the Thailand Technology Crime Suppression Division, Thailand Immigration Police, and Thailand "Region 8" police, executed Operation PHOBOS AETOR.
The operation resulted in the raid of 4 different locations within the Phuket province. The raids resulted in the arrest of 4 currently unidentified men. Thai officials seized electronic devices and digital wallets.
The individuals apprehended have been charged with "Conspiracy to Commit an Offense Against the United States" and "Conspiracy to Commit Wirefraud".
Operation Phobos Aetor is a result of international cooperation between the United States government, Swiss Federation, EUROPOL partners, and Royal Thai Police. The Swiss Federation has requested extradition of the 4 men arrested.
The individuals arrested are believed to have compromised over 1,000 companies and stolen approx. $16,500,000.
The individuals suspected lovers (women pictured) have not been arrested. They do not appear to be involved in 8base ransomware group.
Hello,
There is someone impersonating us and pushing crypto scams.
Please exercise caution (we don't do anything with crypto, why would we even talk about crypto stuff???)
Thanks,
Today Thailand's Cyber Crime Investigation Bureau announced the arrest of 4 individuals believed to be behind 8base ransomware group.
The 4 individuals have only been identified as 2 men and 2 women. All of them are European.
Thai officials stated over 40 items have been seized as evidence, this includes electronic devices and digital wallets. Swizterland has requested extradition of the 4 individuals apprehended.
The individuals are believed to have stolen over $16,000,000 worldwide.
Day 6/???
Restoring virus-dot-exchange.
We have malware
Total synced: 3,274,254
Remaining: lmfao
Xbox one controller for PC gaming: $70, stick drift after 6 months, have to gently pick it up and set down
Xbox original controller from 2002: $15, no stick drift, has been thrown threw 7 walls, covered in Cheeto dust and pizza grease, virtually indestructible
PlayStation networks have been down for approx. 26 hours now.
The outage has resulted in memes and other companies taking advantage of the situation for advertisement purposes.
Sony hasn't released any details on what has created the outage.
When you believe a Threat Actor is trying to perform a SMISHING attack, you should report it to IT immediately.
Alternatively, you can reply with a picture of a cat and go on about your day
Plot twist: "Anonymous" decides to partner up with Dmitry Khoroshev (Creator and administrator of Lockbit ransomware group) and Maksim Yakubets (EvilCorp) for social justice, or something. They're deploying ransomware against critical infrastructure for your freedom
Читать полностью…