14367
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
Logging into Xitter and seeing thousands upon thousands of people, who have never written a single line of code their entire life and can barely use a computer, giving their expert input into kernel-mode programming
Читать полностью…
We somehow missed a semi-undocumented CrowdStrike EDR disable* technique that was unveiled in 2022.
It requires administrative access. This makes it more difficult to perform in enterprise environments.
Jonas Lyk discovered the CrowdStrike minifilter did not catch NtCreateFile when the FILE_APPEND_DATA access mask was present. It was possible to open a CrowdStrike driver with FILE_APPEND_DATA and append an additional byte to the driver opened.
When rebooting the machine, the driver signature would not match and CrowdStrike would not load.
We're coming across more and more Threat Actors who are children – some as young as 14 years old.
Читать полностью…
Just saw KitKat bars and Duolingo making BSOD jokes.
Wtf CrowdStrike you've ruined everything and it's only getting worse
CrowdStike PR trying to apologize to enraged IT nerds
Читать полностью…
"We need you to come info the office and help us find all the BitLocker keys"
Читать полностью…
We thought like, maybe a big ransomware incident, or a data leak.
We didn't expect arguably one of the largest IT outages in history caused by arguably one of the largest cybersecurity companies in history.
¯\_(ツ)_/¯
The IT team when they realize they're out of ink and need to handwrite them
Читать полностью…
Stock exchange opened. It appears CrowdStrike share holders are relatively concerned.
Читать полностью…
CrowdStrike cooked airports in India. They're issuing handwritten boarding passes
Читать полностью…
CrowdStrike cooked the Los Angeles International Airport
Even non-nerds freaking out – they think it's some massive 1337 hack (it's just bad coding).
Threat Actors today wondering where the hell all their compromised hosts went
Читать полностью…
As we continue to do our daily news check up, we can confirm that CrowdStrike has performed a colossal oopsie and has done catastrophic damage.
We have never witnessed an oopsie of this magnitude
wHy dOnT u uSe Ur larGe sOcIAl mEdIa pResCencE 2 dIsCUss pOliTicS
1. Everyone discusses politics. This is a shitpost, malware, and chill zone.
2. We are (mostly) United States based and the current political landscape closely resembles a SouthPark skit
Example:
This post is going to be controversial. But we believe it is necessary. Threat Intelligence nerds, Blue Team nerds, and Law Enforcement nerds following us on sock accounts – don't have a conniption.
Dear Threat Actor(s) who contact us,
We advise you do NOT use the leaked Babuk builder and source code. Babuk is notorious for failing to decrypt files (especially large files), and corrupting data. If you (or your group) decide to do ransomware ... for the sake of literally everybody involved (you and/or your group, the victim, Threat Intelligence, Digital Forensic & Incident Response firms, Law Enforcement, etc) DO NOT USE BABUK. Don't go anywhere near Babuk. If someone recommends Babuk, slap them around with a large trout.
Thanks,
We have deleted our post addressing the conspiracy theories about the CrowdStrike thing.
We were bombarded with comments and political fighting.
It's Saturday and we're not going to deal with this shit on our weekend. We'll let someone else do it.
We've seen a lot of questions about the CrowdStrike thing.
- No, this wasn't planned by CrowdStrike and Microsoft to force people to Windows 11. This didn't impact home users.
- No, this was not a test run to interfere with the United States election. This was worldwide. CrowdStrike isn't ran by the Biden administration.
- No, this was not a cyber attack. It was bad quality assurance testing on CrowdStrike's end.
- No, this wasn't performed to censor people on social media. This did not impact social media.
- No, this was not a result of DEI. We don't even understand how DEI is even remotely related to this, so if you think this is related to DEI you've probably got a concussion and need medical treatment.
- No, Elon Musk did not remove CrowdStrike from his computer before this happened. We have no idea what security product Elon Musk's companies use.
One of the nerds who popped MGM (a member of Scattered Spider) was arrested in the UK. He was 17.
We posted about it, shared the link, but everyone is still pissing on CrowdStrike so we'll talk about it on Monday or something.
> get phone call
> answer phone
> "hey have you heard about a cyber security company called CrowdStrike?'
> "nope, never heard of her"
> hang up
Don't explain this to non-nerds. They won't understand it and they'll get scared.
Leaked footage of CrowdStrike's legal department this morning
Читать полностью…
In all seriousness, we offer our most sincere condolences to our friends and colleagues who work at CrowdStrike.
We're sorry we're memeing so hard — but the situation is so unbelievably bad it's borderline satire.
The office printer seeing the IT Team trying to print thousands of BitLocker keys
Читать полностью…
We apologize to the many people who follow us online.
Instead of doing our regular malware sample family updates and pushing new papers, we're going to meme this CrowdStrike thing until we develop arthritis.
CrowdStrike cooked SkyNews. They're trying to do the news with no computers.
Читать полностью…
How to fix the Crowdstrike thing:
1. Boot Windows into safe mode
2. Go to C:\Windows\System32\drivers\CrowdStrike
3. Delete C-00000291*.sys
4. Repeat for every host in your enterprise network including remote workers
5. If you're using BitLocker jump off a bridge
CrowdStrike has performed the largest ransomware attack in history.
Accidentally.
Today CrowdStrike pushed out a botched update.
It has resulted in outages in Banks, Airlines, Emergency hotlines, ???
It's 6am on a Friday and CrowdStrike cooked the internet
Blah blah blah, helping criminals, blah blah blah. But seriously, Babuk causes EVERYONE problems. It is a colossal piece of shit.
Читать полностью…
We see some nerds getting super hostile to women in tech — especially if they're conventionally attractive and/or have a high number of followers on social media
If you're feeling upset: scream at your Mom, heat up some pizza rolls, and put on some anime
It's going to be okay.