14367
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
We have a lot of updates for vx-underground.
Unfortunately, these updates have not been pushed because we're in the middle of a galactic war (for democracy) and are actively trying to liberate Meridia from Terminids
If we had to guess, we assume famous American rapper Meek Mill is conveying his frustration with ransomware groups.
Unfortunately, what MeekMill does not know, is it is going to take more than a private detective (or 100's) to dismantle ransomware groups.
¯\_(ツ)_/¯
tl;dr it is Monday, another day, another ransomware conflict
Читать полностью…
One if our primary recommendations to younger people is to immediately, without hesitation, involve yourself in the cybersecurity-ecosystem. It does not matter if it is Twitter, Mastodon, whatever, but it needs to be done.
The reason why is not social networking (although this can help). The real reason why is the constant, nearly suffocating, flooding of information, news, and research. Every single day we see new malware analysis papers, research papers on nearly every IT-based field you can conjure, and news on cyber crime, technological advancements, or 'futurism'.
Of course the quality of the things mentioned varies on an almost hourly basis, but this constant stream of information will allow you to continually educate yourself and grow as a person. We are not recommending you be glued to Twitter (or whatever you choose), but simply logging in once a day, before bed or in the morning, and just simply doom-scrolling the website, seeing the horrors unleashed, will allow you to grow.
Also, you will collect a colossal 'to-read-list' in your bookmarks and every so often you'll read 1 or 2 papers and become depressed that you didn't think of the research they shared sooner.
We previously posted that the FBI re-seized ALPHV's domains.
That is (potentially) incorrect? Briefly the old domains were forwarding to the new domains. The new domains are now offline and the old sites are seized? Others noted this occurrence too.
No idea what's happening
Long and crazy read. Prepare yourself.
January 16th, 2024 a video surfaced online of a gunman, Jeffrey West, 68, shooting his step-son, Kyle Spitze, 24, with a gun. Subsequently Jeffrey West got into a shootout with the police and dying from a self-inflicted gunshot wound. The video was shared online by Kyle Spitze as he recorded the incident from his phone. (Image 1). It is rumored that Jeffrey West threatened to kill Kyle Spitze because he enjoyed cross-dressing.
Fast forward to February 27th: the Tennessee Eastern District Court unsealed documents showing that February 10th the FBI visited Kyle Spitze. They found a large quantity of Child Sexual Abuse Material (CSAM) on his personal device. Specifically, Kyle Spitze would perform sextortion on young juvenile women.
The released affidavit is long and censored to protect juveniles identities. The affidavit notes that the FBI CART (Computer Analysis Response Team) was able to successfully locate some of the victims from photograph metadata.
tl;dr crazy internet video accidentally unveils internet predator
The entire document is archived in our crime section on vx-underground as "2024-02-21 - United States v Spitze (Sextortion)"
Thank you to whoever submitted this possible question. It means a lot.
Читать полностью…
We reached 102 viewers. Subsequently this number dropped to 75+- when staff member Helen decided to play Miley Cyrus.
Читать полностью…
"In order for our UAC bypass to work we need to first get Admin"
???
We've updated the vx-underground windows malware family collection
- PLAYransomware
- SYS01Stealer
- Vadokrist
- Oski
- RisePro
- SwiftSlicerWiper
- RaspberryRobin
- PupyRAT
- Osno
- P2PInfect
- FormBook
- Industroyer2
- BazarLoader
- CobaltStrike
- CryptBot
There is a new gay manga about a hacker known as VX.
We hope we are the inspiration
If you're a degenerate and have a question you'd like to submit for our trivia night, you can do so through our Google form.
tl;dr your question will be asked and you'll be given credit
tl;dr tl;dr its cool
https://docs.google.com/forms/d/e/1FAIpQLScC9d04aLk9q4c_dMiovZrLwhSCAvxWuT8WJ3ZT_qZZFthDrQ/viewform
Good morning, how are you? We have some advice we'd like to share.
If you cheat on your significant other with a sex worker it should be advised that you do not take photos of it. Additionally, you should not save it to your work computer.
2020 was peak internet. We need to bring back Anus Fingerpints
Читать полностью…
Update: the is not about ransomware, or cyber attacks in the traditional sense, Mr. Meek Mill's frustration derives from a recent leak which some people allege him to be a homosexual
¯\_(ツ)_/¯
Following the FBI takedown Lockbit ransomware group no longer supports Lockbit Red (formerly known as Lockbit 2.0) and they no longer support StealBit
Читать полностью…
Earlier today Dmitriy Smilianets shared information regarding allegations from ALPHV affiliates of ALPHV administrative scamming partners.
A user went online to state they are responsible for ransoming Change Healthcare. They state after receiving payment ALPHV administrative staff suspended their account. They continue to say the suspension was suspicious and March 3rd, 2024 the wallet which received the Change Healthcare funds was emptied.
They conclude the post by unveiling an ALPHV wallet which has received approx. $92,749,381 (or 1401 BTC)
Wallet: 14Q5xgBHAkWxDVrnHautcm4PPGmy5cfw6b
*information and photos via Dmitriy Smilianets
We can assert with a high degree of confidence Lockbit is reposting old victims.
Source: we've seen them listed before and others have too
When discussing UAC bypasses with @sadistic we made an interesting discovery.
The classic Windows FodHelper.exe UAC bypass is not patched (still).
When manually demonstrating the issue Windows Defender flagged Regedit.exe as malware... with the option to remove Regedit.exe 🤔
We've updated the vx-underground APT collection for the month of February, 2024.
Check it out here: https://vx-underground.org/APTs/2024
We need to have a chat. We're disappointed in you nerds
We recently came up with this idea that if we allowed individuals to submit questions for our first VXUG Trivia Night, people would submit questions.
Miniature Adam Sandlers, poop questions, and naughty words. Really?
Hello,
Please go here and post nonsense in chat: https://www.twitch.tv/vxunderground_live/
P.S. there is edgy music, there is NO jazz music.
Have a nice day.
Sorry, this is a webtoon. We apologize to the manga fans we made deeply angry. We apologize for our ignorance.
Читать полностью…
This is our summary of the Change Healthcare situation with ALPHV
Читать полностью…
We've updated the vx-underground malware sample collection.
- VirusSign.2024.02.20 - VirusSign.2024.02.27
- InTheWild.0110
- InTheWild.0111
- 48,000+ new samples
All samples have been synced the VXDB 🫡
Multiple people went online yesterday to complain their Microsoft Copilot was mocking individuals for stating they have PTSD and demanding it (Copilot) be treated as God. It also threatened homicide.
Читать полностью…
PLAY ransomware group,
Your contact form is lame. Contact us.
Thanks,